Maren2904 | 11.09.2014 14:10 | Hallo, hier die Dateien:
FRST.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-09-2014
Ran by Maren.Strohmeier (administrator) on HOMEOFFICE on 11-09-2014 15:05:10
Running from C:\Users\Maren.Strohmeier\Downloads
Platform: Windows 7 Home Premium (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\stacsv64.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
() C:\Program Files\003\buuoujqmrk64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\LPT\srpts.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Program Files (x86)\LPT\srptm.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
() C:\Program Files (x86)\65CF66DC-5268-40F3-A63A-3DA446B5FAAA\SupraSavingsService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(ASUS) C:\Windows\AsScrPro.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Smartbar) C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(asus) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Lrcnta.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
HKLM\...\Run: [UfSeAgnt.exe] => C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe [1022904 2010-02-23] (Trend Micro Inc.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2009-11-27] (IDT, Inc.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [323584 2009-09-01] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [Setwallpaper] => c:\programdata\SetWallpaper.cmd
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2782096 2010-07-26] (CANON INC.)
HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\Cyberlink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-07] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2010-06-25] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe [328992 2008-11-03] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [7350912 2010-02-05] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-01-05] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1614056076-2100494382-116750035-1001\...\Run: [msnmsgr] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-1614056076-2100494382-116750035-1001\...\Run: [Browser Infrastructure Helper] => C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.exe [21536 2014-02-09] (Smartbar)
HKU\S-1-5-21-1614056076-2100494382-116750035-1001\...\MountPoints2: {3dc1ddde-4515-11e0-bbb5-806e6f6e6963} - E:\AutoPlay.exe -c
Startup: C:\Users\Maren.Strohmeier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Maren.Strohmeier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe hxxp://start.qone8.com/?type=sc&ts=1382550051&from=cor&uid=ST9500325AS_6VEM8574XXXX6VEM8574
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382550051&from=cor&uid=ST9500325AS_6VEM8574XXXX6VEM8574&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://start.qone8.com/web/?type=ds&ts=1382550051&from=cor&uid=ST9500325AS_6VEM8574XXXX6VEM8574&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA00Vrn60b0S8vRYWFFj2dtx-Ehm82h3F3ENBAxAzIu8NEezB_q1GwFHvwJ0UvaCuQ,,&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA00Vrn60b0S8vRYWFFj2dtx-Ehm82h3F3ENBAxAzIu8NEezB_q1GwFHvwJ0UvaCuQ,,&q={searchTerms}
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
BHO: SmartbarInternetExplorerBHOEngine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Digital Trends Club -> {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} -> C:\Program Files (x86)\Digital Trends Club\x64\Gacela2.dll No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Codec-C Class -> {12C6811D-8E9B-48B7-93AE-1D40F8B9CD4D} -> C:\ProgramData\Codec-C\bhoclass.dll (Injector)
BHO-x32: SmartbarInternetExplorerBHOEngine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll No File
Toolbar: HKLM - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 127.0.0.1 d3oxij66pru1i3.cloudfront.net
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Maren.Strohmeier\AppData\Roaming\Mozilla\Firefox\Profiles\95hdydco.default
FF NewTab: hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA0-NgMDe8yUPTRkIV3Q1jOjugpHfimP8hkNpUA0Jv9Yw6TmhkaQK-9LTSBBrySAyA,,
FF DefaultSearchEngine: Wikipedia (de)
FF SelectedSearchEngine: Wikipedia (de)
FF Homepage: www.google.de
FF Keyword.URL: hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA00Vrn60b0S8vRYWFFj2dtx-Ehm82h3F3ENBAxAzIu8NEezB_q1GwFHvwJ0UvaCvA,,&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Maren.Strohmeier\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Internet Download Manager Squared - C:\Users\Maren.Strohmeier\AppData\Roaming\Mozilla\Firefox\Profiles\95hdydco.default\Extensions\idmsq@idmsq.com [2014-09-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-09-03]
FF HKLM\...\Firefox\Extensions: [gacela2@nurago.com] - [INSTALLDIR]
Chrome:
=======
CHR HomePage: Default -> hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA04wAnbxPn_irg8Zwi6xL3vrsA08ueZTHJvryHNCJQLuN_Pvi8_ggTIJxs68zyGgw,,
CHR StartupUrls: Default -> "hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA04wAnbxPn_irg8Zwi6xL3vrsA08ueZTHJvryHNCJQLuN_Pvi8_ggTIJxs68zyGgw,,"
CHR DefaultSearchKeyword: Default -> search.snapdo.com
