Trojaner-Board - Malware AdWare

Danke schon mal für deine Hilfe Schrauber!

Hier die FRST.txt:
FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-01-2014 01

Ran by Julia (ATTENTION: The logged in user is not administrator) on MICHISPC on 26-01-2014 10:47:03

Running from C:\Users\Julia\Downloads

Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard

Internet Explorer Version 9

Boot Mode: Normal
 
 
 

==================== Processes (Whitelisted) ===================
 

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe

() C:\Windows\PLFSetI.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe

(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe

(Acer Corp.) C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe

(SPAMfighter ApS) C:\Program Files\Fighters\Tray\FightersTray.exe

(Nero AG) C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe

(Lavasoft) C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe

() C:\Program Files\AVG Secure Search\vprot.exe

(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe

(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

(Microsoft Corporation) C:\Windows\ehome\ehtray.exe

(GARMIN Corp.) C:\Program Files\Garmin\gStart.exe

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe

(Dropbox, Inc.) C:\Users\Julia\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe

(Realtek Semiconductor Corp.) C:\Users\Julia\AppData\Local\Temp\RtkBtMnt.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe

(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe

(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

(Bitberry Software) C:\Program Files\FinalMediaPlayer\FMPCheckForUpdates.exe

(Mozilla Corporation) C:\Users\Julia\AppData\Local\Mozilla Firefox\firefox.exe

(Mozilla Corporation) C:\Users\Julia\AppData\Local\Mozilla Firefox\plugin-container.exe

(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

(Microsoft Corporation) C:\Windows\System32\conime.exe
 
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [6609440 2008-10-31] (Realtek Semiconductor)

HKLM\...\Run: [BkupTray] - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [28672 2008-04-25] ()

HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-29] ()

HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13605408 2009-01-01] (NVIDIA Corporation)

HKLM\...\Run: [NvMediaCenter] - C:\Windows\system32\NvMcTray.dll [92704 2009-01-01] (NVIDIA Corporation)

HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [870920 2009-02-24] (Dritek System Inc.)

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)

HKLM\...\Run: [ArcadeDeluxeAgent] - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [147456 2008-10-08] (CyberLink Corp.)

HKLM\...\Run: [CLMLServer] - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [167936 2008-10-08] (CyberLink)

HKLM\...\Run: [PlayMovie] - C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [167936 2008-10-17] (Acer Corp.)

HKLM\...\Run: [Skytel] - C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2008-10-31] (Realtek Semiconductor Corp.)

HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-09-07] (Adobe Systems Incorporated)

HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated)

HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)

HKLM\...\Run: [CommonToolkitTray] - C:\Program Files\Fighters\Tray\FightersTray.exe [1429128 2011-10-05] (SPAMfighter ApS)

HKLM\...\Run: [NBAgent] - C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1406248 2010-10-28] (Nero AG)

HKLM\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [198032 2011-10-21] (Lavasoft)

HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)

HKLM\...\Run: [vProt] - C:\Program Files\AVG Secure Search\vprot.exe [2486296 2014-01-07] ()

HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)

HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-18] (Avira Operations GmbH & Co. KG)

HKLM\...\RunOnce: [*WerKernelReporting] - %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq [217088 2009-04-11] (Microsoft Corporation)

HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)

HKCU\...\Run: [swg] - "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)

HKCU\...\Run: [PC Suite Tray] - "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray

HKCU\...\Run: [RegistryBooster] - "C:\Program Files\Uniblue\RegistryBooster\launcher.exe" delay 20000 

HKCU\...\Run: [msnmsgr] - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

HKCU\...\Run: [gStart] - C:\Program Files\Garmin\gStart.exe [1891416 2008-08-13] (GARMIN Corp.)

HKCU\...\Run: [Spotify] - "C:\Users\Julia\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart

HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)

HKCU\...\Policies\system: [LogonHoursAction] 2

HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1

MountPoints2: {3667d608-a6cb-11de-9977-00235a64b2bf} - F:\setupSNK.exe

MountPoints2: {3667d60d-a6cb-11de-9977-00235a64b2bf} - G:\WIN\setup.exe

MountPoints2: {3667d615-a6cb-11de-9977-00235a64b2bf} - F:\setupSNK.exe

MountPoints2: {8106b28c-a10d-11de-94d8-00235a64b2bf} - F:\VIRTUAL_OPTICIAN.exe

Startup: C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CD-MENU.LNK

ShortcutTarget: CD-MENU.LNK -> E:\AutoMenu.exe (No File)

Startup: C:\Users\Julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

ShortcutTarget: Dropbox.lnk -> C:\Users\Julia\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.gmx.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.gmx.net/br/ie9_startpage

HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7ACAW

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0809&m=aspire_5737z

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0809&m=aspire_5737z

SearchScopes: HKLM - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW

SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW

SearchScopes: HKLM - {8A96AF9E-4074-43b7-BEA3-87217BDA74C8} URL = hxxp://www.searchqu.com/web?src=ieb&systemid=101&q={searchTerms}

SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = 

SearchScopes: HKCU - {3734A3F8-6072-4F63-9592-2C52583031A6} URL = hxxp://go.web.de/tb/ie_searchplugin/?su={searchTerms}

SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW

SearchScopes: HKCU - {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=tpnZQj7Tu6UOCIJRliL0S0fuwps?q={searchTerms}

SearchScopes: HKCU - {77E58392-AB69-4C60-B5FE-502C72D6B6CA} URL = hxxp://search.gmx.com/web?q={searchTerms}&origin=tb_splugin_ie

SearchScopes: HKCU - {CE676DE3-5025-4FD0-A4D0-A5295F0AE474} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?su={searchTerms}

SearchScopes: HKCU - {E2FFE350-8047-4091-9D19-3D831CAA7FC3} URL = hxxp://go.gmx.net/tb/ie_searchplugin/?su={searchTerms}

BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)

BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll (AVG Secure Search)

BHO: Avira Savings Advisor BHO - {A18A516C-AA41-46A9-92DB-60208917E442} - C:\Program Files\avira\Internet Explorer\avira32.dll ()

BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

BHO: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)

BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)

Toolbar: HKLM - Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)

Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\17.3.0.49\AVG Secure Search_toolbar.dll (AVG Secure Search)

Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

Toolbar: HKCU - Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)

Toolbar: HKCU - No Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} -  No File

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {48580E34-E37A-454A-8EC4-FC7598B01D77} hxxp://chkr-web.ifolor.net/app_support/1/ActiveX/IfolorUploader_chkr.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\17.3.0\ViProtocol.dll (AVG Secure Search)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
 

FireFox:

========

FF ProfilePath: C:\Users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\39qdokpi.default

FF Homepage: hxxp://www.gmx.ch/

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()

FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)

FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\17.3.0\\npsitesafety.dll (AVG Technologies)

FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin: @microsoft.com/WLPG,version=14.0.8051.1204 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF SearchPlugin: C:\Users\Julia\AppData\Roaming\Mozilla\Firefox\Profiles\39qdokpi.default\searchplugins\my-web-search.xml

FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-05-07]

FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-05-07]
 

Chrome: 

=======

CHR HomePage: hxxp://www.google.com/

CHR RestoreOnStartup: "hxxp://www.google.com/"

CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll No File

CHR Plugin: (QuickTime Plug-in 7.7) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll No File

CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File

CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll No File

CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)

CHR Plugin: (Remoting Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\31.0.1650.63\pdf.dll ()

CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll No File

CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

CHR Plugin: (Default Plug-in) - default_plugin No File

CHR Extension: (Skype Click to Call) - C:\Users\Julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2011-12-10]

CHR Extension: (Google Wallet) - C:\Users\Julia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-09]

CHR HKLM\...\Chrome\Extension: [cojnmaaohncijldefpkpkkakjonfmgeb] - C:\Program Files\avira\Chrome\avira-1.5.14.crx [2013-12-11]

CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
 

========================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG)

R2 AvanquestDiskOptimizer; C:\Program Files\Fix-It Disk Optimizer\AvanquestDefragSrv.exe [290560 2010-06-11] (Avanquest Software, (www.avanquest.com))

R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [69632 2008-10-04] ()

R2 iphlpsvc; C:\Windows\System32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)

R2 lmhosts; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)

R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] ()

R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)

R2 NlaSvc; C:\Windows\System32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)

R2 nsi; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)

R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-25] ()

R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()

R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)

R2 vToolbarUpdater17.3.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe [1771544 2014-01-07] (AVG Secure Search)
 

==================== Drivers (Whitelisted) ====================
 

R2 ACEDRV07; C:\Windows\system32\drivers\ACEDRV07.sys [101376 2011-03-23] (Protect Software GmbH)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-18] (Avira Operations GmbH & Co. KG)

R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-11-10] (AVG Technologies)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-18] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-12-18] (Avira Operations GmbH & Co. KG)

R1 DritekPortIO; C:\Program Files\Launch Manager\DPortIO.sys [20112 2006-11-02] (Dritek System Inc.)

S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2014-01-24] (Malwarebytes Corporation)

R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-12-18] (Avira GmbH)

S3 IpInIp; system32\DRIVERS\ipinip.sys [x]

S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]

S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]

S3 RimUsb; System32\Drivers\RimUsb.sys [x]

S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-01-26 10:47 - 2014-01-26 10:47 - 00023373 _____ C:\Users\Julia\Downloads\FRST.txt

2014-01-26 10:43 - 2014-01-26 10:43 - 01222144 _____ (Farbar) C:\Users\Julia\Downloads\FRST.exe

2014-01-26 10:43 - 2014-01-26 10:43 - 00000000 ____D C:\FRST

2014-01-24 23:26 - 2014-01-24 23:26 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Avira

2014-01-24 23:19 - 2014-01-24 23:19 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Malwarebytes

2014-01-24 16:46 - 2014-01-24 16:47 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys

2014-01-24 16:46 - 2014-01-24 16:46 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-01-24 16:46 - 2014-01-24 16:46 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes

2014-01-24 16:46 - 2014-01-24 16:46 - 00000000 ____D C:\ProgramData\Malwarebytes

2014-01-24 16:46 - 2014-01-24 16:46 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2014-01-24 16:46 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-01-24 16:43 - 2014-01-24 16:43 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Julia\Downloads\mbam-setup-1.75.0.1300.exe

