Laptop wird immer langsamer :-(
Hallo!
Ich habe immer wieder das gleiche Problem mit meinem Laptop:
Es wird sehr langsam, ich installiere das System neu - es dauert nicht lange, dann fängt das Spiel von vorne an. Mich würd interessieren, was ich falsch mache und woran es liegt. :twak:
Ich achte auf Updates, lasse hin und wieder typische Programme wie z.bsp Anti malware oder ADW Cleaner drüber laufen. Aber das reicht wohl nicht :-((( :confused:
Nun ist wieder der Zeitpunkt, wo ich am liebsten neu installieren würde :-(
Kann mir geholfen werden? Danke dafür schnon einmal vielmals im Voraus!!! :bussi: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015
Ran by CNR (administrator) on GEDIGMANN on 15-07-2015 23:54:23
Running from C:\Users\CNR\Downloads
Loaded Profiles: CNR (Available Profiles: CNR)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(IVONA Software Sp. z o.o.) C:\Program Files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe
(Mirek Wojtowicz) C:\Program Files (x86)\MWSnap\MWSnap.exe
() C:\Users\CNR\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\TiMiniService.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\TiResumeSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ASUS WebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe [1754448 2010-03-16] ()
HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [192520 2010-10-12] (Trend Micro Inc.)
HKLM\...\Run: [Trend Micro Titanium] => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe [322384 2010-09-17] (Trend Micro Inc.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212560 2012-06-13] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-31] (ELAN Microelectronics Corp.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170280 2015-06-29] (Apple Inc.)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] ()
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SSBkgdUpdate] => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-10] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-10] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [BrMfcWnd] => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [PS_MFPUtil] => C:\Program Files (x86)\MFP Network Adapter\PS_MFPUtil.exe [352256 2007-01-11] ()
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-05-15] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [730416 2015-06-10] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [HTC Sync Loader] => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [655360 2012-05-29] ()
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [193568 2014-11-28] (Geek Software GmbH)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-06-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\Run: [IVONA ControlCenter] => C:\Program Files (x86)\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe [1770360 2012-02-22] (IVONA Software Sp. z o.o.)
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\Run: [MWSnap] => C:\Program Files (x86)\MWSnap\MWSnap.exe [427008 2002-07-06] (Mirek Wojtowicz)
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\Run: [Amazon Music] => C:\Users\CNR\AppData\Local\Amazon Music\Amazon Music Helper.exe [5886784 2015-05-07] ()
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2015-03-18] (Microsoft Corporation)
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\MountPoints2: F - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\MountPoints2: {36fdc119-70c3-11e3-86b2-f46d04a39414} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\MountPoints2: {5d335979-bbf3-11e3-b6e3-f46d04a39414} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\MountPoints2: {6e77b731-036e-11e3-b705-f46d04a39414} - F:\HTC_Sync_Manager_PC.exe
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-26] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\service\AsusWSShellExt64.dll [2009-11-26] (eCareme Technologies, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/de-de/?pc=UP97&ocid=UP97DHP
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1133152659-1979382819-1107776582-1002 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll [2010-09-17] (Trend Micro Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22] (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-01-12] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-01-12] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll [2010-09-17] (Trend Micro Inc.)
BHO-x32: TmIEPlugInBHO Class -> {1CA1377B-DC1D-4A52-9585-6E06050FAC53} -> C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll [2010-09-17] (Trend Micro Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-07-13] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-22] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-11-10] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-01-12] (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-01-12] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll [2010-09-17] (Trend Micro Inc.)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-01-12] (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-13] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-01-12] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-01-12] (Google Inc.)
Handler-x32: fluxhttp - {8E2D00A0-82C6-4821-90BC-07F290841BB6} - C:\Program Files (x86)\Common Files\fluxDVD\Lib\XEB\xebnavigation.ax [2009-07-16] ()
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10] (Skype Technologies S.A.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll [2010-09-17] (Trend Micro Inc.)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll [2010-09-17] (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll [2010-09-17] (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll [2010-09-17] (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{37496E47-8370-4CBE-8D1D-364D1A179F92}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7A2CC0A8-E6AD-4266-85F1-8A59C090FA36}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8947B359-72C5-4142-B177-BAE9A7B97F13}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{95CEDACB-558B-48CA-AD7B-6F6E15FE615D}: [DhcpNameServer] 172.20.10.1
FireFox:
========
FF ProfilePath: C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default
FF NewTab: about:home
FF DefaultSearchUrl:
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin-x32: @fluxdvd.com/NPWMDRMWrapper -> C:\Program Files (x86)\Videoload Manager\NPWMDRMWrapper.dll [2010-02-04] ( )
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-13] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @protectdisc.com/NPMPDRM -> C:\Program Files (x86)\Common Files\mpDRM\NPMPDRM.dll [2010-02-03] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF SearchPlugin: C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default\searchplugins\google-images.xml [2014-11-03]
FF SearchPlugin: C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default\searchplugins\google-maps.xml [2014-11-03]
FF Extension: Avira Browser Safety - C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default\Extensions\abs@avira.com [2014-10-14]
FF Extension: FoxyDeal - C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-07-12]
FF Extension: Adblock Plus - C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-03-03]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-07-10]
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension [2015-05-16]
FF HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\CNR\AppData\Roaming\Mozilla\Firefox\Profiles\r7g90cfc.default\extensions\cliqz@cliqz.com
Chrome:
=======
CHR Profile: C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-27]
CHR Extension: (Google Drive) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-27]
CHR Extension: (YouTube) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-27]
CHR Extension: (Google Search) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-27]
CHR Extension: (Avira Browser Safety) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2014-10-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-12]
CHR Extension: (Google Wallet) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-27]
CHR Extension: (Gmail) - C:\Users\CNR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-27]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [827184 2015-06-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [450808 2015-06-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [450808 2015-06-10] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1188360 2015-06-10] (Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [217280 2015-06-02] (Avira Operations GmbH & Co. KG)
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-04-12] (Nero AG)
S2 MBAMService; D:\Programme\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [241488 2010-09-17] (Trend Micro Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 [X]
S2 Util Higher Aurum; "C:\Program Files (x86)\Higher Aurum\bin\utilHigherAurum.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-06-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132656 2015-06-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-26] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [44088 2015-03-10] (Avira Operations GmbH & Co. KG)
S3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-12-12] (Brother Industries Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
S3 nusbhost; C:\Windows\System32\DRIVERS\nusbhst.sys [16384 2006-12-29] (SC) [File not signed]
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [90704 2010-09-17] (Trend Micro Inc.)