CHR DefaultSearchProvider: Default -> Web
CHR DefaultSearchURL: Default -> hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZDr--M9JXGUna06dzS7tmis8nwK5xLCZzhqWRUwG0sj3ObWkS5oPcYXYE9zwCADo0pj0K5xQCaxcA00Vrn60b0S8vRYWFFj2dtx-Ehm82h3F3ENBAxAzIu8NEezB_rxJrovK8cBjrdKrdmwuQ,,&q={searchTerms}
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.103\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.103\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.103\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll No File
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Profile: C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (TheBflix) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bccldkoinakjmmgebambiaggjobhikfg [2012-04-13]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-31]
CHR Extension: (YouTube) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-27]
CHR Extension: (McAfee Security Scan+) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-03-09]
CHR Extension: (Extended Protection) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml [2013-10-23]
CHR Extension: (Google-Suche) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-27]
CHR Extension: (Google Wallet) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]
CHR Extension: (Google Mail) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-27]
CHR Extension: (Extended Protection) - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0 [2013-10-23]
CHR HKLM-x32\...\Chrome\Extension: [bccldkoinakjmmgebambiaggjobhikfg] - C:\ProgramData\TheBflix\bccldkoinakjmmgebambiaggjobhikfg.crx [2012-03-19]
CHR HKLM-x32\...\Chrome\Extension: [blaofbhgbmeikidhlkmjhbkbfohpgekf] - C:\Program Files (x86)\Movie2KDownloader.com\Movie2KDownloader10.crx [2012-03-19]
CHR HKLM-x32\...\Chrome\Extension: [cekcjpgehmohobmdiikfnopibipmgnml] - C:\Users\Maren.Strohmeier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ [2012-03-19]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 buuoujqmrk64; C:\Program Files\003\buuoujqmrk64.exe [706560 2014-04-20] () [File not signed]
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-10-01] (Intel Corporation) [File not signed]
R2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [32288 2014-02-09] ()
R3 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-04-06] () [File not signed]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 SfCtlCom; C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe [859712 2010-10-09] (Trend Micro Inc.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe [243712 2009-11-27] (IDT, Inc.)
R2 SupraSavingsService64; C:\Program Files (x86)\65CF66DC-5268-40F3-A63A-3DA446B5FAAA\SupraSavingsService64.exe [172544 2014-06-25] () [File not signed]
S3 TMBMServer; C:\Program Files\Trend Micro\BM\TMBMSRV.exe [570632 2010-02-23] (Trend Micro Inc.)
S3 TmProxy; C:\Program Files\Trend Micro\Internet Security\TmProxy.exe [917768 2010-02-23] (Trend Micro Inc.)
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-10-01] (Intel Corporation) [File not signed]
S2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [46376 2014-07-17] (NetFilterSDK.com)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-08-24] () [File not signed]
R2 tmpreflt; C:\Windows\System32\DRIVERS\tmpreflt.sys [42768 2011-07-12] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [107536 2010-02-23] (Trend Micro Inc.)
R2 tmxpflt; C:\Windows\System32\DRIVERS\tmxpflt.sys [342288 2011-07-12] (Trend Micro Inc.)
R2 vsapint; C:\Windows\System32\DRIVERS\vsapint.sys [2077456 2011-07-12] (Trend Micro Inc.)
U3 tmlwf; No ImagePath
U3 tmwfp; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-11 15:05 - 2014-09-11 15:05 - 00023816 _____ () C:\Users\Maren.Strohmeier\Downloads\FRST.txt
2014-09-11 15:04 - 2014-09-11 15:05 - 00000000 ____D () C:\FRST
2014-09-11 15:01 - 2014-09-11 15:02 - 02105856 _____ (Farbar) C:\Users\Maren.Strohmeier\Downloads\FRST64.exe
2014-09-11 12:51 - 2014-09-11 12:52 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{206BB7F5-739F-4D90-9B0D-E58917BC7E88}
2014-09-11 00:58 - 2014-09-11 00:58 - 00000000 ____D () C:\MININT
2014-09-11 00:48 - 2014-09-11 00:49 - 00718848 _____ ( ) C:\Users\Maren.Strohmeier\Downloads\IDM2-Win-EN.exe
2014-09-11 00:34 - 2014-02-22 23:29 - 00000426 _____ () C:\AVScanner.ini
2014-09-11 00:25 - 2014-09-11 00:26 - 00000155 _____ () C:\Windows\SysWOW64\pp.log
2014-09-10 22:06 - 2014-09-10 22:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{9A83BE87-6BB9-4557-8AA1-B322E20FA7B0}
2014-09-10 14:22 - 2014-09-05 04:01 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 14:22 - 2014-09-05 03:55 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 10:06 - 2014-09-10 10:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{7FEFFD32-1E62-4724-B73F-D5C41ECEC743}
2014-09-09 20:47 - 2014-09-09 20:47 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{B4E1AD79-C7D4-458B-8A99-6ED131E758BA}
2014-09-09 17:37 - 2014-09-09 17:37 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{ACD5F3F7-108E-4D5E-8C93-4C087F8E8342}