2014-01-23 07:13 - 2014-01-23 07:13 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Avira

2014-01-23 07:13 - 2014-01-23 07:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Avira

2014-01-23 07:06 - 2014-01-23 07:14 - 00000000 ____D C:\Program Files\Avira

2014-01-23 07:06 - 2014-01-23 07:06 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk

2014-01-23 07:06 - 2013-12-18 09:32 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2014-01-23 07:06 - 2013-12-18 09:32 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2014-01-23 07:06 - 2013-12-18 09:32 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2014-01-23 07:06 - 2013-12-18 09:32 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys

2014-01-23 07:01 - 2014-01-23 07:04 - 130658432 _____ C:\Users\Julia\Downloads\avira_free_antivirus_de.exe

2014-01-21 13:48 - 2014-01-21 13:48 - 00004785 _____ C:\Users\Julia\Desktop\ATT00056.htm

2014-01-04 12:46 - 2014-01-09 13:20 - 00000000 ____D C:\Users\Julia\Documents\Bewerbung

2014-01-01 17:47 - 2014-01-01 17:47 - 00010752 _____ C:\Users\Julia\Desktop\Vorlage.ppt
 

==================== One Month Modified Files and Folders =======
 

2014-01-26 10:47 - 2014-01-26 10:47 - 00023373 _____ C:\Users\Julia\Downloads\FRST.txt

2014-01-26 10:43 - 2014-01-26 10:43 - 01222144 _____ (Farbar) C:\Users\Julia\Downloads\FRST.exe

2014-01-26 10:43 - 2014-01-26 10:43 - 00000000 ____D C:\FRST

2014-01-26 10:41 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0

2014-01-26 10:41 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0

2014-01-26 10:40 - 2009-08-07 00:30 - 01257530 _____ C:\Windows\WindowsUpdate.log

2014-01-26 10:38 - 2012-10-12 17:30 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-01-26 10:38 - 2011-12-02 10:33 - 00000386 _____ C:\Windows\Tasks\Final Media Player Update Checker.job

2014-01-26 10:38 - 2010-04-17 11:35 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-01-26 10:38 - 2010-04-17 11:35 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-01-26 10:38 - 2009-08-07 11:05 - 00297657 _____ C:\ProgramData\nvModes.dat

2014-01-26 10:38 - 2009-08-07 11:05 - 00297657 _____ C:\ProgramData\nvModes.001

2014-01-24 23:26 - 2014-01-24 23:26 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Avira

2014-01-24 23:20 - 2010-11-04 21:16 - 00000308 _____ C:\Windows\Tasks\WinMaximizer-Admin-Startup.job

2014-01-24 23:20 - 2010-08-26 12:22 - 00000308 _____ C:\Windows\Tasks\WinMaximizer-Julia-Startup.job

2014-01-24 23:19 - 2014-01-24 23:19 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Malwarebytes

2014-01-24 22:31 - 2009-08-07 01:41 - 00112128 _____ C:\Users\Julia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2014-01-24 21:46 - 2008-01-21 08:16 - 01445546 _____ C:\Windows\system32\PerfStringBackup.INI

2014-01-24 16:47 - 2014-01-24 16:46 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys

2014-01-24 16:46 - 2014-01-24 16:46 - 00000910 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-01-24 16:46 - 2014-01-24 16:46 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Malwarebytes

2014-01-24 16:46 - 2014-01-24 16:46 - 00000000 ____D C:\ProgramData\Malwarebytes

2014-01-24 16:46 - 2014-01-24 16:46 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2014-01-24 16:43 - 2014-01-24 16:43 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Julia\Downloads\mbam-setup-1.75.0.1300.exe

2014-01-24 07:34 - 2010-09-10 19:38 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Dropbox

2014-01-23 09:08 - 2010-09-10 19:41 - 00000000 ___RD C:\Users\Julia\Documents\My Dropbox

2014-01-23 09:04 - 2009-01-16 19:58 - 00000147 _____ C:\Windows\system32\agent.log

2014-01-23 09:04 - 2008-01-21 03:47 - 01052780 _____ C:\Windows\PFRO.log

2014-01-23 09:04 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2014-01-23 07:14 - 2014-01-23 07:06 - 00000000 ____D C:\Program Files\Avira

2014-01-23 07:13 - 2014-01-23 07:13 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Avira

2014-01-23 07:13 - 2014-01-23 07:13 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Avira

2014-01-23 07:06 - 2014-01-23 07:06 - 00001851 _____ C:\Users\Public\Desktop\Avira Control Center.lnk

2014-01-23 07:06 - 2013-08-16 06:00 - 00000000 ____D C:\ProgramData\Avira

2014-01-23 07:04 - 2014-01-23 07:01 - 130658432 _____ C:\Users\Julia\Downloads\avira_free_antivirus_de.exe

2014-01-23 06:57 - 2006-11-02 14:01 - 00032580 _____ C:\Windows\Tasks\SCHEDLGU.TXT

2014-01-22 18:43 - 2011-12-02 13:38 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Skype