R2 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [144464 2010-09-17] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [67664 2010-09-17] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105552 2010-09-17] (Trend Micro Inc.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-07-28] (Apple, Inc.) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-15 23:54 - 2015-07-15 23:56 - 00026093 _____ C:\Users\CNR\Downloads\FRST.txt
2015-07-15 23:53 - 2015-07-15 23:54 - 00000000 ____D C:\FRST
2015-07-15 23:48 - 2015-07-15 23:48 - 02133504 _____ (Farbar) C:\Users\CNR\Downloads\FRST64.exe
2015-07-13 22:53 - 2015-07-13 23:18 - 1049944064 _____ C:\Users\CNR\Downloads\Microsoft_Office_Professional_Plus_2013_x64_Setup.iso
2015-07-13 22:13 - 2015-07-13 22:13 - 00275168 _____ C:\Windows\Minidump\071315-154238-01.dmp
2015-07-13 22:02 - 2015-07-13 22:33 - 864354304 _____ C:\Users\CNR\Downloads\Microsoft_Office_Professional_Plus_2013_x86_Setup(1).iso
2015-07-13 21:44 - 2015-07-13 21:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-13 21:40 - 2015-07-13 21:41 - 00562784 _____ (Oracle Corporation) C:\Users\CNR\Downloads\jre-8u45-windows-i586-iftw.exe
2015-07-13 21:30 - 2015-07-13 21:31 - 00874840 _____ C:\Windows\Minidump\071315-155018-01.dmp
2015-07-13 21:08 - 2015-07-13 21:45 - 864354304 _____ C:\Users\CNR\Downloads\Microsoft_Office_Professional_Plus_2013_x86_Setup.iso
2015-07-13 21:01 - 2015-07-13 21:01 - 00013829 _____ C:\Users\CNR\Desktop\AdwCleaner[S1].txt
2015-07-13 20:47 - 2015-07-13 20:47 - 02248704 _____ C:\Users\CNR\Downloads\AdwCleaner_4.208.exe
2015-07-13 19:35 - 2015-07-13 19:35 - 00001755 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-07-13 19:35 - 2015-07-13 19:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-13 19:34 - 2015-07-13 19:35 - 00000000 ____D C:\Program Files\iTunes
2015-07-13 19:34 - 2015-07-13 19:34 - 00000000 ____D C:\Program Files\iPod
2015-07-13 19:34 - 2015-07-13 19:34 - 00000000 ____D C:\Program Files (x86)\iTunes
2015-07-13 19:10 - 2015-07-13 19:33 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-07-13 18:51 - 2015-07-13 18:51 - 01198368 _____ C:\Users\CNR\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2015-07-13 17:32 - 2015-07-13 17:32 - 00000796 _____ C:\Users\CNR\Desktop\Hochzeit - Verknüpfung.lnk
2015-07-13 16:24 - 2015-07-13 16:24 - 01636864 _____ (Farbar) C:\Users\CNR\Downloads\FRST.exe
2015-07-10 23:24 - 2015-07-12 14:34 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-26 01:02 - 2015-06-26 01:08 - 00001123 _____ C:\Users\CNR\Desktop\Amazon Music.lnk
2015-06-26 00:59 - 2015-06-26 01:00 - 41033208 _____ (Amazon) C:\Users\CNR\Downloads\AmazonMusicInstaller.exe
2015-06-23 08:42 - 2015-06-23 08:42 - 00000000 ____D C:\Users\CNR\AppData\Local\elfopatch
2015-06-21 00:56 - 2015-06-21 00:56 - 01125056 _____ (Adobe Systems Incorporated) C:\Users\CNR\Downloads\flashplayer18pp_da_install.exe
2015-06-18 10:34 - 2015-06-18 10:35 - 00008823 _____ C:\Users\CNR\Downloads\Umsaetze_1bis50_KTO144959800_20150618.csv
2015-06-15 18:04 - 2015-06-15 18:04 - 00000000 ____D C:\Users\CNR\AppData\Local\GWX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-15 23:55 - 2011-04-13 01:03 - 01366542 _____ C:\Windows\WindowsUpdate.log
2015-07-15 23:48 - 2012-10-04 15:20 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-15 23:36 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-15 23:36 - 2009-07-14 06:45 - 00018736 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-15 23:32 - 2011-01-12 17:50 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-15 23:31 - 2011-05-30 10:18 - 00000000 ____D C:\Users\CNR\AppData\Roaming\Skype
2015-07-15 20:16 - 2012-10-04 15:20 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-07-15 20:15 - 2012-10-04 15:20 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-07-15 20:15 - 2011-08-14 20:13 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-07-15 20:14 - 2013-08-12 21:32 - 00000000 ____D C:\Users\CNR\AppData\Local\HTC MediaHub
2015-07-15 20:14 - 2011-08-26 17:49 - 00000000 ____D C:\Users\CNR\AppData\Local\Htc
2015-07-15 20:13 - 2011-01-12 17:50 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-15 20:12 - 2013-03-03 19:15 - 00059786 _____ C:\Windows\setupact.log
2015-07-15 20:12 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-14 23:23 - 2011-05-12 22:34 - 00000000 ____D C:\Users\CNR\AppData\Roaming\SoftGrid Client
2015-07-14 22:49 - 2014-03-27 20:11 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-14 22:45 - 2011-05-12 22:56 - 00000000 ____D C:\Users\CNR\Documents\Outlook-Dateien
2015-07-14 22:45 - 2009-08-04 11:51 - 00715094 _____ C:\Windows\system32\perfh007.dat
2015-07-14 22:45 - 2009-08-04 11:51 - 00154784 _____ C:\Windows\system32\perfc007.dat
2015-07-14 22:45 - 2009-07-14 07:13 - 01662088 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-14 14:53 - 2014-12-02 23:01 - 00003852 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1417554057
2015-07-14 14:53 - 2014-12-02 23:00 - 00000000 ____D C:\Program Files (x86)\Opera
2015-07-13 22:13 - 2013-06-01 17:45 - 00000000 ____D C:\Windows\Minidump
2015-07-13 22:12 - 2014-08-09 08:01 - 496346270 _____ C:\Windows\MEMORY.DMP
2015-07-13 22:01 - 2011-08-26 17:37 - 00000000 ____D C:\Users\CNR\AppData\Local\Adobe
2015-07-13 21:45 - 2013-11-02 21:45 - 00000000 ____D C:\ProgramData\Oracle
2015-07-13 21:44 - 2012-09-12 08:23 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-07-13 21:43 - 2012-09-12 08:23 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-13 20:54 - 2014-01-20 22:33 - 00000000 ____D C:\AdwCleaner
2015-07-13 20:34 - 2013-07-12 09:42 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-13 20:34 - 2013-03-03 16:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-07-13 20:33 - 2013-03-03 16:25 - 00000000 ____D C:\Program Files (x86)\Avira
2015-07-13 20:25 - 2013-03-03 19:14 - 00527122 _____ C:\Windows\PFRO.log
2015-07-13 19:34 - 2012-05-08 21:44 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-07-13 18:58 - 2014-03-27 20:31 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-13 18:56 - 2014-03-27 20:30 - 00000735 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-13 18:56 - 2014-03-27 20:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-13 17:34 - 2015-05-31 17:02 - 00000332 _____ C:\Users\CNR\Downloads\bewerbungsfotos (1).zip
2015-07-13 17:33 - 2013-12-03 08:35 - 00333824 ___SH C:\Users\CNR\Desktop\Thumbs.db
2015-07-13 16:05 - 2012-10-01 12:14 - 00001103 _____ C:\Windows\wiso.ini