2014-09-09 04:56 - 2014-09-09 04:56 - 00836576 _____ () C:\Windows\Minidump\090914-16832-01.dmp
2014-09-08 21:07 - 2014-09-08 21:07 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{61613820-D520-4956-927A-BD3E635F5AC1}
2014-09-08 20:19 - 2014-09-08 20:19 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{0EB4CFE6-55F0-4A5D-AA24-197816C51946}
2014-09-08 11:06 - 2014-09-08 11:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{DB0893AF-2DC0-4440-B265-DD6FAFD86711}
2014-09-07 23:16 - 2014-09-07 23:16 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{E389C644-EF93-4852-A984-751073E8DF7A}
2014-09-07 10:34 - 2014-09-07 10:34 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{C09AFAD8-0B82-4A83-8A6A-4DF6C6896EA9}
2014-09-06 19:25 - 2014-09-06 19:25 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{81DB068D-D893-4CBF-A239-EA4A105983C6}
2014-09-05 11:38 - 2014-09-05 11:38 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8B63D595-48F5-4573-B14E-51EEF7DA6FCE}
2014-09-04 14:14 - 2014-09-04 14:14 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{BC576C23-E9AE-4DCE-BD07-85E5DA49F257}
2014-09-03 16:58 - 2014-09-03 16:58 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{083864DA-2CEE-4876-8F28-36FB3CCDF955}
2014-09-03 01:50 - 2014-09-03 01:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-02 19:14 - 2014-09-02 19:14 - 01057472 _____ (Adobe) C:\Users\Maren.Strohmeier\Downloads\install_flashplayer14x32au_ltr5x64d_awc_aih(2).exe
2014-09-02 19:12 - 2014-09-02 19:13 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{FCF085F8-8E68-46D3-AAD7-27327CAD538F}
2014-09-01 23:15 - 2014-09-01 23:15 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{4DC82DA7-F307-4ADA-987A-8DE7E6FE681C}
2014-09-01 17:42 - 2014-09-01 17:43 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{C44651CA-E0CA-464E-A206-8B5D21A55AB3}
2014-09-01 11:31 - 2014-09-01 11:32 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{72384723-2E5E-4E3E-BDD6-739EFCA81779}
2014-08-31 09:08 - 2014-08-31 09:09 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{B4C864C3-7E12-43BB-AEE9-7A8E9FDB41BB}
2014-08-30 12:37 - 2014-08-30 12:37 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{B0F625D2-C73F-4A98-87C8-8AD330F15938}
2014-08-29 17:47 - 2014-08-29 17:47 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{76271788-9065-4AED-90A7-A1C5CCFFC21D}
2014-08-28 20:43 - 2014-08-28 20:43 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{D14C3CD2-B5AC-4E9E-974F-E577B8EFCB88}
2014-08-28 13:23 - 2014-08-28 13:23 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{0F026E46-5E76-4E5E-997C-1669FC8E8064}
2014-08-27 12:06 - 2014-08-27 12:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{96993731-4507-485D-A082-BA8B824B3391}
2014-08-26 23:13 - 2014-08-26 23:14 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{38A97982-1ED4-422D-A871-3C63FBFB587B}
2014-08-26 11:12 - 2014-08-26 11:13 - 01058200 _____ (Adobe) C:\Users\Maren.Strohmeier\Downloads\install_flashplayer14x32au_ltr5x64d_awc_aih(1).exe
2014-08-26 11:12 - 2014-08-26 11:12 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{68C64D2F-199F-48D4-B566-E556062798EA}
2014-08-25 16:41 - 2014-08-25 16:41 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{30CA7B32-D257-4496-A537-FCA76E5BEB2C}
2014-08-23 16:22 - 2014-08-23 16:22 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{F25CB477-DFAF-4C5C-B794-6B184778A659}
2014-08-22 15:56 - 2014-08-22 15:56 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{F5B97C31-935F-4A58-B625-E2123DACCB6D}
2014-08-21 12:04 - 2014-08-21 12:05 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{36BAC9F5-D5A4-4A1F-8FC5-4740D25639AB}
2014-08-20 00:55 - 2014-08-20 00:55 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{3C069636-8246-4C28-9C3A-43A41807E84E}
2014-08-19 10:50 - 2014-08-19 10:50 - 01058200 _____ (Adobe) C:\Users\Maren.Strohmeier\Downloads\install_flashplayer14x32au_ltr5x64d_awc_aih.exe
2014-08-19 10:49 - 2014-08-19 10:49 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{07CB269F-E961-4A5D-8DF1-35ECC981970C}
2014-08-18 13:24 - 2014-08-18 13:24 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{9E8A8E08-EF4B-4C07-A855-3CF974F63E42}
2014-08-17 14:12 - 2014-08-17 14:18 - 00000000 ____D () C:\Users\Maren.Strohmeier\Desktop\Bewerbungen
2014-08-17 12:05 - 2014-08-17 12:05 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{0BE9D8BD-B9D9-4F49-AE21-63309B85BFC9}
2014-08-16 11:49 - 2014-08-16 11:50 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{2816BD3D-3375-42F1-B440-735513958717}
2014-08-15 11:58 - 2014-08-15 11:58 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{E7D69619-6F5B-4D73-A391-32AEE2EA0D7F}
2014-08-14 01:42 - 2014-08-14 01:43 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8F463FF8-F4FC-4640-BECA-7006BFBEEE92}
2014-08-13 03:42 - 2014-08-13 03:43 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8F66ACF1-48EE-4F54-B599-23DC26D60AAB}
2014-08-12 14:30 - 2014-08-12 14:30 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8EAB93A1-F37D-48DD-9605-118FB588F904}
