| |
| |||||||
Log-Analyse und Auswertung: Software-Updater beim HochfahrenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
25.01.2014, 19:37
| #1 |
| |  Software-Updater beim Hochfahren Hallo, ich habe seit einiger Zeit das Problem, dass beim Hochfahren von Windows Vista der Software Updater jedes mal erscheint u. nach Systemadministration fragt. Ich habe die Foren gelesen und dann den Test durchgeführt. Der FRST-Editor Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-01-2014 01 Ran by Sandro Reich (administrator) on 8530G on 25-01-2014 19:16:03 Running from C:\Users\Sandro Reich\Downloads Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forums ==================== Processes (Whitelisted) =================== (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (AMD) C:\Windows\System32\atiesrxx.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Program Files\Acer\Empowering Technology\Service\ETService.exe () C:\Program Files\ICQ6Toolbar\ICQ Service.exe () C:\Acer\Mobility Center\MobilityService.exe (Deutsche Telekom AG) C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe () C:\Windows\System32\PnkBstrA.exe () C:\Windows\System32\PnkBstrB.exe (Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe () C:\Windows\PLFSetI.exe (Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe (Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe () C:\Program Files\GoogleClean\GoogleRadar.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe (Realtek Semiconductor Corp.) C:\Users\Sandro Reich\AppData\Local\Temp\RtkBtMnt.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1049896 2008-04-25] (Synaptics, Inc.) HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [6294048 2008-09-19] (Realtek Semiconductor) HKLM\...\Run: [Skytel] - C:\Windows\Skytel.exe [1833504 2008-09-19] (Realtek Semiconductor Corp.) HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-29] () HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [858632 2008-12-17] (Dritek System Inc.) HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [405504 2008-08-01] (Acer Inc.) HKLM\...\Run: [eAudio] - C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-09-11] (Acer Incorporated) HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [641664 2012-04-06] (Advanced Micro Devices, Inc.) HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.) HKLM\...\Run: [NUSB3MON] - C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation) HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [718688 2009-10-01] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.) HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation) HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [17888944 2012-11-09] (Skype Technologies S.A.) HKCU\...\Run: [GoogleRadar] - C:\Program Files\GoogleClean\GoogleRadar.exe [1540096 2013-05-23] () HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation) HKCU\...\Run: [NextLive] - C:\Users\Sandro Reich\AppData\Roaming\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe) HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 MountPoints2: {133cfe2b-7da1-11e1-b7e0-001d72ed6f80} - F:\Startme.exe HKU\Default\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation) HKU\Default\...\Run: [ProductReg] - C:\Program Files\Acer\WR_PopUp\ProductReg.exe [ 2008-11-17] (Acer) HKU\Default\...\RunOnce: [AcerScrSav] - C:\Windows\Acer\run_NB.exe [ 2007-08-21] () HKU\Default User\...\Run: [WindowsWelcomeCenter] - C:\Windows\system32\oobefldr.dll [ 2009-04-11] (Microsoft Corporation) HKU\Default User\...\Run: [ProductReg] - C:\Program Files\Acer\WR_PopUp\ProductReg.exe [ 2008-11-17] (Acer) HKU\Default User\...\RunOnce: [AcerScrSav] - C:\Windows\Acer\run_NB.exe [ 2007-08-21] () Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Meine Dienste.lnk ShortcutTarget: Meine Dienste.lnk -> C:\Program Files\Telekom\Meine Dienste\StartMeineDienste.exe (Deutsche Telekom AG) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Meine Dienste.lnk ShortcutTarget: Meine Dienste.lnk -> C:\Program Files\Telekom\Meine Dienste\StartMeineDienste.exe (Deutsche Telekom AG) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Certified-Toolbar Search HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Acer | explore beyond limits HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = hxxp://isearch.avg.com/?cid={6F0F64F2-97E4-4A68-A988-06FFF726FC78}&mid=f407a071007e47d09e89d15434098673-e77cf51f5f4f98a4bf761b992dcbcee6f7b93ed3&lang=de&ds=tt014&pr=sa&d=2012-10-04 22:42:24&v=13.2.0.5&sap=hp HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = Babylon Search HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Certified-Toolbar Search HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Certified-Toolbar Search HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:newtab HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Certified-Toolbar Search HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Certified-Toolbar Search HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = Certified-Toolbar Search URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File SearchScopes: HKLM - DefaultScope {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=3.7&ts=1375739570347&tguid=46364-3869-1375739570347-AEEC1D0D83B4AD96FBEFAE55FEA3DF37&q={searchTerms} SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW SearchScopes: HKLM - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=3.7&ts=1375739570347&tguid=46364-3869-1375739570347-AEEC1D0D83B4AD96FBEFAE55FEA3DF37&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=101&systemid=406&sr=0&q={searchTerms} SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=0&systemid=410&sr=0&q={searchTerms} SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=3.7&ts=1375739570347&tguid=46364-3869-1375739570347-AEEC1D0D83B4AD96FBEFAE55FEA3DF37&q={searchTerms} SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = SearchScopes: HKCU - {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} URL = SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis) BHO: No Name - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll () BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll No File BHO: DataMngr - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\Program Files\Windows Searchqu Toolbar\Datamngr\BrowserConnection.dll (Bandoo Media, inc) BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation) BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Users\Sandro Reich\AppData\Roaming\HomeTab\HomeTab.dll (Simplytech Ltd.