2014-01-22 17:24 - 2009-08-17 14:38 - 00002637 _____ C:\Users\Julia\Desktop\Microsoft Office Word 2003.lnk

2014-01-21 13:48 - 2014-01-21 13:48 - 00004785 _____ C:\Users\Julia\Desktop\ATT00056.htm

2014-01-21 11:35 - 2006-11-02 13:52 - 00156094 _____ C:\Windows\setupact.log

2014-01-15 23:07 - 2006-11-02 11:23 - 00000275 _____ C:\Windows\win.ini

2014-01-15 23:05 - 2013-08-15 21:58 - 00000000 ____D C:\Windows\system32\MRT

2014-01-15 23:01 - 2006-11-02 11:24 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

2014-01-15 21:51 - 2013-01-23 10:33 - 00000000 ____D C:\Users\Julia\Desktop\WIFI Mediation

2014-01-13 10:04 - 2013-11-10 18:19 - 00000370 _____ C:\Users\Julia\Desktop\PW.txt

2014-01-10 09:46 - 2011-05-07 18:24 - 00000000 ____D C:\Users\Julia\Documents\Eigene Scans

2014-01-09 13:20 - 2014-01-04 12:46 - 00000000 ____D C:\Users\Julia\Documents\Bewerbung

2014-01-07 13:53 - 2013-12-20 12:07 - 00000000 ____D C:\Users\Julia\AppData\Local\Mozilla Firefox

2014-01-07 13:52 - 2013-08-29 20:02 - 00000000 ____D C:\Program Files\AVG Secure Search

2014-01-04 12:12 - 2011-05-10 12:15 - 00001756 _____ C:\Windows\wininit.ini

2014-01-04 12:12 - 2010-09-10 19:39 - 00000000 ____D C:\Users\Julia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

2014-01-03 06:19 - 2009-08-07 00:32 - 00007592 _____ C:\Users\Julia\AppData\Local\d3d9caps.dat

2014-01-01 17:47 - 2014-01-01 17:47 - 00010752 _____ C:\Users\Julia\Desktop\Vorlage.ppt

2014-01-01 17:46 - 2013-08-15 09:44 - 00000000 ____D C:\Users\Julia\Documents\10WBC
 

Files to move or delete:

====================

C:\Users\Admin\AppData\Roaming\CamLayout.ini

C:\Users\Admin\AppData\Roaming\CamShapes.ini

C:\Users\Julia\AppData\Roaming\CamLayout.ini

C:\Users\Julia\AppData\Roaming\CamShapes.ini
 
 

Some content of TEMP:

====================

C:\Users\Admin\AppData\Local\Temp\7.9.20.1-EasyShrx.Dll

C:\Users\Admin\AppData\Local\Temp\APNStub.exe

C:\Users\Admin\AppData\Local\Temp\arctic-loop.exe

C:\Users\Admin\AppData\Local\Temp\AskSLib.dll

C:\Users\Admin\AppData\Local\Temp\Install PDF Speed973868.exe

C:\Users\Admin\AppData\Local\Temp\InstallHelper.dll

C:\Users\Admin\AppData\Local\Temp\jre-6u24-windows-i586-iftw-rv.exe

C:\Users\Admin\AppData\Local\Temp\MgxVistaTools.dll

C:\Users\Admin\AppData\Local\Temp\MSN6AF2.exe

C:\Users\Admin\AppData\Local\Temp\NEventMessages.dll

C:\Users\Admin\AppData\Local\Temp\NOSEventMessages.dll

C:\Users\Admin\AppData\Local\Temp\nsr6666.tmp.exe

C:\Users\Admin\AppData\Local\Temp\nst2F31.tmp.exe

C:\Users\Admin\AppData\Local\Temp\oi_{B2DCD319-A000-405C-9F54-D991AFDA8186}.exe

C:\Users\Admin\AppData\Local\Temp\RtkBtMnt.exe

C:\Users\Admin\AppData\Local\Temp\Setup.exe

C:\Users\Admin\AppData\Local\Temp\uitools.dll

C:\Users\Admin\AppData\Local\Temp\unwise.exe

C:\Users\Admin\AppData\Local\Temp\VistaLib32_1.dll

C:\Users\Gast\AppData\Local\Temp\AskSLib.dll

C:\Users\Gast\AppData\Local\Temp\avgnt.exe

C:\Users\Gast\AppData\Local\Temp\mediaget_installer.exe

C:\Users\Gast\AppData\Local\Temp\NOSEventMessages.dll

C:\Users\Gast\AppData\Local\Temp\RtkBtMnt.exe

C:\Users\Julia\AppData\Local\Temp\AskSLib.dll

C:\Users\Julia\AppData\Local\Temp\avgnt.exe

C:\Users\Julia\AppData\Local\Temp\contentDATs.exe

C:\Users\Julia\AppData\Local\Temp\FlashPlayerUpdate.exe

C:\Users\Julia\AppData\Local\Temp\jre-6u21-windows-i586-iftw-rv.exe

C:\Users\Julia\AppData\Local\Temp\RtkBtMnt.exe

C:\Users\Julia\AppData\Local\Temp\SearchWithGoogleUpdate.exe

C:\Users\Julia\AppData\Local\Temp\SecurityScan_Release.exe

C:\Users\Julia\AppData\Local\Temp\SkypeSetup.exe

C:\Users\Julia\AppData\Local\Temp\~SpUnin~.exe

C:\Users\MH\AppData\Local\Temp\AskSLib.dll

C:\Users\MH\AppData\Local\Temp\RtkBtMnt.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 