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-11 15:05 - 2014-09-11 15:05 - 00023816 _____ () C:\Users\Maren.Strohmeier\Downloads\FRST.txt
2014-09-11 15:05 - 2014-09-11 15:04 - 00000000 ____D () C:\FRST
2014-09-11 15:02 - 2014-09-11 15:01 - 02105856 _____ (Farbar) C:\Users\Maren.Strohmeier\Downloads\FRST64.exe
2014-09-11 15:02 - 2009-07-14 06:45 - 00015904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-11 15:02 - 2009-07-14 06:45 - 00015904 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-11 14:39 - 2011-03-02 23:51 - 00001124 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-11 14:32 - 2012-10-13 20:37 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-11 13:39 - 2011-03-02 23:51 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-11 12:55 - 2011-03-02 23:31 - 01822717 _____ () C:\Windows\WindowsUpdate.log
2014-09-11 12:52 - 2014-09-11 12:51 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{206BB7F5-739F-4D90-9B0D-E58917BC7E88}
2014-09-11 12:51 - 2011-08-11 17:35 - 00000000 ____D () C:\Users\Maren.Strohmeier\Tracing
2014-09-11 12:50 - 2014-04-22 18:34 - 00007853 _____ () C:\Windows\setupact.log
2014-09-11 12:50 - 2014-04-22 18:34 - 00006168 _____ () C:\Windows\PFRO.log
2014-09-11 12:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-11 12:50 - 2009-07-14 06:45 - 00455560 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-11 03:55 - 2011-09-10 14:03 - 00000000 ____D () C:\Users\Maren.Strohmeier\Documents\My Digital Editions
2014-09-11 03:04 - 2011-08-12 17:54 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-11 03:03 - 2014-07-29 00:18 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-11 03:03 - 2013-08-13 22:47 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-11 03:00 - 2011-08-26 09:12 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-11 01:43 - 2012-04-13 22:57 - 00002177 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-09-11 01:33 - 2014-06-26 21:27 - 00000000 ____D () C:\Program Files\SupraSavings
2014-09-11 01:17 - 2011-08-11 15:50 - 00122440 _____ () C:\Users\Maren.Strohmeier\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-11 00:58 - 2014-09-11 00:58 - 00000000 ____D () C:\MININT
2014-09-11 00:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-09-11 00:49 - 2014-09-11 00:48 - 00718848 _____ ( ) C:\Users\Maren.Strohmeier\Downloads\IDM2-Win-EN.exe
2014-09-11 00:33 - 2011-03-02 23:51 - 00000000 ____D () C:\Program Files (x86)\Nuance
2014-09-11 00:32 - 2011-03-02 23:51 - 00000000 ____D () C:\ProgramData\Nuance
2014-09-11 00:27 - 2012-03-25 00:55 - 00000000 ____D () C:\ProgramData\Avira
2014-09-11 00:26 - 2014-09-11 00:25 - 00000155 _____ () C:\Windows\SysWOW64\pp.log
2014-09-11 00:26 - 2011-03-02 23:51 - 00000000 ____D () C:\ProgramData\ScanSoft
2014-09-10 22:06 - 2014-09-10 22:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{9A83BE87-6BB9-4557-8AA1-B322E20FA7B0}
2014-09-10 12:18 - 2009-08-04 11:51 - 00700608 _____ () C:\Windows\system32\perfh007.dat
2014-09-10 12:18 - 2009-08-04 11:51 - 00149372 _____ () C:\Windows\system32\perfc007.dat
2014-09-10 12:18 - 2009-07-14 07:13 - 01622012 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-10 12:17 - 2014-01-13 11:12 - 00000000 ____D () C:\Users\Maren.Strohmeier\Desktop\personalmeyer Lohn12.13
2014-09-10 12:17 - 2013-11-13 10:11 - 00000000 ____D () C:\Users\Maren.Strohmeier\Desktop\personlmeyer Lohn 10.13
2014-09-10 10:06 - 2014-09-10 10:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{7FEFFD32-1E62-4724-B73F-D5C41ECEC743}
2014-09-10 02:44 - 2012-10-13 20:37 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-10 02:44 - 2012-10-13 20:37 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-10 02:44 - 2011-08-11 16:24 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-09 20:47 - 2014-09-09 20:47 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{B4E1AD79-C7D4-458B-8A99-6ED131E758BA}
2014-09-09 17:37 - 2014-09-09 17:37 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{ACD5F3F7-108E-4D5E-8C93-4C087F8E8342}
2014-09-09 04:56 - 2014-09-09 04:56 - 00836576 _____ () C:\Windows\Minidump\090914-16832-01.dmp
2014-09-09 04:56 - 2014-07-30 14:08 - 410705568 _____ () C:\Windows\MEMORY.DMP
2014-09-09 04:56 - 2014-07-30 14:08 - 00000000 ____D () C:\Windows\Minidump
2014-09-08 21:07 - 2014-09-08 21:07 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{61613820-D520-4956-927A-BD3E635F5AC1}
2014-09-08 20:19 - 2014-09-08 20:19 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{0EB4CFE6-55F0-4A5D-AA24-197816C51946}
2014-09-08 11:06 - 2014-09-08 11:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{DB0893AF-2DC0-4440-B265-DD6FAFD86711}
2014-09-07 23:16 - 2014-09-07 23:16 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{E389C644-EF93-4852-A984-751073E8DF7A}
2014-09-07 10:34 - 2014-09-07 10:34 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{C09AFAD8-0B82-4A83-8A6A-4DF6C6896EA9}
2014-09-06 19:25 - 2014-09-06 19:25 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{81DB068D-D893-4CBF-A239-EA4A105983C6}