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) Toolbar: HKLM - ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ) Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File Toolbar: HKLM - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\SEARCH~1\Datamngr\ToolBar\searchqudtx.dll No File Toolbar: HKLM - HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Users\Sandro Reich\AppData\Roaming\HomeTab\HomeTab.dll (Simplytech Ltd.) Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File Toolbar: HKLM - No Name - !{82E1477C-B154-48D3-9891-33D83C26BCD3} - No File Toolbar: HKLM - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File Toolbar: HKLM - No Name - !{bfc39e47-d643-4dc2-aa1d-61377501c844} - No File Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - No File Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll No File FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File FF Plugin: @playstation.com/PsndlCheck,version=1.00 - C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.) FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @soe.sony.com/installer,version=1.0.3 - C:\Users\Sandro Reich\AppData\LocalLow\Sony Online Entertainment\npsoe.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Sandro Reich\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Sandro Reich\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Sandro Reich\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Extension: No Name - C:\Users\Sandro Reich\AppData\Roaming\Mozilla\Firefox\profiles\extensions\extensions [2013-06-20] FF Extension: GoPhotoIt - C:\Users\Sandro Reich\AppData\Roaming\Mozilla\Firefox\profiles\extensions\gophoto@gophoto.it.xpi [2013-08-08] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [] FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\14.2.0.1 FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\14.2.0.1 [2013-02-19] FF HKCU\...\Firefox\Extensions: [lrcspal@xinghao.net] - C:\Program Files\XingHaoLyrics\FF\ FF Extension: No Name - C:\Program Files\XingHaoLyrics\FF\ [] FF HKCU\...\Firefox\Extensions: [lrcsmonkey@lrcsmonkey.net] - C:\Program Files\Lyrics_Monkey\125.xpi Chrome: ======= CHR HomePage: CHR RestoreOnStartup: "sync": { "favicons_syncing_enabled": true, "suppress_start" CHR DefaultSearchKeyword: youjizz.com CHR DefaultSearchProvider: youjizz.com CHR DefaultSearchURL: hxxp://www.youjizz.com/srch.php?q={searchTerms} CHR DefaultNewTabURL: CHR Plugin: (Shockwave Flash) - C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.) CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.) CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (McAfee Security Scanner +) - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) CHR Plugin: (Media Go Detector) - C:\Program Files\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC) CHR Plugin: (PlayStation(R)Network Downloader Check Plug-in) - C:\Program Files\Sony\PLAYSTATION Network Downloader\nppsndl.dll (Sony Computer Entertainment Inc.) CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () CHR Plugin: (Unity Player) - C:\Users\Sandro Reich\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\system32\npDeployJava1.dll No File CHR Extension: (Price Alarm) - C:\Users\Sandro Reich\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmlgoencnlndpglbocajlimaikjohmab [2013-09-22] CHR Extension: (Google Wallet) - C:\Users\Sandro Reich\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01] CHR HKLM\...\Chrome\Extension: [bgnnidmnbdkmhfkjgdnngciimpdgohok] - C:\Program Files\ATDheNetTVApp.com\stv12.crx [2013-09-01] CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx [2013-08-05] CHR HKLM\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2012-07-22] CHR HKLM\...\Chrome\Extension: [icmijdhkcgeclpfjmibnginbbkfcbpep] - C:\Program Files\SearchGBY\Extensions\Chrome\searchgby.chrome.v0.9.55.crx [2012-07-01] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02] CHR HKLM\...\Chrome\Extension: [mmiopbgcekanlhpjkonogoljpfmhpkhf] - C:\Program Files\XingHaoLyrics\Chrome.crx [2012-10-02] CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\14.2.0.1\avg.crx [2013-02-19] CHR HKLM\...