2015-07-13 16:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-07-13 11:09 - 2012-05-02 21:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-29 19:04 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-06-26 07:38 - 2009-07-14 06:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-06-26 01:08 - 2015-01-13 21:58 - 00001570 _____ C:\Windows\System32\Tasks\Amazon Music Helper
2015-06-23 13:30 - 2011-09-12 11:41 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-23 08:53 - 2014-02-19 14:44 - 00000000 ____D C:\Program Files (x86)\ElsterFormular
2015-06-23 08:46 - 2014-02-19 14:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ElsterFormular
2015-06-23 08:42 - 2014-02-19 15:27 - 00000000 ____D C:\Users\CNR\AppData\Local\.elfohilfe
2015-06-23 08:39 - 2011-05-12 19:39 - 00000000 ____D C:\Users\CNR
2015-06-19 21:10 - 2011-05-30 10:17 - 00000000 ____D C:\ProgramData\Skype
2015-06-18 08:41 - 2014-03-27 20:30 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-18 08:41 - 2014-03-27 20:30 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-18 08:41 - 2014-03-27 20:30 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-15 17:55 - 2011-04-13 01:41 - 00001599 _____ C:\Windows\system32\ServiceFilter.ini
2015-06-15 17:52 - 2013-03-03 16:25 - 00000000 ____D C:\ProgramData\Avira
==================== Files in the root of some directories =======
2012-01-07 11:39 - 2012-01-07 11:39 - 0000000 ____H () C:\Users\CNR\AppData\Local\BITA6EB.tmp
2011-09-12 09:51 - 2011-09-12 09:51 - 0003584 _____ () C:\Users\CNR\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-01-07 11:38 - 2012-01-07 11:38 - 0000000 _____ () C:\Users\CNR\AppData\Local\{AD2B1F12-1056-4AE0-B781-DE60337CEECD}
2011-05-30 10:19 - 2011-05-30 10:19 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-01-12 18:02 - 2010-07-07 02:10 - 0131472 _____ () C:\ProgramData\FullRemove.exe
2011-01-12 17:48 - 2011-01-12 17:49 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-01-12 17:48 - 2011-01-12 17:48 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
Some files in TEMP:
====================
C:\Users\CNR\AppData\Local\Temp\avgnt.exe
C:\Users\CNR\AppData\Local\Temp\Quarantine.exe
C:\Users\CNR\AppData\Local\Temp\SkypeSetup.exe
C:\Users\CNR\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-02-27 20:11
==================== End of log ============================
und hier Addition: Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by CNR at 2015-07-16 00:00:09
Running from C:\Users\CNR\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1133152659-1979382819-1107776582-500 - Administrator - Disabled)
CNR (S-1-5-21-1133152659-1979382819-1107776582-1002 - Administrator - Enabled) => C:\Users\CNR
Gast (S-1-5-21-1133152659-1979382819-1107776582-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1133152659-1979382819-1107776582-1005 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Trend Micro Titanium Internet Security (Disabled - Up to date) {68F968AC-2AA0-091D-848C-803E83E35902}
AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Trend Micro Titanium Internet Security (Disabled - Up to date) {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
"Durchstarten mit Ponky - Mathe 3+4" (HKLM-x32\...\"Durchstarten mit Ponky - Mathe 3+4") (Version: 2.00 - Engel Edition)
"Ponky gezielt Deutsch 3+4" (HKLM-x32\...\"Ponky gezielt Deutsch 3+4") (Version: 2.00 - Engel Edition)
Activision(R) (x32 Version: 1.00.0000 - Activision) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.4.402.287 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.9 (HKLM-x32\...\Amazon MP3-Downloader) (Version: - )
Amazon Music (HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\...\Amazon Amazon Music) (Version: 3.9.5.820 - Amazon Services LLC)
AMD Catalyst Install Manager (HKLM\...\{E17025A7-39B6-375E-8F1E-20637D19549C}) (Version: 3.0.838.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.19 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.1.0 - ASUSTeK Computer Inc.)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.27 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.50 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 2.0.46.1429 - eCareme Technologies, Inc.)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.3.585 - ASUSTEK)
AT&T Labs' Natural Voices 1.4 - Desktop Runtime (HKLM-x32\...\AT&T Labs' Natural Voices 1.4 - Desktop Runtime_is1) (Version: 1.4.0916 - AT&T Labs)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0008 - ASUS)
Avira (HKLM-x32\...\{8467e01f-0496-42ce-b247-88ef205b4880}) (Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.40.29239 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.579 - Avira Operations GmbH & Co. KG)
Balabolka (HKLM-x32\...\Balabolka) (Version: 2.05 - Ilya Morozov)
Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden
BMW Standard Tools (HKLM-x32\...\{70994916-61E9-40D2-A30C-89D2C030017F}_is1) (Version: 2.3.0 - BMW Group)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bookworm Deluxe (HKLM-x32\...\Bookworm Deluxe) (Version: - Oberon Media Inc.)
BRAINYOO (HKLM-x32\...\BRAINYOO) (Version: - BRAINYOO Ltd.)
calibre (HKLM-x32\...\{7C79A0FB-4C96-4538-B443-D99BDBA34995}) (Version: 2.8.0 - Kovid Goyal)
Childsplay 1.6 (HKLM-x32\...\Childsplay_is1) (Version: 1.6 - )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cliqz (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 0.5.22 - Cliqz.com)
Complément Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Complemento Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Cooking Dash (HKLM-x32\...\Cooking Dash) (Version: - Oberon Media Inc.)
Corel Uninstaller (HKLM-x32\...\Corel Uninstaller) (Version: - )
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DEUTSCHLAND SPIELT GAME CENTER (HKLM-x32\...\DSGPlayer) (Version: - )
Die Legende des goldenen Buches Version 1.1 (HKLM-x32\...\Die Legende des goldenen Buches_is1) (Version: 1.1 - )
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 16.1.16483 - Landesfinanzdirektion Thüringen)
ETDWare PS/2-X64 8.0.5.1_WHQL (HKLM\...\Elantech) (Version: 8.0.5.1 - ELAN Microelectronic Corp.)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.9 - ASUS)
Fotosizer 1.37 (HKLM-x32\...\Fotosizer) (Version: 1.37 - Fotosizer.com)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1) (Version: 6.2.1.1 - Oberon Media, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Governor of Poker (HKLM-x32\...\Governor of Poker) (Version: - Oberon Media Inc.)
Grundschule Lernspass mit Albert E. Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Albert E. Mathematik Klasse 1+2) (Version: - )
Hotel Dash Suite Success (HKLM-x32\...\Hotel Dash Suite Success) (Version: - Oberon Media Inc.)