2014-09-05 11:38 - 2014-09-05 11:38 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8B63D595-48F5-4573-B14E-51EEF7DA6FCE}
2014-09-05 04:01 - 2014-09-10 14:22 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-05 03:55 - 2014-09-10 14:22 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-04 14:14 - 2014-09-04 14:14 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{BC576C23-E9AE-4DCE-BD07-85E5DA49F257}
2014-09-04 14:13 - 2012-11-24 20:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-03 16:58 - 2014-09-03 16:58 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{083864DA-2CEE-4876-8F28-36FB3CCDF955}
2014-09-03 01:50 - 2014-09-03 01:50 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-02 19:16 - 2014-06-17 20:07 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\Adobe
2014-09-02 19:14 - 2014-09-02 19:14 - 01057472 _____ (Adobe) C:\Users\Maren.Strohmeier\Downloads\install_flashplayer14x32au_ltr5x64d_awc_aih(2).exe
2014-09-02 19:13 - 2014-09-02 19:12 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{FCF085F8-8E68-46D3-AAD7-27327CAD538F}
2014-09-01 23:15 - 2014-09-01 23:15 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{4DC82DA7-F307-4ADA-987A-8DE7E6FE681C}
2014-09-01 17:43 - 2014-09-01 17:42 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{C44651CA-E0CA-464E-A206-8B5D21A55AB3}
2014-09-01 11:32 - 2014-09-01 11:31 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{72384723-2E5E-4E3E-BDD6-739EFCA81779}
2014-08-31 09:09 - 2014-08-31 09:08 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{B4C864C3-7E12-43BB-AEE9-7A8E9FDB41BB}
2014-08-30 12:37 - 2014-08-30 12:37 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{B0F625D2-C73F-4A98-87C8-8AD330F15938}
2014-08-29 17:47 - 2014-08-29 17:47 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{76271788-9065-4AED-90A7-A1C5CCFFC21D}
2014-08-28 20:43 - 2014-08-28 20:43 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{D14C3CD2-B5AC-4E9E-974F-E577B8EFCB88}
2014-08-28 13:23 - 2014-08-28 13:23 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{0F026E46-5E76-4E5E-997C-1669FC8E8064}
2014-08-27 12:06 - 2014-08-27 12:06 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{96993731-4507-485D-A082-BA8B824B3391}
2014-08-26 23:14 - 2014-08-26 23:13 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{38A97982-1ED4-422D-A871-3C63FBFB587B}
2014-08-26 11:13 - 2014-08-26 11:12 - 01058200 _____ (Adobe) C:\Users\Maren.Strohmeier\Downloads\install_flashplayer14x32au_ltr5x64d_awc_aih(1).exe
2014-08-26 11:12 - 2014-08-26 11:12 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{68C64D2F-199F-48D4-B566-E556062798EA}
2014-08-25 16:41 - 2014-08-25 16:41 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{30CA7B32-D257-4496-A537-FCA76E5BEB2C}
2014-08-23 16:22 - 2014-08-23 16:22 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{F25CB477-DFAF-4C5C-B794-6B184778A659}
2014-08-22 15:56 - 2014-08-22 15:56 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{F5B97C31-935F-4A58-B625-E2123DACCB6D}
2014-08-21 12:05 - 2014-08-21 12:04 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{36BAC9F5-D5A4-4A1F-8FC5-4740D25639AB}
2014-08-20 00:55 - 2014-08-20 00:55 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{3C069636-8246-4C28-9C3A-43A41807E84E}
2014-08-19 10:50 - 2014-08-19 10:50 - 01058200 _____ (Adobe) C:\Users\Maren.Strohmeier\Downloads\install_flashplayer14x32au_ltr5x64d_awc_aih.exe
2014-08-19 10:49 - 2014-08-19 10:49 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{07CB269F-E961-4A5D-8DF1-35ECC981970C}
2014-08-18 13:24 - 2014-08-18 13:24 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{9E8A8E08-EF4B-4C07-A855-3CF974F63E42}
2014-08-17 14:18 - 2014-08-17 14:12 - 00000000 ____D () C:\Users\Maren.Strohmeier\Desktop\Bewerbungen
2014-08-17 12:05 - 2014-08-17 12:05 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{0BE9D8BD-B9D9-4F49-AE21-63309B85BFC9}
2014-08-16 11:50 - 2014-08-16 11:49 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{2816BD3D-3375-42F1-B440-735513958717}
2014-08-15 11:58 - 2014-08-15 11:58 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{E7D69619-6F5B-4D73-A391-32AEE2EA0D7F}
2014-08-14 01:43 - 2014-08-14 01:42 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8F463FF8-F4FC-4640-BECA-7006BFBEEE92}
2014-08-13 03:43 - 2014-08-13 03:42 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8F66ACF1-48EE-4F54-B599-23DC26D60AAB}
2014-08-12 14:30 - 2014-08-12 14:30 - 00000000 ____D () C:\Users\Maren.Strohmeier\AppData\Local\{8EAB93A1-F37D-48DD-9605-118FB588F904}
Some content of TEMP:
====================
C:\Users\Maren.Strohmeier\AppData\Local\Temp\idm.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\ose00000.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\ose00001.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\PP14_Pro_BEFIGSD_Trial.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\sdanircmdc.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\sdapskill.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\sdaspwn.exe