\Chrome\Extension: [ofnnlhbgdcabppjmlijllkhekcglbjlg] - C:\Program Files\Lyrics_Monkey\125.crx [2013-02-19] CHR HKLM\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files\Gophoto.it\gophotoit16.crx [2013-08-08] CHR HKCU\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2012-07-22] CHR HKCU\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - C:\Program Files\Amazon\ABB\AmazonChrome-bds-amzn.crx [2012-02-28] CHR StartMenuInternet: Google Chrome - C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\chrome.exe ========================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2012-04-05] (Advanced Micro Devices, Inc.) R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-11-28] () R2 ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [247608 2010-11-21] () S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.) R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation) R2 Netzmanager Service; C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe [2565632 2011-10-24] (Deutsche Telekom AG) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation) S3 npggsvc; C:\Windows\system32\GameMon.des [3993576 2011-11-17] (INCA Internet Co., Ltd.) S4 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2012-08-13] () R2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [107832 2012-08-13] () S4 RichVideo; c:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] () R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.) S3 SonicStage Back-End Service; C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe [112184 2007-02-05] (Sony Corporation) S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) S3 SSScsiSV; C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe [75320 2007-02-05] (Sony Corporation) S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [297984 2014-01-25] () S4 BBSvc; "C:\Program Files\Microsoft\BingBar\BBSvc.EXE" [x] S4 BBUpdate; "C:\Program Files\Microsoft\BingBar\SeaPort.EXE" [x] S4 vToolbarUpdater14.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [x] ==================== Drivers (Whitelisted) ==================== R2 ACEDRV05; C:\Windows\system32\drivers\ACEDRV05.sys [97792 2012-06-17] (Protect Software GmbH) R2 acedrv11; C:\Windows\system32\drivers\acedrv11.sys [185472 2010-02-24] (Protect Software GmbH) R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [183312 2008-10-03] (Advanced Micro Devices, Inc) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys [45184 2012-03-05] (Advanced Micro Devices) R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdLH3.sys [83984 2012-02-23] (Advanced Micro Devices) S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [33112 2013-02-19] (AVG Technologies) R3 hidshim; C:\Windows\System32\DRIVERS\hidshim.sys [5632 2008-10-08] (Windows (R) Codename Longhorn DDK provider) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation) S3 MTOnlPktAlyX; C:\Program Files\T-Online\T-Online_Software_6\Basis-Software\Basis1\MTOnlPktAlyx.sys [17536 2006-10-09] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH) R3 nuvotonhidgeneric; C:\Windows\System32\DRIVERS\nuvotonhidgeneric.sys [22528 2008-10-08] (Nuvoton Technology Corporation) S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [150560 2008-08-26] (Realtek Semiconductor Corp.) S3 TelekomNM3; C:\Program Files\Netzmanager\NMInfraIS2\Driver\TelekomNM3.sys [35040 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH) S3 xnacc; C:\Windows\System32\DRIVERS\xnacc.sys [521216 2008-01-21] (Microsoft Corporation) S3 IpInIp; system32\DRIVERS\ipinip.sys [x] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x] S3 WisINT15; \??\C:\Elements\1stboot\WisINT15.SYS [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-25 19:07 - 2014-01-25 19:15 - 00039676 _____ C:\Users\Sandro Reich\Downloads\Addition.txt 2014-01-25 19:04 - 2014-01-25 19:16 - 00030180 _____ C:\Users\Sandro Reich\Downloads\FRST.txt 2014-01-25 19:04 - 2014-01-25 19:04 - 01222144 _____ (Farbar) C:\Users\Sandro Reich\Downloads\FRST.exe 2014-01-25 19:04 - 2014-01-25 19:04 - 00000000 ____D C:\FRST 2014-01-25 18:34 - 2014-01-25 18:34 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk 2014-01-25 18:30 - 2014-01-25 18:34 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-01-25 18:30 - 2014-01-25 18:34 - 00000000 ____D C:\Program Files\iTunes 2014-01-25 18:30 - 2014-01-25 18:30 - 00000000 ____D C:\Program Files\iPod 2014-01-25 18:09 - 2014-01-25 18:47 - 00000000 ____D C:\Users\Sandro Reich\AppData\Roaming\newnext.me 2014-01-25 18:09 - 2014-01-25 18:22 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\Mobogenie 2014-01-25 18:09 - 2014-01-25 18:22 - 00000000 ____D C:\Program Files\Mobogenie 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\Documents\Mobogenie 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\genienext 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\cache 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\.android 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 _____ C:\Users\Sandro Reich\daemonprocess.txt 2014-01-25 18:06 - 2014-01-25 18:06 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\BeamriseUninstall 2014-01-25 18:04 - 2014-01-25 18:09 - 00000000 ____D C:\Program Files\IminentToolbar 2014-01-25 18:04 - 2014-01-25 18:04 - 00000000 ____D C:\Users\Sandro Reich\AppData\Roaming\IminentToolbar 2014-01-25 17:58 - 2014-01-25 18:00 - 00535480 _____ C:\Users\Sandro Reich\Downloads\firstrow_download.exe 2014-01-15 18:29 - 2014-01-15 18:29 - 00000000 ____D C:\Windows\Sun 2014-01-15 18:28 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-01-15 18:27 - 2014-01-15 18:27 - 00005315 _____ C:\Windows\system32\jupdate-1.7.0_51-b13.log 2014-01-15 18:27 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-01-15 18:27 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-01-15 18:27 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-01-06 19:18 - 2014-01-06 19:19 - 02821767 _____ C:\Users\Sandro Reich\Downloads\PGR_F1_2012.zip ==================== One Month Modified Files and Folders ======= 2014-01-25 19:16 - 2014-01-25 19:04 - 00030180 _____ C:\Users\Sandro Reich\Downloads\FRST.txt 2014-01-25 19:15 - 2014-01-25 19:07 - 00039676 _____ C:\Users\Sandro Reich\Downloads\Addition.txt 2014-01-25 19:04 - 2014-01-25 19:04 - 01222144 _____ (Farbar) C:\Users\Sandro Reich\Downloads\FRST.exe 2014-01-25 19:04 - 2014-01-25 19:04 - 00000000 ____D C:\FRST 2014-01-25 18:53 - 2011-10-23 16:33 - 00002391 _____ C:\Users\Sandro Reich\Desktop\Google Chrome.lnk 2014-01-25 18:51 - 2012-04-16 14:44 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-01-25 18:50 - 2011-10-08 16:12 - 01370044 _____ C:\Windows\WindowsUpdate.log 2014-01-25 18:50 - 2006-11-02 11:33 - 01567416 _____ C:\Windows\system32\PerfStringBackup.INI 2014-01-25 18:47 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\AppData\Roaming\newnext.me 2014-01-25 18:47 - 2012-07-07 00:26 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\Apple Computer 2014-01-25 18:45 - 2011-10-23 16:33 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-01-25 18:44 - 2011-10-08 15:50 - 00000000 _____ C:\Windows\system32\LogConfigTemp.xml 2014-01-25 18:44 - 2008-01-21 03:47 - 04170772 _____ C:\Windows\PFRO.log 2014-01-25 18:44 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2014-01-25 18:44 - 2006-11-02 13:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-01-25 18:44 - 2006-11-02 13:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-01-25 18:43 - 2006-11-02 14:01 - 00032558 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-25 18:42 - 2012-07-06 23:37 - 00000000 ____D C:\Program Files\Avidemux 2.5 2014-01-25 18:35 - 2011-10-23 16:29 - 00001148 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3924443048-4238619720-2961966764-1000UA.job 2014-01-25 18:34 - 2014-01-25 18:34 - 00001668 _____ C:\Users\Public\Desktop\iTunes.lnk 2014-01-25 18:34 - 2014-01-25 18:30 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2014-01-25 18:34 - 2014-01-25 18:30 - 00000000 ____D C:\Program Files\iTunes 2014-01-25 18:30 - 2014-01-25 18:30 - 00000000 ____D C:\Program Files\iPod 2014-01-25 18:30 - 2012-07-07 00:18 - 00000000 ____D C:\Program Files\Common Files\Apple 2014-01-25 18:23 - 2012-10-02 17:21 - 00000000 ____D C:\Program Files\DealPly 2014-01-25 18:22 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\Mobogenie 2014-01-25 18:22 - 2014-01-25 18:09 - 00000000 ____D C:\Program Files\Mobogenie 2014-01-25 18:21 - 2011-10-23 16:33 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-01-25 18:15 - 2012-07-07 00:18 - 00000000 ____D C:\ProgramData\Apple 2014-01-25 18:10 - 2009-01-22 06:42 - 00000000 ____D C:\Program Files\Acer GameZone 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\Documents\Mobogenie 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\genienext 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\cache 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 ____D C:\Users\Sandro Reich\.android 2014-01-25 18:09 - 2014-01-25 18:09 - 00000000 _____ C:\Users\Sandro Reich\daemonprocess.txt 2014-01-25 18:09 - 2014-01-25 18:04 - 00000000 ____D C:\Program Files\IminentToolbar 2014-01-25 18:09 - 2011-10-08 15:23 - 00000000 ____D C:\Users\Sandro Reich 2014-01-25 18:06 - 2014-01-25 18:06 - 00000000 ____D C:\Users\Sandro Reich\AppData\Local\BeamriseUninstall 2014-01-25 18:04 - 2014-01-25 18:04 - 00000000 ____D C:\Users\Sandro Reich\AppData\Roaming\IminentToolbar 2014-01-25 18:03 - 2012-12-16 03:00 - 00000000 ____D C:\Program Files\Gophoto.it 2014-01-25 18:00 - 2014-01-25 17:58 - 00535480 _____ C:\Users\Sandro Reich\Downloads\firstrow_download.exe 2014-01-19 08:32 - 2011-10-23 15:51 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-01-15 20:14 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET 2014-01-15 20:06 - 2009-01-22 07:05 - 00000000 ____D C:\ProgramData\Microsoft Help 2014-01-15 19:54 - 2013-08-15 22:50 - 00000000 ____D C:\Windows\system32\MRT 2014-01-15 19:48 - 2006-11-02 11:24 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2014-01-15 18:29 - 2014-01-15 18:29 - 00000000 ____D C:\Windows\Sun 2014-01-15 18:28 - 2013-11-03 18:57 - 00000000 ____D C:\ProgramData\Oracle 2014-01-15 18:27 - 2014-01-15 18:27 - 00005315 _____ C:\Windows\system32\jupdate-1.7.0_51-b13.log 2014-01-15 18:27 - 2012-03-01 18:09 - 00000000 ____D C:\Program Files\Java 2014-01-15 18:10 - 2012-11-10 23:34 - 00000000 ____D C:\Users\Sandro Reich\AppData\Roaming\Skype 2014-01-13 20:35 - 2011-10-23 16:29 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3924443048-4238619720-2961966764-1000Core.job 2014-01-13 18:24 - 2013-12-18 18:25 - 00000101 _____ C:\Users\Sandro Reich\AppData\Roaming\WB.CFG 2014-01-07 23:37 - 2011-10-08 15:35 - 00000000 ____D C:\Users\Sandro Reich\Desktop\SR14 2014-01-06 19:19 - 2014-01-06 19:18 - 02821767 _____ C:\Users\Sandro Reich\Downloads\PGR_F1_2012.zip 2013-12-31 18:33 - 2011-10-23 17:02 - 00000000 ____D C:\Users\Sandro Reich\AppData\Roaming\vlc Files to move or delete: ==================== C:\Users\Public\AlexaNSISPlugin.3548.dll Some content of TEMP: ==================== C:\Users\Sandro Reich\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe C:\Users\Sandro Reich\AppData\Local\Temp\RtkBtMnt.exe C:\Users\Sandro Reich\AppData\Local\Temp\setupA9_.exe C:\Users\Sandro Reich\AppData\Local\Temp\uninst1.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-25 18:52 ==================== End Of Log ============================ Der Addition-Editor Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-01-2014 01 Ran by Sandro Reich at 2014-01-25 19:16:42 Running from C:\Users\Sandro Reich\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} ==================== Installed Programs ====================== Update for Microsoft Office 2007 (KB2508958) (Version: - Microsoft) <==== ATTENTION Acer Crystal Eye Webcam 2.0.9.2 (Version: 2.0.9.2 - SuYin) <==== ATTENTION Acer eAudio Management (Version: 3.0.3009 - CyberLink Corp.) <==== ATTENTION Acer eDataSecurity Management (Version: 3.0.3065 - Egis Inc.) <==== ATTENTION Acer Empowering Technology (Version: 3.0.3013 - Acer Incorporated) <==== ATTENTION Acer ePower Management (Version: 3.0.3014 - Acer Incorporated) <==== ATTENTION Acer eRecovery Management (Version: 3.0.3014 - Acer Incorporated) <==== ATTENTION Acer eSettings Management (Version: 3.0.3007 - Acer Incorporated) <==== ATTENTION Acer GridVista (Version: 2.72.317 - ) <==== ATTENTION