HTC BMP USB Driver (HKLM-x32\...\{31A559C1-9E4D-423B-9DD3-34A6C5398752}) (Version: 1.0.5375 - HTC)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.3.0.001 - HTC Corporation)
HTC Sync (HKLM-x32\...\{1F9E5C64-165D-4679-BBB3-498D216D017B}) (Version: 3.3.7 - HTC Corporation)
HTC Sync Manager (HKLM-x32\...\{F838C3DD-5785-4F19-AD0F-BD532C8A31F4}) (Version: 2.1.45.0 - HTC)
Ice Age(TM) 4 - Voll Verschoben! Die arktischen Spiele (HKLM-x32\...\InstallShield_{C8E9B58D-637E-4E4D-B3BD-DCB1F14DBA9F}) (Version: 1.00.0000 - Activision)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
ISO Recorder (HKLM-x32\...\{1235083F-52F9-44CC-9DF5-F9B7802BB9B7}) (Version: 3.0.0 - Alex Feinman)
iTunes (HKLM\...\{4046F74A-28F8-48C6-A5D3-2AFC472574C1}) (Version: 12.2.0.145 - Apple Inc.)
IVONA 2 (HKLM-x32\...\IVONA 2) (Version: 1.6.37 - IVONA Software Sp. z o.o.)
IVONA ControlCenter (HKLM-x32\...\IVONA ControlCenter) (Version: 1.0.25 - IVONA Software Sp. z o.o.)
Java 7 Update 7 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217007FF}) (Version: 7.0.70 - Oracle)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Jewel Quest 3 (HKLM-x32\...\Jewel Quest 3) (Version: - Oberon Media Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
L&H TTS3000 Deutsch (HKLM-x32\...\LHTTSGED) (Version: - )
Luxor 3 (HKLM-x32\...\Luxor 3) (Version: - Oberon Media Inc.)
Mahjongg dimensions (HKLM-x32\...\Mahjongg dimensions) (Version: - Oberon Media Inc.)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger 分享元件 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
MFP Network Adapter (HKLM-x32\...\{7832C74F-0CA6-4F57-BB27-631F33031336}) (Version: 1.00.2000 - Sercomm)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Moorhuhn - Juwel der Finsternis (HKLM-x32\...\Moorhuhn - Juwel der Finsternis) (Version: - )
Mozilla Firefox 39.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MWSnap 3 (HKLM-x32\...\MWSnap 3) (Version: 3.0.0.74 - Mirek Wojtowicz)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.3 - F.J. Wechselberger)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
Opera Stable 30.0.1835.125 (HKLM-x32\...\Opera 30.0.1835.125) (Version: 30.0.1835.125 - Opera Software)
PaperPort Image Printer 64-bit (HKLM\...\{ABA4FAF1-6389-45F9-92CE-3914A4E5C471}) (Version: 1.00.0000 - Nuance Communications, Inc.)
PDF Password Remover (HKLM-x32\...\{DB150C19-4A8F-4EF7-AC75-96098EACE179}) (Version: 1.0.6 - PDF Technologies)
PDF24 Creator 6.9.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.2.1 - Frank Heindörfer, Philip Chinery)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
ScanSoft PaperPort 11 (HKLM-x32\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.00.0000 - Virage Logic, Corp.)
Sp5 (x32 Version: 5.1.4324.0 - Microsoft) Hidden
Sp5Intl (x32 Version: 5.1.4324.0 - Microsoft) Hidden
Sp5TTInt (x32 Version: 5.1.4324.0 - Microsoft) Hidden
SpCommon (x32 Version: 5.1.4324.0 - Microsoft) Hidden
SpPhones (x32 Version: 6.0.3122.0 - Microsoft) Hidden
Super Mario Bros. X version 1.3 (HKLM-x32\...\{C9EAEE6B-741F-421D-B9CE-9FA300DA92AD}_is1) (Version: 1.3 - SuperMarioBrothers.org)
Sweet Home 3D version 3.3 (HKLM-x32\...\Sweet Home 3D_is1) (Version: - eTeks)
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
TeamViewer 6 (HKLM-x32\...\TeamViewer 6) (Version: 6.0.10511 - TeamViewer GmbH)
Text Speaker 3.2 (HKLM-x32\...\Text Speaker_is1) (Version: - Deskshare Inc.)
Trend Micro Titanium Internet Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 3.0 - Trend Micro Inc.)
Trend Micro Titanium Internet Security (Version: 3.00 - Trend Micro Inc.) Hidden
Videoload Manager 2.0.2200 (HKLM-x32\...\Videoload Manager) (Version: 2.0.2200 - T-Online)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Utils (HKLM-x32\...\Windows Utils) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.1 - ASUS)
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS)
WISO EÜR & Kasse 2012 (HKLM-x32\...\{BD2DA092-F254-43D0-9683-DD09840315C4}) (Version: 19.03.7334 - Buhl Data Service GmbH)
WISO EÜR & Kasse 2013 (HKLM-x32\...\{85517AFF-D393-49B1-9159-4AB88ED2D6FA}) (Version: 20.05.8246 - Buhl Data Service GmbH)
WISO EÜR & Kasse 2014 (HKLM-x32\...\{50320153-AE64-4CBB-B5FC-73C5C22B545D}) (Version: 21.01.8499 - Buhl Data Service GmbH)
WISO EÜR & Kasse 2015 (HKLM-x32\...\{A6981B8B-FDEF-4BB4-917D-1CFFACEA241F}) (Version: 22.05.8946 - Buhl Data Service GmbH)
Wondershare PDF Password Remover (Build 1.3.0) (HKLM-x32\...\{1719FAD6-2F6A-4F5E-BF2B-1F6F6F1E3806_PasswordRemover}_is1) (Version: - Wondershare Software)
World of Goo (HKLM-x32\...\World of Goo) (Version: - Oberon Media Inc.)
XnView 1.98.2 (HKLM-x32\...\XnView_is1) (Version: 1.98.2 - Gougelet Pierre-e)
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
מסייע Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation)
適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
19-06-2015 12:16:18 Windows Update
23-06-2015 08:38:44 Windows Update
01-07-2015 20:54:25 Windows Update
10-07-2015 22:11:34 Windows Update
13-07-2015 19:04:42 Installed iTunes
14-07-2015 15:05:08 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2012-08-27 22:44 - 00000853 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {099DAFBB-C0DF-479D-A573-3A97CEFC11CE} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2011-11-15] (ASUS)
Task: {0E544C1E-02BC-4F06-8C29-E89BD32B5C32} - System32\Tasks\{D4845496-8FA8-4D1D-847D-E340F96EF59C} => pcalua.exe -a C:\Users\CNR\Downloads\rescue2usb1007(2).exe -d C:\Users\CNR\Downloads
Task: {0EAD8FB6-F1C6-4046-977E-86FBEB6666B9} - \SystemSockets\SystemSockets No Task File <==== ATTENTION
Task: {0FD0D0D5-C986-4CEA-9EE8-FC89DB936B3E} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-05-29] ()
Task: {3A18F6ED-6ACE-4406-BDA7-7E4127812B4E} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {4666AB76-DFA0-436E-A20B-5A092097DA20} - System32\Tasks\{D2DB500C-368C-4657-B373-8FD6ED106DE1} => pcalua.exe -a "C:\Program Files (x86)\Rechnungsverwalter\rechnungsverwalter.exe" -d "C:\Program Files (x86)\Rechnungsverwalter"
Task: {6454799E-A467-4F70-881E-4C5B66B78103} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {7261F7CD-CE37-4824-AABE-7915090E0700} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS)
Task: {7818E01C-63B8-4207-BCE0-AB89B0E4A545} - System32\Tasks\Amazon Music Helper => C:\Users\CNR\AppData\Local\Amazon Music\Amazon Music Helper.exe [2015-05-07] ()
Task: {A8EADFE7-3614-4BC4-90DB-C547D626C005} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-11-17] (ASUSTeK Computer Inc.)