==================== End Of Log ============================

--- --- ---

--- --- ---

Addition Editor:FRST Additions Logfile:

Code:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-01-2014 01

Ran by Julia at 2014-01-26 10:49:10

Running from C:\Users\Julia\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

200 Logik- und Denkspiele (Version: 1.00 - MediaVerlag)

32 Bit HP CIO Components Installer (Version: 7.1.4 - Hewlett-Packard) Hidden

Acer Arcade Deluxe (Version: 2.0.5817 - CyberLink Corp.)

Acer Arcade Deluxe (Version: 2.0.5817 - CyberLink Corp.) Hidden

Acer Crystal Eye Webcam 2.0.9.1 (Version: 2.0.9.1 - SuYin)

Acer eRecovery Management (Version: 4.00.3001 - Acer Incorporated)

Acer GridVista (Version: 2.72.317 - )

Acer Mobility Center Plug-In (Version: 3.0.3000 - Acer Inc.)

Acer Product Registration (Version: 3.0.0.10 - Acer Incorporated)

Acer ScreenSaver (Version: 1.01.1205 - Acer Incorporated)

Ad-Aware Browsing Protection (Version: 0.9.0.2 - Lavasoft)

Adobe AIR (Version: 3.0.0.4080 - Adobe Systems Incorporated)

Adobe AIR (Version: 3.0.0.4080 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)

Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)

Adobe Reader 9.4.6 - Deutsch (Version: 9.4.6 - Adobe Systems Incorporated)

Adobe Shockwave Player 11.5 (Version: 11.5.9.620 - Adobe Systems, Inc.)

Apple Application Support (Version: 2.3.6 - Apple Inc.)

Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)

Apple Software Update (Version: 2.1.3.127 - Apple Inc.)

Ask Toolbar (Version: 1.6.9.0 - Ask.com) <==== ATTENTION

AVG Security Toolbar (Version: 17.3.0.49 - AVG Technologies)

Avira Free Antivirus (Version: 14.0.2.344 - Avira)

Avira Savings Advisor (Version: 1.5.14 - Avira)

BestPractice (remove only) (Version:  - )

Bonjour (Version: 3.0.0.10 - Apple Inc.)

Broadcom Gigabit Integrated Controller (Version: 11.44.03 - Broadcom Corporation)

BufferChm (Version: 140.0.212.000 - Hewlett-Packard) Hidden

C410 (Version: 140.0.273.000 - Hewlett-Packard) Hidden

CamStudio version 2.7 (Version: 2.7 - CamStudio Open Source)

Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden

ClipGrab 3.2.0.9 (Version:  - Philipp Schmieder Medien)

Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation)

CyberLink PowerDirector (Version: 6.5.3524 - CyberLink Corp.)

CyberLink PowerDirector (Version: 6.5.3524 - CyberLink Corp.) Hidden

Der kleine IQ (Version: 1.00.0000 - Junior)

Der kleine IQ (Version: 1.00.0000 - Junior) Hidden

Destinations (Version: 140.0.77.000 - Hewlett-Packard) Hidden

DeviceDiscovery (Version: 140.0.212.000 - Hewlett-Packard) Hidden

Direct MIDI to MP3 Converter 3.0 (Version: 3.0 - Piston Software)

DocProc (Version: 140.0.99.000 - Hewlett-Packard) Hidden

Dropbox (HKCU Version: 2.4.11 - Dropbox, Inc.)

DVDx 2 (Version: 2.20 - labDV®)

Fax (Version: 140.0.212.000 - Hewlett-Packard) Hidden

File Type Assistant (Version:  - Trusted Software) <==== ATTENTION

Final Media Player 2011 (Version:  - Bitberry Software)

Fix-It Disk Optimizer (Version:  - Avanquest Software)

Free PDF to Word Doc Converter v1.1 (Version: 1.1 - www.hellopdf.com)

FreeOCR v4.2 (Version:  - )

Fritz und Fertig (Version: 1.00.0000 - Terzio Verlag)

Fritz und Fertig 2 (Version: 2.00.0000 - Terzio Verlag)

Garmin Communicator Plugin (Version: 2.9.3 - Garmin Ltd or its subsidiaries)

Garmin Training Center (Version: 3.4.5 - Garmin Ltd or its subsidiaries)

Garmin Training Center (Version: 3.5.3 - Garmin Ltd or its subsidiaries)

Garmin USB Drivers (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)

Google Chrome (Version: 32.0.1700.76 - Google Inc.)