Acer Mobility Center Plug-In (Version: 3.0.3000 - Acer Inc.) <==== ATTENTION Acer Product Registration (Version: 3.0.0.10 - Acer Incorporated) <==== ATTENTION Acer ScreenSaver (Version: 1.01.1111 - Acer Incorporated) <==== ATTENTION Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated) Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated) Adobe Reader 9.5.5 - Deutsch (Version: 9.5.5 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (Version: 11.6.8.638 - Adobe Systems, Inc.) AMD APP SDK Runtime (Version: 10.0.923.1 - Advanced Micro Devices Inc.) Hidden <==== ATTENTION AMD Catalyst Install Manager (Version: 8.0.873.0 - Advanced Micro Devices, Inc.) <==== ATTENTION AMD Fuel (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden AMD USB Audio Driver Filter (Version: 1.0.7.0031 - Advanced Micro Devices, Inc.) <==== ATTENTION AMD VISION Engine Control Center (Version: 2012.0405.2205.37728 - Ihr Firmenname) Hidden <==== ATTENTION Apple Application Support (Version: 3.0 - Apple Inc.) Apple Mobile Device Support (Version: 7.1.0.32 - Apple Inc.) <==== ATTENTION Apple Software Update (Version: 2.1.3.127 - Apple Inc.) Ask Toolbar Updater (HKCU Version: 1.2.4.35882 - Ask.com) <==== ATTENTION aTube Catcher (Version: 2.9.1482 - DsNET Corp) AVG Security Toolbar (Version: 14.2.0.1 - AVG Technologies) Bing Bar (Version: 7.0.850.0 - Microsoft Corporation) Bing-Desktop (Version: 1.2.118.0 - Microsoft Corporation) Bonjour (Version: 3.0.0.10 - Apple Inc.) Broadcom Gigabit Integrated Controller (Version: 11.32.03 - Broadcom Corporation) Bundled software uninstaller (Version: - ) <==== ATTENTION C:\Program Files\Acer GameZone\GameConsole (Version: 2.0.1.2 - Oberon Media, Inc.) <==== ATTENTION Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION Catalyst Control Center Graphics Previews Common (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION Catalyst Control Center Localization All (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Chinese Standard (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Chinese Traditional (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Czech (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Danish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Dutch (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help English (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Finnish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help French (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help German (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Greek (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Hungarian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Italian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Japanese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Korean (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Norwegian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Polish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Portuguese (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Russian (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Spanish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Swedish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Thai (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION CCC Help Turkish (Version: 2012.0405.2204.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION ccc-utility (Version: 2012.0405.2205.37728 - Advanced Micro Devices, Inc.) Hidden <==== ATTENTION Clever Privacy (Version: 1.0.0.38 - Covus Freemium GmbH) Hidden Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation) <==== ATTENTION CyberLink PowerDirector (Version: 6.5.3023d - CyberLink Corp.) CyberLink PowerDirector (Version: 6.5.3023d - CyberLink Corp.) Hidden D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden DHTML Editing Component (Version: 6.02.0001 - Microsoft Corporation) Dynamite Dust Mini Golf v1.0.1 (Version: 1.0.1 - FunBox Games) F1 2010 (Version: 1.0.0001.132 - Codemasters) Hidden Free Computer Cleaner (Version: 1.0.0.30 - Covus Freemium GmbH) Free Computer Cleaner (Version: 1.0.0.30 - Covus Freemium GmbH) Hidden Free Mp3 Wma Converter V 2.2 (Version: 2.2.0.0 - Koyote Soft) Google Chrome (HKCU Version: 32.0.1700.76 - Google Inc.) Google Earth (Version: 6.0.1.2032 - Google) Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden GoogleClean (Version: 4.0.112 - Abelssoft) HomeTab 3.7 (Version: 3.7 - HomeTab) iCloud (Version: 2.1.3.25 - Apple Inc.) ICQ Toolbar (Version: 3.0.0 - ICQ) ICQ7.5 (Version: 7.5 - ICQ) iTunes (Version: 11.1.4.62 - Apple Inc.) Java 7 Update 51 (Version: 7.0.510 - Oracle) Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden Java(TM) 6 Update 31 (Version: 6.0.310 - Oracle) Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Launch Manager (Version: - ) LightScribe 1.4.142.1 (Version: 1.4.142.1 - LightScribe) Hidden LyricsPal (Version: - XingHao Software) <==== ATTENTION McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.) Media Go (Version: 2.0.317 - Sony) Media Player (HKCU Version: - ) Meine Dienste Software (Version: 2.0.5.0 - Telekom) Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version: - Microsoft Corporation) Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation) Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt (Version: 9.0 - Microsoft) Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (Version: 3.5.50.0 - Microsoft Corporation) <==== ATTENTION Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden <==== ATTENTION Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation) <==== ATTENTION Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) <==== ATTENTION Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation) <==== ATTENTION Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden <==== ATTENTION Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Office Suite Activation Assistant (Version: 2.9 - Microsoft Corporation) <==== ATTENTION Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden <==== ATTENTION Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation) Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (Version: - Microsoft Corporation) Microsoft Visual J# 2.0 Redistributable Package - SE (Version: 2.0.50728 - Microsoft Corporation) Hidden Microsoft Works (Version: 08.05.0822 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0 - Microsoft) <==== ATTENTION Mini Golf (Version: - ) Mini Golf Pro (Version: 1.0 - Media Contact LLC) MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation) NAVIGON Fresh 3.5.1 (Version: 3.5.1 - NAVIGON) NBA Live 2003 (Version: - ) Need For Speed Hot Pursuit 2 (Version: - ) Need for Speed Underground 2 (Version: - ) Netzmanager (Version: 1.07 - Deutsche Telekom AG, Marmiko IT-Solutions GmbH) Hidden Neverball 1.5.1 (Version: 1.5.1 - ) NTI Media Maker 8 (Version: 8.0.2.6329 - NewTech Infosystems) NTI Media Maker 8 (Version: 8.0.2.6329 - NewTech Infosystems) Hidden Nuvoton EC Generic HID Driver (Version: 7.80.5000 - Nuvoton Technology Corporation) OpenAL (Version: - ) OpenMG Limited Patch 4.7-07-14-05-01 (Version: - ) OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden OpenOffice 4.0.0 (Version: 4.00.9702 - Apache Software Foundation) <==== ATTENTION PhotoNow! (Version: 1.1.4619 - CyberLink Corp.) PhotoScape (Version: - ) PlayStation(R)Network Downloader (Version: 2.07.00849 - Sony Computer Entertainment Inc.) PlayStation(R)Store (Version: 4.5.16.13625 - Sony Computer Entertainment Inc.) ProtectDisc Driver, Version 11 (Version: 11.0.0.14 - ProtectDisc Software GmbH) PunkBuster Services (Version: 0.986 - Even Balance, Inc.) <==== ATTENTION QuickTime (Version: 7.74.80.86 - Apple Inc.) Rapture3D 2.4.9 Game (Version: - Blue Ripple Sound) Realtek High Definition Audio Driver (Version: 6.0.1.5704 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (Version: 3.0.1.3 - Realtek Semiconductor Corp.) Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.28.1 - Renesas Electronics Corporation) Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden Safari (Version: 5.34.57.2 - Apple Inc.) SAMSUNG USB Driver for Mobile Phones (Version: 1.2.2100.0 - SAMSUNG Electronics Co., Ltd.) Sandlot Games Client Services 1.2.2 (Version: - Sandlot Games) <==== ATTENTION Schlag den Raab - Das 2. Spiel (Version: 1.0 - Sproing Interactive GmbH) Schlag den Raab (Version: - bitComposer Games GmbH) Searchqu Toolbar (Version: 4.1.0.2735 - Bandoo Media Inc) <==== ATTENTION Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden Skispringen 2006 (Version: - ) Skype Click to Call (Version: 6.3.11079 - Skype Technologies S.A.) Skype™ 6.0 (Version: 6.0.126 - Skype Technologies S.A.) SOE Web Installer (HKCU Version: 1.0.3.171 - Sony Online Entertainment) SonicStage 4.3 (Version: 4.3 - Sony Corporation) Sony Ericsson Update Engine (Version: 2.13.6.201305161305 - Sony Ericsson Communications AB) Sony PC Companion 2.10.180 (Version: 2.10.180 - Sony) Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0 - Adobe Systems Incorporated) swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (Version: 11.1.4.0 - Synaptics) <==== ATTENTION Telekom Fotoservice (Version: - ) <==== ATTENTION T-Online 6.0 (Version: - ) T-Online WLAN-Access Finder (Version: - ) <==== ATTENTION Unity Web Player (HKCU Version: - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft) <==== ATTENTION Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION Update für Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft) <==== ATTENTION Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft) <==== ATTENTION Update für Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft) <==== ATTENTION VLC media player 2.0.7 (Version: 2.0.7 - VideoLAN) Windows 7 Upgrade Advisor (Version: 2.0.5000.0 - Microsoft Corporation) Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Essentials (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden <==== ATTENTION Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden <==== ATTENTION Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden <==== ATTENTION Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Sync (Version: 14.0.8117.416 - Microsoft Corporation) Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden <==== ATTENTION Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp) ==================== Restore Points ========================= 25-11-2013 22:18:53 Windows Update 30-11-2013 20:30:47 Geplanter Prüfpunkt 04-12-2013 17:29:00 Windows Update 11-12-2013 19:37:43 Windows Update 12-12-2013 20:29:30 Windows Update 17-12-2013 15:43:07 Travelguide Berlin 17-12-2013 15:48:44 Windows Update 17-12-2013 16:16:33 Removed Universal Adb Driver 17-12-2013 16:17:07 Removed Universal Adb Driver 20-12-2013 18:41:49 Windows Update 24-12-2013 09:46:58 Windows Update 29-12-2013 18:26:59 Windows Update 02-01-2014 18:04:40 Windows Update 06-01-2014 15:55:16 Windows Update 07-01-2014 17:03:07 TuneUp Utilities 2012 wird entfernt 07-01-2014 17:05:04 TuneUp Utilities Language Pack (de-DE) wird entfernt 10-01-2014 18:48:21 Windows Update 11-01-2014 19:44:32 Geplanter Prüfpunkt 15-01-2014 17:19:53 Windows Update 15-01-2014 18:47:50 Windows Update 23-01-2014 13:23:00 Windows Update 25-01-2014 17:16:14 Clever Privacy 25-01-2014 17:21:49 Free Computer Cleaner 25-01-2014 17:38:33 Removed Formatwandler 5 ==================== Hosts content: ========================== 2006-11-02 11:23 - 2013-09-29 19:39 - 00000798 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 google-analytics.com ==================== Scheduled Tasks (whitelisted) ============= Task: {09F0EAC0-97D5-47C0-8DC0-9039DB6FF2F6} - System32\Tasks\Google Updater and Installer => C:\Users\Sandro Reich\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-23] (Google Inc.) Task: {1B1D6865-8042-49C8-B7FB-95309076DC3E} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Sandro Reich => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation) Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI Task: {36A4A22D-30AE-433A-A8ED-25C0989F1B24} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {42348D5C-7FFD-47D2-A121-205D623F124F} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated) Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation) Task: {4822E76A-9A56-4171-B665-032C307FFD99} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3924443048-4238619720-2961966764-1000UA => C:\Users\Sandro Reich\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-23] (Google Inc.) Task: {4DFAE3A7-802C-4BFE-8A95-8123B7E1500F} - System32\Tasks\{19EB9A5D-CCBF-400E-8F04-3ED2D975ECD5} => Iexplore.exe Skype auf Ihren Computer herunterladen ? Mac, Windows, Linux*?*Skype Task: {4F56B7C0-734F-4CA6-8F66-0BD2E1175AC3} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-12-18] () Task: {5E53E547-6BF4-446B-9F70-D06BAD4F2DAF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated) Task: {69C01F8F-F12A-4711-829E-4BB8CFC5BB44} - System32\Tasks\Browser Updater\Browser Updater => Rundll32.exe "C:\Program Files\HomeTab\TBUpdater.dll",TBCheckForUpdate Task: {6E366896-C8D6-42D2-BC26-729596ED6775} - System32\Tasks\DealPlyUpdate => C:\Program Files\DealPly\DealPlyUpdate.exe [2012-07-22] (DealPly) <==== ATTENTION Task: {749AA4D4-A934-4E76-A186-1535537EAE77} - \Lyrics-Monkey Update No Task File Task: {75BAE679-2ED6-477F-A80A-86DE69725404} - System32\Tasks\Microsoft\Windows\RestartManager\{4148B09F-C021-4271-9270-7A271DD85F07} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {B6E5DC63-D58F-4FCB-8465-555B3A6166E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-23] (Google Inc.) Task: {BF5750AE-0940-43F3-8714-741C2F58E63C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3924443048-4238619720-2961966764-1000Core => C:\Users\Sandro Reich\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-23] (Google Inc.) Task: {C7AB5A19-6E39-42DB-A3A9-A1B481FFACB9} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-12-18] () Task: {CA296C6A-7622-485F-8582-BFFE73674E5D} - System32\Tasks\DealPly => C:\Users\SANDRO~1\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: {CBB8E481-1F49-4CE5-B675-FB1381FAD63F} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation) Task: {CBC0E958-DEA1-4C78-AA8F-DBD0D17221D9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2011-10-23] (Google Inc.) Task: {DEF222EC-978D-49DF-8DF7-1EB0CA8801CF} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation) Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] () Task: {F1C91A0B-1A99-4FC8-A25C-16D0BC321BAF} - System32\Tasks\PCCleaner1ClickMaint => C:\Windows\system32\1Click.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3924443048-4238619720-2961966764-1000Core.job => C:\Users\Sandro Reich\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3924443048-4238619720-2961966764-1000UA.job => C:\Users\Sandro Reich\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2012-04-05 20:56 - 2012-04-05 20:56 - 00065024 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2009-01-22 07:17 - 2009-01-22 07:17 - 00032768 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.Controller\3.0.3013.0__14bcaafdb44b5951\Framework.Model.Controller.dll 2009-01-22 07:17 - 2009-01-22 07:17 - 00020480 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3013.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll 2009-01-22 07:17 - 2009-01-22 07:17 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3013.0__3036420f80dd6947\Framework.Library.dll 2009-01-22 07:17 - 2009-01-22 07:17 - 00028672 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Host\3.0.3013.0__672b450de5a7e94a\Framework.Host.dll 2009-01-22 07:17 - 2009-01-22 07:17 - 00016384 _____ () C:\Windows\assembly\GAC_MSIL\Framework.PluginInterface\3.0.3013.0__9ecdf03bb2054f94\Framework.PluginInterface.dll 2011-10-08 15:49 - 2008-09-11 20:20 - 00016384 ____N () C:\Program Files\Acer\Empowering Technology\eAudio\eAudioSrvPlugin.dll 2009-01-22 07:17 - 2009-01-22 07:17 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3013.0__4df5dcab8860d239\Framework.Utility.dll 2011-10-08 15:50 - 2008-05-26 13:40 - 00016384 _____ () C:\Program Files\Acer\Empowering Technology\eSettings\eSettings.ServicePlugin.dll 2011-10-08 15:50 - 2008-05-26 13:37 - 00016384 _____ () C:\Program Files\Acer\Empowering Technology\eSettings\eSettings.Logger.dll 2011-10-08 15:50 - 2008-05-26 13:39 - 00143360 _____ () C:\Program Files\Acer\Empowering Technology\eSettings\eSettings.Model.Computer.dll 2011-10-08 15:50 - 2008-05-26 13:37 - 00036864 _____ () C:\Program Files\Acer\Empowering Technology\Service\eSettings.Model.ComputerInterface.dll 2009-01-22 07:17 - 2007-11-27 15:08 - 00032768 _____ () C:\Acer\Mobility Center\MobilityInterface.dll 2012-04-06 02:09 - 2012-04-06 02:09 - 00037376 _____ () C:\Windows\system32\atitmpxx.dll 2011-10-09 01:02 - 2003-06-07 22:30 - 00057344 _____ () C:\Program Files\Launch Manager\PowerUtl.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 06962640 _____ () C:\Program Files\GoogleClean\Commons.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00162768 _____ () C:\Program Files\GoogleClean\AbBrowserLibs.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00028112 _____ () C:\Program Files\GoogleClean\VersionInfo.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00072144 _____ () C:\Program Files\GoogleClean\AbGoogleLib.