Task: {B99B25C4-D582-4CDD-A2A4-8231CF3BF7B3} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
Task: {B9C2DBE8-D596-4524-B033-70CB6A3F362A} - System32\Tasks\{0F154629-7B5B-49C4-94D3-30519FA9AA6A} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-06-02] (Skype Technologies S.A.)
Task: {C12012C5-397F-4104-98C2-396321DCF603} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {C315BAA9-F05E-4645-8F5E-512990BAC80B} - \Browser Updater\Browser Updater No Task File <==== ATTENTION
Task: {E1728135-0F59-41F3-A95C-278D085D8C41} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {E6B5EEC6-02E5-4347-A193-7442CD642C4E} - System32\Tasks\{C7825266-B686-4F93-BA4B-4BC550127A1A} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {EDDFAA73-169C-4639-AEE9-BC906C5589B5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F332269F-EA1E-4092-A688-E7088F7F0EAF} - \ProtectedSearch\Protected Search No Task File <==== ATTENTION
Task: {F5C8F8D8-C77F-4170-9E53-CD8BA563EB6D} - System32\Tasks\{8359ACAB-5CAD-4F5E-87FF-12F4B7BCCF42} => pcalua.exe -a C:\Users\CNR\Downloads\rescue2usb1007(1).exe -d C:\Users\CNR\Downloads
Task: {F9D47F90-692F-4440-BC77-A87B188987E0} - System32\Tasks\Opera scheduled Autoupdate 1417554057 => C:\Program Files (x86)\Opera\launcher.exe [2015-07-10] (Opera Software)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2011-07-19 12:50 - 2005-03-12 01:07 - 00087040 _____ () C:\Windows\System32\pdfcmnnt.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-03-16 03:48 - 2010-03-16 03:48 - 00148816 _____ () C:\Program Files (x86)\ASUS\ASUS WebStorage\EcaremeDLL.dll
2011-01-12 18:01 - 2011-01-12 18:01 - 00030032 _____ () C:\Windows\assembly\GAC_MSIL\SqliteShared\1.0.3726.20828__0d0f4b69e50e559b\SqliteShared.dll
2011-01-12 18:01 - 2011-01-12 18:01 - 00931840 _____ () C:\Windows\assembly\GAC_64\System.Data.SQLite\1.0.60.0__db937bc2d44ff139\System.Data.SQLite.dll
2010-07-14 17:11 - 2010-07-14 17:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2010-03-16 03:48 - 2010-03-16 03:48 - 01754448 _____ () C:\Program Files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe
2015-02-13 04:20 - 2015-02-13 04:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-13 21:58 - 2015-05-07 21:12 - 05886784 _____ () C:\Users\CNR\AppData\Local\Amazon Music\Amazon Music Helper.exe
2010-09-24 01:53 - 2010-09-24 01:53 - 01601536 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
2012-05-29 10:06 - 2012-05-29 10:06 - 00655360 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2011-01-12 18:05 - 2010-09-17 10:52 - 00047104 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_36.dll
2011-01-12 18:05 - 2010-09-17 10:52 - 00042496 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_36.dll
2011-11-17 12:33 - 2011-11-17 12:33 - 00209920 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2009-11-03 00:20 - 2009-11-03 00:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-03 00:23 - 2009-11-03 00:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00104448 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\OutputLog.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00516599 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00094208 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\fdHttpd.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00393216 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\HtcDetect.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00151552 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDisk.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00172032 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\htcDetectLegend.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 00559244 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\sqlite3.7.dll
2012-05-29 10:06 - 2012-05-29 10:06 - 01515520 _____ () C:\Program Files (x86)\HTC\HTC Sync 3.0\Maps\R66Api.dll
2013-08-01 18:31 - 2013-08-01 18:31 - 00030056 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2013-08-01 18:32 - 2013-08-01 18:32 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2013-08-01 18:33 - 2013-08-01 18:33 - 00044392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2013-08-01 18:33 - 2013-08-01 18:33 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2013-08-01 18:33 - 2013-08-01 18:33 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2013-08-01 18:38 - 2013-08-01 18:38 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:3E7393FC
AlternateDataStreams: C:\ProgramData\Temp:81F83028
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1133152659-1979382819-1107776582-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\CNR\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{465423EC-0915-46CA-BA76-A9FC64226E5C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{DA78110C-2370-4EB5-9B93-16E4CC27C9EF}] => (Allow) LPort=2869
FirewallRules: [{53158159-126F-443C-8507-1D4526A6A587}] => (Allow) LPort=1900
FirewallRules: [{B6CE2B8A-3326-4CC7-A7B0-A840B904C03F}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3B2D6E27-6F8A-47D0-8F73-7AA9B9DB2770}] => (Allow) LPort=5353
FirewallRules: [{1DEF9043-1413-470B-B7AC-463B9A6D6772}] => (Allow) LPort=8182
FirewallRules: [{80307C67-B6A6-44E4-9A27-6E341DD50212}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{2804C94D-6C90-4861-9E38-1F1316EBFCEE}] => (Allow) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe
FirewallRules: [{44D2CA9F-9DE7-49ED-BBCF-F6718A0AFD54}] => (Allow) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer.exe
FirewallRules: [{FE94FA23-92DD-492E-9251-E8EB5FF2D5F0}] => (Allow) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
FirewallRules: [{78EAF672-B860-4EE5-B300-54BCC4D793D5}] => (Allow) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
FirewallRules: [{07896EA7-7125-468C-894A-37EEE8BDBB64}] => (Allow) C:\Program Files (x86)\MFP Network Adapter\PS_MFPUtil.exe
FirewallRules: [{081A167A-975E-4409-AEAE-C0FDC7162DDB}] => (Allow) C:\Program Files (x86)\MFP Network Adapter\PS_MFPUtil.exe
FirewallRules: [{D902E752-572B-42DF-9AFF-4F5D847D17DC}] => (Allow) C:\Program Files (x86)\MFP Network Adapter\PS_MFPUtil.exe
FirewallRules: [{EF01EC0A-224A-4C95-B89F-8056B97D15C3}] => (Allow) C:\Program Files (x86)\MFP Network Adapter\PS_MFPUtil.exe
FirewallRules: [{4F61DDF5-7BDD-482F-B4B1-E7983AAA87A6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6731B718-702E-49CF-AF3A-946224347BFA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{2F997AA6-3DE5-4D83-826C-CB8C98726309}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{75BCDAA5-752E-4B84-A3C4-C63CEB1D89AC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D198E438-A3A7-40B1-B5FF-E59F6B68263C}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{62FBF74A-4C6A-4321-B771-A8F81828C7BB}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [TCP Query User{F0BE1B18-0710-43CC-A218-9F34F91061CD}C:\users\cnr\downloads\tinyumbrella-5.11.01.exe] => (Allow) C:\users\cnr\downloads\tinyumbrella-5.11.01.exe
FirewallRules: [UDP Query User{CAFEF7BF-BE70-4ACA-BF38-9C20C93BA035}C:\users\cnr\downloads\tinyumbrella-5.11.01.exe] => (Allow) C:\users\cnr\downloads\tinyumbrella-5.11.01.exe
FirewallRules: [{6F6E158F-D541-41E5-BB4B-B6FB3025FF54}] => (Block) C:\users\cnr\downloads\tinyumbrella-5.11.01.exe
FirewallRules: [{D33D9E54-5F78-422B-8291-1646338C98A5}] => (Block) C:\users\cnr\downloads\tinyumbrella-5.11.01.exe