Google Earth (Version: 7.1.2.2041 - Google)

Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden

GPBaseService2 (Version: 140.0.211.000 - Hewlett-Packard) Hidden

HP Customer Participation Program 14.0 (Version: 14.0 - HP)

HP Imaging Device Functions 14.0 (Version: 14.0 - HP)

HP Photosmart Prem C410 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0 - HP)

HP Smart Web Printing 4.60 (Version: 4.60 - HP)

HP Solution Center 14.0 (Version: 14.0 - HP)

HP Update (Version: 5.002.006.003 - Hewlett-Packard)

HPAppStudio (Version: 140.0.95.000 - Hewlett-Packard) Hidden

HPPhotoGadget (Version: 140.0.524.000 - Hewlett-Packard) Hidden

HPProductAssistant (Version: 140.0.212.000 - Hewlett-Packard) Hidden

HPSSupply (Version: 140.0.211.000 - Hewlett-Packard) Hidden

iCloud (Version: 2.1.2.8 - Apple Inc.)

IrfanView (remove only) (Version: 4.27 - Irfan Skiljan)

iTunes (Version: 11.1.3.8 - Apple Inc.)

Java 7 Update 25 (Version: 7.0.250 - Oracle)

Java Auto Updater (Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden

Java(TM) 6 Update 24 (Version: 6.0.240 - Sun Microsystems, Inc.)

JMicron Flash Media Controller Driver (Version: 1.00.23.06 - JMicron Technology Corp.)

Junk Mail filter update (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden

Launch Manager (Version: 2.0.04 - Acer Inc.)

LightScribe  1.4.142.1 (Version: 1.4.142.1 - hxxp://www.lightscribe.com) Hidden

Lyrioke Maker - Version 1.7.1.1710 (Version:  - Midi-Land)

Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)

MarketResearch (Version: 140.0.212.000 - Hewlett-Packard) Hidden

McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.)

Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version:  - Microsoft Corporation)

Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden

Microsoft .NET Framework 3.5 SP1 (Version:  - Microsoft Corporation)

Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden

Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)

Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)

Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0 - Microsoft Corporation)

Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)

Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1 - Nokia) Hidden

Mozilla Firefox 26.0 (x86 de) (HKCU Version: 26.0 - Mozilla)

MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden

MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden

MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden

MSVCSetup (Version: 1.00.0000 - HP) Hidden

MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)

Nero BackItUp 10 (Version: 5.6.11300.14.100 - Nero AG)

Nero BackItUp 10 Help (CHM) (Version: 10.5.10000 - Nero AG) Hidden

Nero BackItUp and Burn Essentials (Version: 10.5.10200 - Nero AG)

Nero BurnRights 10 (Version: 4.2.10500.1.102 - Nero AG)

Nero BurnRights 10 Help (CHM) (Version: 10.5.10000 - Nero AG) Hidden

Nero Control Center 10 (Version: 10.2.11100.1.1 - Nero AG) Hidden

Nero ControlCenter (Version: 11.0.16500 - Nero AG) Hidden

Nero ControlCenter 10 Help (CHM) (Version: 10.5.10000 - Nero AG) Hidden

Nero ControlCenter Help (CHM) (Version: 12.0.7000 - Nero AG) Hidden

Nero Core Components (Version: 11.0.20200 - Nero AG) Hidden

Nero Core Components 10 (Version: 2.0.17800.8.5 - Nero AG) Hidden

Nero CoverDesigner (Version: 12.0.01300 - Nero AG)

Nero CoverDesigner (Version: 12.0.10003 - Nero AG) Hidden

Nero CoverDesigner Help (CHM) (Version: 12.0.2000 - Nero AG) Hidden

Nero Express 10 (Version: 10.2.11500.17.100 - Nero AG)

Nero Express 10 Help (CHM) (Version: 10.5.10200 - Nero AG) Hidden

Nero RescueAgent 10 (Version: 3.2.10800.9.100 - Nero AG)

Nero RescueAgent 10 Help (CHM) (Version: 10.5.10000 - Nero AG) Hidden

Nero Update (Version: 11.0.11800.31.0 - Nero AG) Hidden

Network (Version: 140.0.215.000 - Hewlett-Packard) Hidden

NTI Backup Now 5 (Version: 5.1.2.606 - NewTech Infosystems)

NTI Backup Now Standard (Version: 5.1.2.606 - NewTech Infosystems) Hidden

NTI Media Maker 8 (Version: 8.0.2.6329 - NewTech Infosystems)

NTI Media Maker 8 (Version: 8.0.2.6329 - NewTech Infosystems) Hidden

NVIDIA Drivers (Version:  - NVIDIA Corporation)

OCR Software by I.R.I.S. 14.0 (Version: 14.0 - HP)

OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden

On s'entraîne 6 (Version: 1.00.0000 - Lehrmittelverlag des Kantons Zürich)

PC Connectivity Solution (Version: 11.5.13.0 - Nokia)

PDFill PDF Editor with FREE Writer and FREE Tools (Version: 8.0 - PlotSoft LLC)

PhotoNow! (Version: 1.1.5203 - CyberLink Corp.)

Prerequisite installer (Version: 12.0.0003 - Nero AG) Hidden

PS_AIO_07_C410_SW_Min (Version: 140.0.273.000 - Hewlett-Packard) Hidden

QuickTime (Version: 7.74.80.86 - Apple Inc.)