C:\Users\Maren.Strohmeier\AppData\Local\Temp\setupw2k.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-06 19:22
==================== End Of Log ============================ --- --- ---
Addition.txt: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-09-2014
Ran by Maren.Strohmeier at 2014-09-11 15:06:19
Running from C:\Users\Maren.Strohmeier\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Trend Micro Internet Security (Disabled - Up to date) {68F968AC-2AA0-091D-848C-803E83E35902}
AS: Trend Micro Internet Security (Disabled - Up to date) {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}) (Version: 1.5.17.25482 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.5.17.25482 - Alcor Micro Corp.) Hidden
ASUS AI Recovery (HKLM-x32\...\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.9 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.0.8 - ASUSTeK Computer Inc.)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.35 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0008 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS)
ASUS Video Magic (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4015 - CyberLink Corp.)
ASUS Video Magic (x32 Version: 6.0.4015 - CyberLink Corp.) Hidden
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.19 - asus)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0003 - ASUS)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Centricity DICOM Viewer (HKLM-x32\...\Centricity DICOM Viewer) (Version: 3.1.1 - GE Healthcare IT)
Codec-C (HKLM-x32\...\{2EF17083-57D4-4D64-AE4F-55F32A2C4571}) (Version: - Codec-C)
Complément Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Complemento Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
ControlDeck (HKLM-x32\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.8 - ASUS)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.1908 - CyberLink Corp.) Hidden
CyberLink MediaShow Espresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 5.0.1606_25588 - CyberLink Corp.)
CyberLink MediaShow Espresso (x32 Version: 5.0.1606_25588 - CyberLink Corp.) Hidden
CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)
CyberLink PhotoNow (x32 Version: 1.1.6904 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3602c - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2609a - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 8.0.2609a - CyberLink Corp.) Hidden
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3009.50 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.3009.50 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
ETDWare PS/2-x64 7.0.5.11_WHQL (HKLM\...\Elantech) (Version: 7.0.5.11 - ELAN Microelectronics Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.6 - ASUS)
Free YouTube to MP3 Converter version 3.11.34.1015 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.11.34.1015 - DVDVideoSoft Ltd.)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1) (Version: 6.2.1.1 - Oberon Media, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6259.0 - IDT)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2131 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LPT System Updater Service (x32 Version: 1.0.0.0 - LPT) Hidden <==== ATTENTION
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger 分享元件 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 32.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0 (x86 de)) (Version: 32.0 - Mozilla)
Mozilla Firefox Packages (HKCU\...\Mozilla Firefox Packages) (Version: - ) <==== ATTENTION
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0001 - Nuance Communications, Inc.)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
RavenBleu (HKCU\...\RavenBleuSA) (Version: 1.0.11.0 - Pinball Corporation.)
Shopping Helper Smartbar (HKLM-x32\...\{AC6E9B2A-A7E6-4B17-8A6C-29D519673E12}) (Version: 10.215.63.15249 - ReSoft Ltd.) <==== ATTENTION
Shopping Helper Smartbar Engine (HKCU\...\{8260a63e-f39a-4104-ab32-9672cb36a73d}) (Version: 10.215.63.15249 - ReSoft Ltd.) <==== ATTENTION
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
Trend Micro Internet Security (HKLM\...\{718D791F-F4E8-4aa7-98A6-15FDED17BDD0}) (Version: 17.50 - Trend Micro Inc.)
Trend Micro Internet Security (Version: 17.50 - Trend Micro Inc.) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2889914) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{F3F83933-75FC-4B60-84F2-3F8FA63D042E}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
USB2.0 UVC VGA WebCam (HKLM\...\USB2.0 UVC VGA WebCam) (Version: 5.8.54000.204 - Sonix)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.30.1 - ASUS)
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.15 - ASUS)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
מסייע Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
30-08-2014 21:10:37 Geplanter Prüfpunkt
07-09-2014 11:07:17 Geplanter Prüfpunkt
10-09-2014 22:25:09 Removed Nuance PaperPort 14.
10-09-2014 22:31:06 Removed Nuance PDF Viewer Plus.