FirewallRules: [{FC2C9496-BF05-4EBA-B2ED-4673731AC25C}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{DEE82F1F-4D06-4934-A298-5E54789AAEBB}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{0530C808-063D-4C70-8EF6-6247FD520FEC}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{0B79949A-032F-4669-8A6F-ECA4E3BBA8F0}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{92206F92-B360-4C1D-BBE8-54AE66791CAB}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{FC38960A-0615-4359-8EA8-531A95AB7783}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{C52B28C2-E734-41F2-A8B5-F3B5AA3C9704}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{A30D2A3D-8867-4477-822A-7315198B067B}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{3F3AED38-DC00-4B36-AB14-DFCD157CA520}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{BE9A6931-CF76-4176-8389-8710E4C4CA1C}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{2AF69BA0-2913-4AC6-9EAD-F96BC11BE2E4}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{2AF200E0-CC9A-4FB9-A5E4-CF90CF990C89}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{56DEF48C-F7E1-4935-BEB2-200A50F73893}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{5CB47BDF-8E24-49F6-A130-F225FD79857C}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{D0E4CD3F-182D-47E0-9F01-7EEEB62D390F}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{90E403C9-CBF7-471A-AD6D-A8D3D47076FC}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{0663BD20-D270-4488-BD09-261DF33F7B96}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{2693469B-6BDB-46CA-8AFF-9188E07EB2A0}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{F2A8515F-66CF-4CB9-ACC6-2D938C5A8389}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{6B5DD961-6781-4A42-AB1B-E99546FC1412}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{F040F470-93B0-4E61-8A48-CF9EF05D969C}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{1DEF7F24-014C-48E2-9621-672B8D164843}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{7EEA3EF9-45DE-4E8D-859B-CFD80F42D4F0}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{83E93D98-2CFB-489C-BA23-6A7791399EEA}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{84416F98-28AE-4C57-A638-2F46344DFD18}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{4AB53363-C479-4A4E-AFE9-9193A51C7E0E}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{0192C092-7EA9-41B4-98AF-46AAFA73B39A}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{B8DF2E22-17F5-48BA-B2C5-FA32E7AD9B93}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{226EF77E-F8FF-4B60-AA63-AD10B21B828D}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{D6F1C77B-E79D-40BD-BC7D-27D0149C5550}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{FAC2E0D4-310B-4B9F-981F-5B53E923869F}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{90F8D9E1-7D79-4D22-8E0A-7B86A5BF5E8E}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{7B641BE7-D903-4FC4-8A4D-F82215D5FCE5}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{0BE8AD51-30C4-49DC-ADC7-7705CADA0D7E}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{64185CA9-E287-469A-8BCA-919692E686C8}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{EEAD885D-5DE6-4E03-BE26-77D277FFF423}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{BCF6A6DD-BD0B-48FF-9CB8-9737485A4757}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{94E2BD13-5644-41D1-8BF9-81E7C34A3110}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{A68AAE9D-270C-4BE3-8FC0-CF5537A64BE7}] => (Allow) C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe
FirewallRules: [{01045E87-674D-4C81-9B10-DF659530787E}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{7F695F9A-89FB-4C09-BFAA-6057276D6B74}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{BD692066-4B0C-4A23-8EDC-CA05BA7D13A7}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{8A6182A4-B5B5-44C0-AE7D-A23D117ACCF1}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{966409F8-0654-4D72-8524-80B93381CAAD}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{8772C63A-4CFE-4F1A-9D00-BF044808E1B0}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{451CC3D3-08E1-4055-AD3B-9FB08C658320}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{E7ADF98A-CF95-425C-939E-9D00D32A5FDF}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{A574E1DC-C058-4B56-A3A4-13C114925B82}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{7C3C079F-DC32-45D3-9105-F5C19739D9F7}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{2271A407-BEC8-4A32-B751-DDE058A49E20}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{0740E60B-1049-4725-AA4C-6E81FE0AF488}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{1A0D75DB-0E7F-440F-B8A1-7EB2F7D22416}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{C0AEF5EA-004B-42E5-8D3B-3FA188DA9F84}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{989EAB89-C9EE-4A08-8462-2D9E491CC535}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{83CB0742-B888-4243-89C6-90FC28B73B4F}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{712D3CA8-8AF7-47C0-9E31-72A9300F87F2}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{D45E0519-0FC4-4069-ABC2-21A2E09BC058}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{41897FA8-EF2F-4508-9698-EFACB3891192}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{B1BCE144-DCE2-470B-8426-DC8471E452AF}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{7466D754-1180-4ED1-935F-F50716C4BEE0}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{122652E8-13C4-4EEF-9950-801573028BB4}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{AFD77272-6C4E-4037-BD8F-24AE3FE2F6A0}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{8A75E316-1C54-491F-B088-3EFB72BC6478}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{B63B7D23-E348-4472-B506-C59AACE25541}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{1D7FE914-DA7E-4901-A5F2-F8AF339C35B6}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{71BCF190-FCEE-415A-9A1E-44F3B7E600DB}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{7CECDF12-0345-4FA3-8A43-A3BCE8C410B5}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{E9485A3D-8AF6-42CE-BB3E-29151BC91DD0}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{22747785-4A8B-4B44-B49F-2A51AE350D0F}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{6140AFFC-0468-4B08-A64D-9FE826332B8A}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{748B62A6-090E-4CD3-9C3F-8D4B21CB8001}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{3EE153C8-3475-48A5-88BB-A555F86E2890}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{1517324F-D56D-4C5A-868A-3DFCEDA2B173}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{7B716682-9E1B-46C8-AA63-D99D880D4D52}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{36C6E741-D7B5-4FAD-8A69-5487BCB16CB6}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{EB62BD10-7EBF-4A8E-B95B-8C3F091C2E9A}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{880F0D8F-D5A0-437B-91F8-6C34A1CDE145}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{72073023-5C03-4F0D-934F-EE9DA96BE5D5}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{57D49D9A-F41F-4A4D-BED3-CD0F10C60DB0}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{1321146A-A4A6-43B1-A900-53CD5481C81C}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{5F703154-FB81-47EA-9825-F6031FD9D83C}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{55ADC0E8-FA78-4DF2-B95D-842C93C71858}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{4D58DD53-93F1-415A-A8AB-CD64179C2AB4}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{A0A19763-F76C-414E-A93F-3A85A229BFEA}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{457083E4-462C-44B0-A623-2621E3BF31C3}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{0A4279C1-392A-4BFE-A1A0-5EB0BC6E66C9}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{0C7B6E79-CC54-407A-953E-3B77D0A4D7FF}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{A180D615-6054-4EA1-94F0-E42030CBA2E7}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{F7B5D7B9-EBC1-483F-855D-21C8D369B8D7}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{39B0278A-7933-4EE6-B0B1-6A1F4FF3E384}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{0CF6F33E-96CC-4373-9E14-7D5FF0CBE893}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{02225386-A63B-43F4-BBFE-FB861E90D10A}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{55A713DC-C2DA-4842-A788-13FB9566C227}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{010554F8-C3F6-47B9-A7EB-8517D4E12164}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{768212A0-4407-4E7F-8AA9-401DC1052B56}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{187EEFF1-A71D-4285-869E-994A5D780A8D}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{57D38114-6FC8-432D-8566-7BEF0787AFA8}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{7A2E6BB2-CC81-4A1C-98F0-44990F00EC42}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