QuickTransfer (Version: 140.0.98.000 - Hewlett-Packard) Hidden

Readiris Pro 10 (Version:  - )

Realtek High Definition Audio Driver (Version: 6.0.1.5730 - Realtek Semiconductor Corp.)

Safari (Version: 5.34.57.2 - Apple Inc.)

SAMSUNG Mobile Modem Driver Set (Version:  - )

Samsung Mobile phone USB driver Software (Version:  - )

SAMSUNG Mobile USB Modem 1.0 Software (Version:  - )

SAMSUNG Mobile USB Modem Software (Version:  - )

Samsung PC Studio 3 USB Driver Installer (Version: 3.2.0.70701 - Samsung Electronics Co., Ltd.)

Scan (Version: 140.0.80.000 - Hewlett-Packard) Hidden

Shop for HP Supplies (Version: 14.0 - HP)

simfy (Version: 1.5.3 - simfy GmbH)

simfy (Version: 1.5.3 - simfy GmbH) Hidden

Skype Click to Call (Version: 6.3.11079 - Skype Technologies S.A.)

Skype™ 6.11 (Version: 6.11.102 - Skype Technologies S.A.)

SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden

SolutionCenter (Version: 140.0.214.000 - Hewlett-Packard) Hidden

Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0 - Adobe Systems Incorporated)

Status (Version: 140.0.256.000 - Hewlett-Packard) Hidden

Synaptics Pointing Device Driver (Version: 12.2.2.0 - Synaptics Incorporated)

Text-To-Speech-Runtime (Version: 1.0.0.0 - Magix Development GmbH)

Toolbox (Version: 140.0.428.000 - Hewlett-Packard) Hidden

TrayApp (Version: 140.0.212.000 - Hewlett-Packard) Hidden

Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)

WebReg (Version: 140.0.212.017 - Hewlett-Packard) Hidden

Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0 - Garmin)

Windows Live Communications Platform (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden

Windows Live Essentials (Version: 14.0.8050.1202 - Microsoft Corporation)

Windows Live Essentials (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden

Windows Live Fotogalerie (Version: 14.0.8051.1204 - Microsoft Corporation) Hidden

Windows Live Mail (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden

Windows-Treiberpaket - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0 - Nokia)
 

==================== Restore Points  =========================
 

Could not list Restore Points. Check WMI.
 
 

==================== Hosts content: ==========================
 

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       localhost

::1             localhost
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?

Task: C:\Windows\Tasks\Final Media Player Update Checker.job => ?

Task: C:\Windows\Tasks\Fix-It Disk Optimizer - Disk Optimizer.job => ?

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

Task: C:\Windows\Tasks\WinMaximizer-Admin-Startup.job => ?

Task: C:\Windows\Tasks\WinMaximizer-Julia-Startup.job => ?
 

==================== Loaded Modules (whitelisted) =============
 

2008-04-28 09:49 - 2008-04-28 09:49 - 00003072 _____ () C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTrayLOC.dll

2008-10-08 20:49 - 2008-10-08 20:49 - 00835584 ____N () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMediaLibrary.dll

2008-10-08 20:49 - 2008-10-08 20:49 - 00007680 ____N () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvcPS.dll

2009-01-16 20:22 - 2007-01-09 03:25 - 00034352 _____ () C:\Program Files\Cyberlink\Shared files\RichVideops.dll

2014-01-07 13:52 - 2014-01-07 13:52 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\log4cplusU.dll

2011-06-24 21:56 - 2011-06-24 21:56 - 00087328 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

2011-06-24 21:56 - 2011-06-24 21:56 - 01241888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Julia\AppData\Roaming\Dropbox\bin\libcef.dll

2013-12-20 12:07 - 2013-12-20 12:07 - 03559024 _____ () C:\Users\Julia\AppData\Local\Mozilla Firefox\mozjs.dll

2013-12-11 10:49 - 2013-12-11 10:49 - 16242056 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
 

==================== Alternate Data Streams (whitelisted) =========
 

AlternateDataStreams: C:\ProgramData\Temp:05113FB9

AlternateDataStreams: C:\ProgramData\Temp:2634FC95

AlternateDataStreams: C:\ProgramData\Temp:4220A65C

AlternateDataStreams: C:\ProgramData\Temp:4CF61E54

AlternateDataStreams: C:\ProgramData\Temp:4D066AD2

AlternateDataStreams: C:\ProgramData\Temp:5D7E5A8F

AlternateDataStreams: C:\ProgramData\Temp:73933431

AlternateDataStreams: C:\ProgramData\Temp:753F86A9

AlternateDataStreams: C:\ProgramData\Temp:793F316E

AlternateDataStreams: C:\ProgramData\Temp:798A3728

AlternateDataStreams: C:\ProgramData\Temp:7CACEF61

AlternateDataStreams: C:\ProgramData\Temp:A42A9F39

AlternateDataStreams: C:\ProgramData\Temp:AB689DEA

AlternateDataStreams: C:\ProgramData\Temp:C99F6ECA

AlternateDataStreams: C:\ProgramData\Temp:DAFD38AE

AlternateDataStreams: C:\ProgramData\Temp:F3176E45

AlternateDataStreams: C:\ProgramData\Temp:F65733F1
 

==================== Safe Mode (whitelisted) ===================
 
 