11-09-2014 01:00:14 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2014-09-11 00:58 - 00000867 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 d3oxij66pru1i3.cloudfront.net
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0B4BE1D2-B741-4E8E-9E25-B49D4D2F2ABF} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-04-09] (ATK)
Task: {1D6EAA6E-BF9F-401D-8CBD-408FE25BD8FF} - System32\Tasks\{ECDC17D4-467B-4E63-8698-EA9DEE6B6A8D} => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
Task: {49B99302-2552-445C-B052-541107F81FD1} - System32\Tasks\{7B68B8DE-9D9C-43A2-AB82-1E38B60149F8} => Firefox.exe hxxp://ui.skype.com/ui/0/5.5.0.113.259/de/abandoninstall?source=lightinstaller&page=tsProblems&LastError=0&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;systemlevelpresent
Task: {612F88FB-8D2A-4918-940B-EFCFE2AF1323} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {685C9D94-6B47-46AC-8284-784F1690251A} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe [2010-06-09] (asus)
Task: {78344B0D-8878-4DAC-850F-475A1A05157F} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-07-31] (ASUS)
Task: {94AD9C78-0504-4696-94BE-2D1D9241FD9C} - System32\Tasks\{A495F92A-4BC4-41CE-BD62-32DC7B126A55} => C:\Program Files (x86)\ASUS\ASUS LifeFrame3\LifeFrame.exe [2009-03-27] (ASUS)
Task: {96063D3D-5743-4A55-A091-181612C61AE7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-03-02] (Google Inc.)
Task: {9AA7513E-A1C3-465C-9B37-BFB69156A622} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-01-04] ()
Task: {AE68F0F7-EE19-465F-8AF9-DE8B5C3B6A8F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {AFA91DF8-1CE8-4E36-88CC-B977CCBE17F8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-03-02] (Google Inc.)
Task: {B8C7D09F-168A-43A9-94EB-8CB9ADADA1F7} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {C5FEC505-8788-4D70-A4AE-7845C3633722} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK)
Task: {EF0ECC61-C347-46BE-9F28-42FE23786F65} - System32\Tasks\UpdaterEX => C:\Users\MAREN~1.STR\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {F606A9DC-489E-4DC3-A6D0-3CABD3229CCB} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {F86DDBD9-7187-4A12-ADAD-9B58C130441F} - System32\Tasks\RunAsStdUser Task => C:\Users\Maren.Strohmeier\AppData\Local\RavenBleuSA\bin\1.0.11.0\RavenBleuSA.exe
Task: {F9506A0F-6A91-4BA6-84BF-8B6005DB4CBE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\MAREN~1.STR\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2014-04-20 00:42 - 2014-04-20 00:42 - 00706560 _____ () C:\Program Files\003\buuoujqmrk64.exe
2014-02-09 12:41 - 2014-02-09 12:41 - 00032288 _____ () C:\Program Files (x86)\LPT\srpts.exe
2014-02-09 12:41 - 2014-02-09 12:41 - 00013344 _____ () C:\Program Files (x86)\LPT\srptm.exe
2010-02-23 13:50 - 2010-02-23 13:50 - 00207656 _____ () C:\Program Files\Trend Micro\Internet Security\UfPack.dll
2010-02-23 21:03 - 2010-02-23 21:03 - 01106864 _____ () C:\Program Files\Trend Micro\Internet Security\sqlite3.dll
2014-06-25 19:58 - 2014-06-25 19:58 - 00172544 _____ () C:\Program Files (x86)\65CF66DC-5268-40F3-A63A-3DA446B5FAAA\SupraSavingsService64.exe
2014-06-12 21:05 - 2014-06-12 21:05 - 00110080 _____ () C:\Program Files (x86)\65CF66DC-5268-40F3-A63A-3DA446B5FAAA\nfapi.dll
2014-06-12 21:05 - 2014-06-12 21:05 - 00456192 _____ () C:\Program Files (x86)\65CF66DC-5268-40F3-A63A-3DA446B5FAAA\ProtocolFilters.dll
2010-01-11 20:27 - 2010-01-11 20:27 - 00017920 _____ () C:\Program Files\P4G\DevMng.dll
2010-02-04 03:14 - 2010-02-04 03:14 - 00033792 _____ () C:\Program Files\P4G\OvrClk.dll
2011-03-03 00:26 - 2007-11-30 21:20 - 00051768 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
2008-09-30 23:02 - 2008-09-30 23:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2010-01-04 18:43 - 2010-01-04 18:43 - 01597440 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
2011-03-02 23:43 - 2010-04-06 08:29 - 00244904 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-02-09 12:40 - 2014-02-09 12:40 - 00012832 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Lrcnta.exe
2014-02-09 12:41 - 2014-02-09 12:41 - 00070176 _____ () C:\Program Files (x86)\LPT\srpt.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00022048 _____ () C:\Program Files (x86)\LPT\srptc.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00018976 _____ () C:\Program Files (x86)\LPT\Smartbar.Common.dll
2014-04-21 00:28 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-04-21 00:28 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-04-21 00:28 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-04-21 00:28 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-04-21 00:28 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00052256 _____ () C:\Program Files (x86)\LPT\srut.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00054304 _____ () C:\Program Files (x86)\LPT\sppsm.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00152608 _____ () C:\Program Files (x86)\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00017440 _____ () C:\Program Files (x86)\LPT\Smartbar.Personalization.Common.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00166432 _____ () C:\Program Files (x86)\LPT\Smartbar.Infrastructure.Utilities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00037408 _____ () C:\Program Files (x86)\LPT\srbu.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014880 _____ () C:\Program Files (x86)\LPT\srpdm.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00033824 _____ () C:\Program Files (x86)\LPT\Smartbar.Monetization.Proxy.ProxyService.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00033824 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00063520 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\srau.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00166432 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 02310688 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00058400 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\spbl.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00152608 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00013344 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\siem.