{28EB919F-DAE7-475B-9551-EA2DAE9AF875}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{53F3CFE4-2C7B-4116-A527-78468FAD68DE}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{4C84A871-5882-438B-B8E0-8EFA8D7D6EF2}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{7828C60D-A327-4331-BBFE-0DF9A0F10168}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{238CE0D4-81FE-48A4-A327-7C3C917932D3}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{EE14C954-204E-4937-AD7B-4EF6B05D8923}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{CF4A2220-4495-48AC-9F2A-E0010B70C117}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{17BDA4AF-04BB-4721-B020-3BFE969B71C1}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{5F6EE162-BC56-4BFD-BCA8-C6E3C82D373E}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{317B5DF1-71B5-44A3-8211-7BA5DACF4673}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{DBF390E9-CBC7-4BBB-AE12-05F125C97A44}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{52AE52A7-0E28-4BA9-B94C-AA1777899842}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{6A528A81-2442-41DE-B444-1D10B6255069}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{3C46AE77-DD37-4842-93F6-3391EBF0CAC5}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{129E598D-277F-4DF9-930A-C5531AEFF2AE}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{00CD4861-7620-4129-A9D6-FB75E6AA849C}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{E09C87B0-1DAE-4195-B42F-5FAD725615B2}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{A5D6C16F-246C-4F24-BA14-BD5631439ECE}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{6934F75A-5C6B-4604-B27F-0AED82E881A7}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{603E62EE-5A75-4206-9E6C-445D5D09EC04}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{87592782-D5EA-4B4B-A64B-FB148E317EFA}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{29CB5886-D696-4885-9EB4-2AD2DC1838FA}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{89B30612-EAC3-4906-BD9E-B7FCAD5627FD}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{5B121A0C-2587-46D4-9C55-B492567D3B52}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{1149ED1A-1916-4267-A786-E55687B2FC56}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{F611A692-36D4-4CB6-AFE3-BA730D2B0F18}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{FEB99069-54CC-41AF-8AED-F93129B02623}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{00BE626D-047A-4968-ABD6-4508E2766768}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{A55E13DB-7BA1-4EE6-9F3C-013451A47E21}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{6AF364CD-DAC7-4B92-993E-8E1C7ABA1B34}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{386021B8-175D-49D0-9E5E-3CCBBA9A6419}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{012B5938-EA92-4B36-836B-4CA28DD55D5D}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{2A7FBAB6-5154-4477-87A9-5345D6B16849}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{4551F5FF-63E5-4168-8A19-3165D60436A3}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{92EA0492-9B84-4C61-9C95-C7B857C15537}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{0744C0C1-9CDC-4C92-9D78-5740B453FB9E}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{0AD84FB0-D6AC-4280-80A6-79FFCA709068}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{38FE550D-4F7D-41B6-B6C6-D0223566EB13}] => (Allow) %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
FirewallRules: [{5935B847-91CE-4770-AB4C-CEAEE70399A3}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{4E70072F-5E73-4585-B1A6-43972CFDA488}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{8771D5B8-9651-42F3-88CC-8B49853A8D5A}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{96B2A148-6E1D-4C76-BDE1-5A29CFFBC768}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{8622F02D-28F4-40CB-9E6F-97B1B6C7BF88}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{8D9C7F13-22C1-4023-8F18-FE150639B0F7}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{F5AABA7C-5C56-477B-84D7-2E3A33CF64B0}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{CD1DFA61-691A-4510-A607-7B62ABD80AAF}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{004ECFB3-7915-4A2B-85BF-549D1E0E3309}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{2A22FED4-8BBA-436C-BD5E-6891F16278BB}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{D4AB8432-EE70-47E3-8FF2-17B4B93BCB12}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{584832F5-211A-44ED-B1FB-7391CF9F5606}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{E258C475-4A9A-43CD-A654-03B33D82A73E}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{CCB2B664-FDD7-4F01-B5FD-3C1CA5A82E85}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{9F5D2766-CD48-4498-BFB1-BAB1B89806F0}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{515920FF-19A8-4B6B-8C27-AFB9FBB17BE2}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{62656BEF-EE01-49CB-B76E-45F33C124984}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{C1189E68-2994-46ED-8FD4-C24A47572797}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{F4AE2573-666E-40B4-9705-9F6B4011B654}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{B20142EF-B108-49F8-B077-8686E92AFD0B}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{FA23F1D7-508F-4AF6-B255-AFE96ED48D49}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{63C9429F-76F2-4062-9EBC-CA2C82154FD9}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{E9319B69-3107-462F-B9A1-65D4C5E0353A}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{C2A24448-58D4-4DF6-ACF8-BF0586953197}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{6326F23C-1C7F-4E7C-936D-4C0CEFCE6CEB}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{2392F59F-2123-475B-AB1B-39D0C03680FD}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{341AC097-81F3-4D46-A6CB-96CE4322F7F8}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{78880B19-05E9-441F-9C2A-6B784819BF1C}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{93DC7409-5491-4816-8D10-091B26E19C1B}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{1B1E3249-EE34-45CB-99D5-7E4BE6FFDB7D}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{525772BB-0F69-4C70-AB26-3A4F2D9D31BF}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{BB191180-EBA3-4D86-80C1-AF34E012DBEF}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{4132CA1F-9FF9-4FDD-86B6-C5EE9607F72D}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{56D0F7E2-819A-49C2-B775-188E30AA35AB}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{F4D160C1-0AEE-42BC-9167-7B8F45502E6A}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{B4B6AA83-ED31-4A80-967E-18BDB59278BB}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{44A9BBD2-E8FD-4A3B-98D2-52FAC97C82A9}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{FD40B191-B33C-4959-ACB0-52A886A51D16}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{7F3246D2-15C3-43BC-982B-9D21F99BC214}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{3B58C82B-DC6E-4E54-88E3-4A23C1A42C3D}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{A988BB9A-F6D8-4863-BFD7-3C7ADCE03157}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{90D0549B-A9B7-4B1E-A07E-06FB0BBF2C2C}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{123FD977-1C50-4C00-B234-E7D0DD401271}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{3864DE5C-0C7B-4288-ABA0-ACCA136087B1}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{1935E3E7-41E7-408C-AB40-C9A566DD2EF6}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{4494B0C0-5DB7-42AC-A8F7-2D3D161BF80B}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{ABD50DE2-F1F9-4B7D-9D9B-5471F837C451}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{5E3D4EB9-CF13-46C8-A0CB-FA49D4B4741E}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{9F7E22D5-ABA6-4175-B839-C76563361159}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{FE545D91-AC81-467B-B850-AF67A4E5F442}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{13863A18-82B5-44A5-83DE-EC271268F801}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{735F1A83-F043-4339