==================== Faulty Device Manager Devices =============
 

Name: HP Photosmart Prem C410

Description: HP Photosmart Prem C410

Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}

Manufacturer: Hewlett-Packard

Service: StillCam

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 

Name: Photosmart Prem C410 series

Description: Photosmart Prem C410 series

Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}

Manufacturer: HP

Service: 

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 

Name: Officejet Pro 8600

Description: Officejet Pro 8600

Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}

Manufacturer: HP

Service: 

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 

Name: Officejet Pro 8600

Description: Officejet Pro 8600

Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}

Manufacturer: HP

Service: 

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (01/26/2014 10:37:58 AM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 126381745
 

Error: (01/26/2014 10:37:58 AM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 126381745
 

Error: (01/26/2014 10:37:58 AM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (01/25/2014 05:32:01 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 64825170
 

Error: (01/25/2014 05:32:01 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 64825170
 

Error: (01/25/2014 05:32:01 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (01/25/2014 05:31:56 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 64820054
 

Error: (01/25/2014 05:31:56 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 64820054
 

Error: (01/25/2014 05:31:56 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (01/24/2014 08:37:31 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5557083
 
 

System errors:

=============

Error: (01/26/2014 10:38:42 AM) (Source: Dhcp) (User: )

Description: Die IP-Adresslease 192.168.1.37 für die Netzwerkkarte mit der Netzwerkadresse 00242BCE85A7 wurde durch den DHCP-Server 0.0.0.0 abgelehnt (der DHCP-Server hat eine DHCPNACK-Meldung gesendet).
 

Error: (01/23/2014 11:51:52 AM) (Source: Service Control Manager) (User: )

Description: 30000Netman
 

Error: (01/23/2014 09:07:00 AM) (Source: DCOM) (User: NT-AUTORITÄT)

Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
 

Error: (01/23/2014 09:05:52 AM) (Source: Service Control Manager) (User: )

Description: SBRE
 

Error: (01/23/2014 09:05:52 AM) (Source: Service Control Manager) (User: )

Description: DgiVecp%%20
 

Error: (01/23/2014 09:05:52 AM) (Source: Service Control Manager) (User: )

Description: Parallel port driver%%1058
 

Error: (01/23/2014 09:04:12 AM) (Source: EventLog) (User: )

Description: Das System wurde zuvor am 23.01.2014 um 09:03:12 unerwartet heruntergefahren.
 

Error: (01/23/2014 07:00:33 AM) (Source: DCOM) (User: NT-AUTORITÄT)

Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
 

Error: (01/23/2014 07:00:04 AM) (Source: Service Control Manager) (User: )

Description: SBRE
 

Error: (01/23/2014 07:00:04 AM) (Source: Service Control Manager) (User: )

Description: DgiVecp%%20
 
 

Microsoft Office Sessions:

=========================

Error: (01/26/2014 10:37:58 AM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 126381745
 

Error: (01/26/2014 10:37:58 AM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 126381745
 

Error: (01/26/2014 10:37:58 AM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (01/25/2014 05:32:01 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 64825170
 

Error: (01/25/2014 05:32:01 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 64825170
 

Error: (01/25/2014 05:32:01 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (01/25/2014 05:31:56 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 64820054
 

Error: (01/25/2014 05:31:56 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 64820054
 

Error: (01/25/2014 05:31:56 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second
 

Error: (01/24/2014 08:37:31 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5557083
 
 

CodeIntegrity Errors:

===================================

  Date: 2012-07-08 22:54:27.729

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\w2k\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:27.121

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\w2k\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:26.512

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\w2k\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:25.920

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\w2k\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:25.140

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:24.531

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:23.907

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:23.283

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\SBTIS.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:21.895

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbfw.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2012-07-08 22:54:21.130

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Ad-Aware Antivirus\Drivers\i386\wlh\sbfw.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 77%

Total physical RAM: 2813.5 MB

Available physical RAM: 627.49 MB

Total Pagefile: 5867.39 MB

Available Pagefile: 3358.2 MB

Total Virtual: 2047.88 MB

Available Virtual: 1892.07 MB
 

==================== Drives ================================
 

Drive c: (ACER) (Fixed) (Total:144.04 GB) (Free:18.1 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Drive d: (DATA) (Fixed) (Total:144.04 GB) (Free:100.24 GB) NTFS
 

==================== MBR & Partition Table ==================
 

==================== End Of Log ============================

--- --- ---

PS:

Nach Herunterladen vom Programm und danach "ausführen" gab es einige Warnmeldungen!

Die sahen folgendermassen aus:

Warning!
C:/FRST/HIVES/security!
Contunue with the next file?
(RegCreateKeyEx:5 - Zugriff verweigert)

ich habe dann auf "JA" geklickt, dass es weiter geht.

Diese Meldung kam mehrfach, mit den folgenden Endungen

C/ ...../software
System
default
sam
components
ntuser.dat

und noch zwei oder drei, die ich leider nicht aufgeschrieben habe :confused:

Ich hoffe ich habe da nichts falsch gemacht, dass ich einfach auf "Ja" gecklickt habe....