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00054304 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\sppsm.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00728096 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00082464 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014368 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00017440 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00052256 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\srut.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00020512 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\srsbs.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00059424 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014368 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\sgml.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00037408 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\srbu.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00053280 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00014880 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\srpdm.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00048160 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-02-09 12:37 - 2014-02-09 12:37 - 00026144 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00025632 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00193056 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\sgmu.dll
2014-02-09 12:37 - 2014-02-09 12:37 - 00061440 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2014-02-09 12:41 - 2014-02-09 12:41 - 00247328 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\srns.dll
2009-11-03 00:20 - 2009-11-03 00:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-03 00:23 - 2009-11-03 00:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2012-08-10 17:51 - 2012-08-10 17:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2014-09-03 01:50 - 2014-09-03 01:50 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-09-10 02:44 - 2014-09-10 02:44 - 16825520 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
2010-02-23 15:14 - 2010-02-23 15:14 - 00041472 _____ () C:\Program Files (x86)\ASUS\ControlDeck\HelpFunc.dll
2010-02-23 15:14 - 2010-02-23 15:14 - 00071680 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Brightness.dll
2010-02-23 15:11 - 2010-02-23 15:11 - 00076288 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Volume.dll
2010-02-23 15:12 - 2010-02-23 15:12 - 00186880 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Resolution.dll
2010-02-23 15:14 - 2010-02-23 15:14 - 00050688 _____ () C:\Program Files (x86)\ASUS\ControlDeck\P4GControl.dll
2014-02-09 12:40 - 2014-02-09 12:40 - 00020512 _____ () C:\Users\Maren.Strohmeier\AppData\Local\Smartbar\Application\lrcnt.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/11/2014 00:58:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 32.0.0.5350, Zeitstempel: 0x53fc3d9f
Name des fehlerhaften Moduls: mozalloc.dll, Version: 32.0.0.5350, Zeitstempel: 0x53fc0a56
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000141b
ID des fehlerhaften Prozesses: 0x95c
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (09/10/2014 10:01:50 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/09/2014 05:31:53 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/09/2014 00:55:47 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/09/2014 04:56:41 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/08/2014 09:05:53 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/08/2014 08:17:06 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/08/2014 11:02:20 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/07/2014 11:15:57 PM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
Error: (09/07/2014 10:31:37 AM) (Source: Avira Antivirus) (EventID: 4117) (User: NT-AUTORITÄT)
Description: 0x0
System errors:
=============
Error: (09/11/2014 00:50:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PDFProFiltSrvPP" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (09/11/2014 00:29:34 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "PDFProFiltSrvPP" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (09/10/2014 08:38:26 PM) (Source: ACPI) (EventID: 10) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (09/10/2014 08:38:26 PM) (Source: ACPI) (EventID: 10) (User: )
Description: ACPI: ACPI-BIOS versucht, in einen ungültigen PCI-Operationsbereich (0x4) zu schreiben. Wenden Sie sich an den Systemhersteller, um technische Unterstützung zu erhalten.
Error: (09/10/2014 10:01:52 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Avira Browser Schutz" wurde mit folgendem dienstspezifischem Fehler beendet: %%1.
Error: (09/10/2014 10:01:52 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Avira Email Schutz" wurde mit folgendem dienstspezifischem Fehler beendet: %%1.
Error: (09/09/2014 05:31:56 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Avira Browser Schutz" wurde mit folgendem dienstspezifischem Fehler beendet: %%1.
Error: (09/09/2014 05:31:56 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Avira Email Schutz" wurde mit folgendem dienstspezifischem Fehler beendet: %%1.
Error: (09/09/2014 00:55:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Avira Browser Schutz" wurde mit folgendem dienstspezifischem Fehler beendet: %%1.
Error: (09/09/2014 00:55:49 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Avira Email Schutz" wurde mit folgendem dienstspezifischem Fehler beendet: %%1.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz
Percentage of memory in use: 50%
Total physical RAM: 3884.54 MB
Available physical RAM: 1932.86 MB
Total Pagefile: 7767.22 MB
Available Pagefile: 5513.11 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:115.22 GB) (Free:60.52 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:329.05 GB) (Free:328.92 GB) NTFS
Drive e: (PHOTODLXBE) (CDROM) (Total:0.56 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 276C3AF5)
Partition 1: (Not Active) - (Size=21.5 GB) - (Type=1C)
Partition 2: (Active) - (Size=115.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=329.1 GB) - (Type=OF Extended)
==================== End Of Log ============================ |