-89CF-BE82C5FE9BB2}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{DC43BCE5-1540-46C2-9C8F-620766899B58}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{40AB12F5-5B2A-4ED5-92BA-9D8DCF45F4A2}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{A4A1BC05-D6AD-4C69-ADEF-5E93BD3B8650}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{8922F2CE-5AF7-4C79-8B4F-0B3A549F0C74}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{0E251054-A0EE-41BD-B764-9BDF68C08027}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{E201585E-07B0-452C-80FD-B923CA47A31D}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{FE3EFB76-3C3F-4C7B-961F-7268C12504E2}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{192C0CBC-6E8F-45DA-A2A9-2053E392AAFB}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{C026B232-9889-4DDF-B458-85876F6A6991}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{CB5F02F4-25B0-448E-9274-ED1DFB040801}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{0D80270B-EB8B-4967-9AAC-4EDD5787B1E1}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{C33201FF-FED6-4EF3-B99E-D4BA8C070CD8}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{2E9B706C-3E78-4A52-A5C4-A5B5CFE66C7A}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{360A05DF-6931-4B51-8969-27C1BD42BB3D}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{67FCB34F-A343-44BE-8585-4ACC091C86E8}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{2D1FF6E6-3BA4-41F1-A611-B4367DA9CBA6}] => (Allow) C:\Program Files (x86)\HomeTab\ProtectedSearch.exe
FirewallRules: [{21D2B3BE-F629-4856-996A-3642DD9893A4}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{A920B2A5-4961-4602-AF13-61343A413F3B}] => (Allow) C:\Program Files (x86)\HomeTab\TBUpdater.dll
FirewallRules: [{F6E37A41-5545-43DE-B1D5-E1A7CFDBDD0B}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{150BA9C8-D040-496D-A460-9773CC0DF28C}] => (Allow) C:\Program Files (x86)\HomeTab\SystemSockets.exe
FirewallRules: [{C5E27543-7D0E-45CF-9AF9-9BE48FE15561}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{DA967F9F-DD18-4950-9A86-4A4FC3AA7152}] => (Allow) C:\SoloApp\SoloApp.exe
FirewallRules: [{E1968102-8CF2-4BE8-ADFC-6BB05CED23D4}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{DC22D7B3-5651-4176-B86A-332C869A901B}] => (Allow) C:\SoloApp\WebDriver.dll
FirewallRules: [{58A42537-54FC-488C-BFF5-5CAF71D271B1}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{E7C2BD0B-9C74-4B4D-8F2C-953A75A5765E}] => (Allow) C:\SoloApp\chromedriver.exe
FirewallRules: [{E0AE13AD-0114-42BB-8004-D0D9BD8EBED9}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{BA43E087-0D6A-4B58-AC2A-3C101A9629DF}] => (Allow) C:\SoloApp\IEDriverServer.exe
FirewallRules: [{E222903E-F7A9-4B15-99AC-2E067B346207}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7F6E4431-1681-4825-93C7-5ED3BD0DC08C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{2A2424F4-C800-4D08-8B74-FBBBE4F0EA8A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{6B1B1AF7-0655-4E67-AB1A-A5133970DFBA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{85B7D5E1-7ABE-4DC0-A915-BAF950A21D6C}C:\program files (x86)\microsoft office\office14\groove.exe] => (Block) C:\program files (x86)\microsoft office\office14\groove.exe
FirewallRules: [UDP Query User{F6B22C30-F930-4EF4-B380-7A8E5A60C6F8}C:\program files (x86)\microsoft office\office14\groove.exe] => (Block) C:\program files (x86)\microsoft office\office14\groove.exe
FirewallRules: [{286FA9E0-9B17-41BB-AFC8-BD8C524E8D45}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{5DACB2AA-D487-430E-AF03-F42F87FE7AE3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/15/2015 11:31:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10707768
Error: (07/15/2015 11:31:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10707768
Error: (07/15/2015 11:31:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/15/2015 11:31:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10703151
Error: (07/15/2015 11:31:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10703151
Error: (07/15/2015 11:31:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/15/2015 11:30:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10699204
Error: (07/15/2015 11:30:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10699204
Error: (07/15/2015 11:30:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/15/2015 11:30:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10697332
System errors:
=============
Error: (07/15/2015 08:14:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util Higher Aurum" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (07/15/2015 08:14:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/15/2015 08:14:06 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst MBAMService erreicht.
Error: (07/15/2015 08:13:04 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.
Error: (07/15/2015 08:12:59 PM) (Source: iScsiPrt) (EventID: 70) (User: )
Description: Fehler beim Verarbeiten der iSCSI-Anmeldeanforderung. Die Anforderung wurde nicht wiederholt. Der Fehlerstatus wird in den Sicherungsdaten angegeben.
Error: (07/15/2015 08:12:59 PM) (Source: iScsiPrt) (EventID: 1) (User: )
Description: Vom Initiator konnte keine Verbindung mit dem Ziel hergestellt werden. Die Ziel-IP-Adresse und die TCP-Anschlussnummer sind in Sicherungsdaten angegeben.
Error: (07/14/2015 11:23:35 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (07/14/2015 02:49:37 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
Error: (07/13/2015 10:15:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util Higher Aurum" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (07/13/2015 10:14:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "MBAMService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office:
=========================
Error: (07/15/2015 11:31:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10707768
Error: (07/15/2015 11:31:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10707768
Error: (07/15/2015 11:31:07 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/15/2015 11:31:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10703151
Error: (07/15/2015 11:31:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10703151
Error: (07/15/2015 11:31:02 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/15/2015 11:30:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10699204
Error: (07/15/2015 11:30:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10699204
Error: (07/15/2015 11:30:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (07/15/2015 11:30:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10697332
CodeIntegrity Errors:
===================================
Date: 2015-07-15 20:12:10.305
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-15 20:12:09.790
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 22:12:45.730
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 22:12:45.215
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 21:30:43.438
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 21:30:42.799
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 20:59:17.933
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 20:59:17.419
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 20:27:16.663
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-13 20:27:16.149
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nusbhst.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Processor: AMD E-350 Processor
Percentage of memory in use: 71%
Total physical RAM: 3691.66 MB
Available physical RAM: 1068.53 MB
Total Virtual: 7381.54 MB
Available Virtual: 4076.35 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:200.28 GB) (Free:67.44 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:240.48 GB) (Free:71.07 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C250AA9E)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=200.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=240.5 GB) - (Type=OF Extended)
==================== End of log ============================
|
FRST 32-Bit | FRST 64-Bit
Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
dann auf 
und dann auf 
.