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00025040 _____ () C:\Program Files\GoogleClean\AbRegistryLib.dll 2013-09-29 19:34 - 2013-05-23 10:44 - 00961024 _____ () C:\Program Files\GoogleClean\CleanupPlugin.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00012752 _____ () C:\Program Files\GoogleClean\AbProcessManager.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00026576 _____ () C:\Program Files\GoogleClean\AbCookiesLib.dll 2013-09-29 19:34 - 2013-05-23 10:45 - 00020432 _____ () C:\Program Files\GoogleClean\Ags.Commons.dll 2013-09-29 19:34 - 2013-03-11 10:42 - 00615936 _____ () C:\Program Files\GoogleClean\sqlite3.dll 2012-04-05 20:56 - 2012-04-05 20:56 - 00095232 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll 2011-11-09 08:55 - 2011-11-09 08:55 - 00016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll 2012-04-05 21:00 - 2012-04-05 21:00 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2014-01-23 14:55 - 2014-01-11 11:29 - 04055320 _____ () C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\pdf.dll 2014-01-23 14:55 - 2014-01-11 11:29 - 00399640 _____ () C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll 2014-01-23 14:55 - 2014-01-11 11:28 - 01634584 _____ () C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll 2014-01-23 14:55 - 2014-01-11 11:29 - 13615896 _____ () C:\Users\Sandro Reich\AppData\Local\Google\Chrome\Application\32.0.1700.76\PepperFlash\pepflashplayer.dll 2013-07-25 23:04 - 2013-07-25 23:04 - 04591616 _____ () C:\Users\Sandro Reich\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0\libglesv2.dll 2013-07-25 23:04 - 2013-07-25 23:04 - 00112128 _____ () C:\Users\Sandro Reich\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0\libegl.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData\Temp:07BF512B AlternateDataStreams: C:\ProgramData\Temp:4CF61E54 AlternateDataStreams: C:\ProgramData\Temp:4D066AD2 AlternateDataStreams: C:\ProgramData\Temp:73933431 AlternateDataStreams: C:\ProgramData\Temp:753F86A9 AlternateDataStreams: C:\ProgramData\Temp:793F316E AlternateDataStreams: C:\ProgramData\Temp:9F683177 AlternateDataStreams: C:\ProgramData\Temp:A42A9F39 AlternateDataStreams: C:\ProgramData\Temp:AB689DEA AlternateDataStreams: C:\ProgramData\Temp:E36F5B57 AlternateDataStreams: C:\ProgramData\Temp:F3176E45 ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (01/25/2014 06:45:41 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/25/2014 06:37:26 PM) (Source: MsiInstaller) (User: 8530G) Description: Produkt: Apple Application Support -- Es ist bereits eine neuere Version von auf diesem Computer installiert. Error: (01/25/2014 05:53:37 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/23/2014 02:22:09 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT) Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL) Error: (01/23/2014 02:21:57 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/15/2014 08:24:06 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/15/2014 08:02:51 PM) (Source: .NET Runtime Optimization Service) (User: ) Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070005 Error: (01/15/2014 06:09:52 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/13/2014 06:15:47 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (01/12/2014 03:13:09 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (01/25/2014 07:14:46 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 07:14:41 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 07:14:36 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 07:14:31 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 07:14:26 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 07:14:20 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 06:45:42 PM) (Source: Service Control Manager) (User: ) Description: Parallel port driver%%1058 Error: (01/25/2014 06:45:42 PM) (Source: Service Control Manager) (User: ) Description: Windows Driver Foundation - Benutzermodus-Treiberframework%%1450 Error: (01/25/2014 06:38:13 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Error: (01/25/2014 06:38:08 PM) (Source: disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0. Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2013-10-16 12:01:00.742 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:01:00.299 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:59.857 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:59.405 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:17.219 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:16.753 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:16.235 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:15.776 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:15.208 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-10-16 12:00:14.712 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Microsoft Security Client\Drivers\Backup\NisDrv\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 62% Total physical RAM: 2429.36 MB Available physical RAM: 905.65 MB Total Pagefile: 5097.27 MB Available Pagefile: 3310.38 MB Total Virtual: 2047.88 MB Available Virtual: 1894.28 MB ==================== Drives ================================ Drive c: (ACER) (Fixed) (Total:226.48 GB) (Free:111.34 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (Sandro) (Fixed) (Total:226.51 GB) (Free:225.05 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 466 GB) (Disk ID: 1A70D0F0) Partition 1: (Not Active) - (Size=10 GB) - (Type=27) Partition 2: (Active) - (Size=226 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=227 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=3 GB) - (Type=12) ==================== End Of Log ============================ Vielen Dank im Voraus Sandro Reich |
Baum-Darstellung