Geht das denn so einfach, drüber installieren? Ohne persönliche Daten zu löschen?
FRST Logfile:
Code:
Alles auswählen Aufklappen ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by SYSTEM on MININT-C1EKBP3 on 16-10-2013 19:24:11
Running from J:\
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Recovery
The current controlset is ControlSet002
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [VX3000] - C:\Windows\vVX3000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560808 2011-12-05] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Super-Charger] - C:\Program Files (x86)\MSI\Super-Charger\StartSuperCharger.exe
HKLM-x32\...\Run: [DelReg] - C:\Neue Programme\Tuning\GreenPowerCenterII\DelReg.exe
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Videobearbeitung\Apple\QTTask.exe [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [AVG_TRAY] - C:\Neue Programme\AVG\avgtray.exe [2598520 2012-11-19] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2314416 2013-08-18] ()
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Neue Programme\ATI\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-06] (Advanced Micro Devices, Inc.)
HKU\Jens\...\Run: [Steam] - C:\Spiele\STEAM\steam.exe [1811368 2013-09-06] (Valve Corporation)
HKU\Jens\...\Run: [DAEMON Tools Lite] - C:\Neue Programme\Virtuell\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
Startup: C:\Users\Jens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
==================== Services (Whitelisted) =================
S2 AdobeActiveFileMonitor7.0; C:\Bildbearbeitung\Photoshop\PhotoshopElementsFileAgent.exe [169312 2008-09-16] (Adobe Systems Incorporated)
S2 AVGIDSAgent; C:\Neue Programme\AVG\avgidsagent.exe [5174392 2012-11-02] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Neue Programme\AVG\avgwdsvc.exe [193288 2012-02-14] (AVG Technologies CZ, s.r.o.)
S2 CltMngSvc; C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe [93984 2013-03-06] (Conduit)
S2 IBUpdaterService; C:\ProgramData\IBUpdaterService\ibsvc.exe [693024 2013-06-25] ()
S3 SandraAgentSrv; C:\Neue Programme\Tuning\SiSoftware Sandra Lite 2012.SP1\RpcAgentSrv.exe [95896 2008-12-12] (SiSoftware)
S2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [183264 2013-02-03] (Soluto)
S3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1239552 2013-02-03] (Soluto)
S2 vToolbarUpdater15.5.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe [1643184 2013-08-18] (AVG Secure Search)
S2 WebCakeUpdater; C:\Program Files (x86)\WBDesktop.Updater.1.0.0.16.exe [51992 2013-08-19] (cake bake)
S2 AMD FUEL Service; C:\Neue Programme\ATI\ATI.ACE\Fuel\Fuel.Service.exe /launchService [x]
S2 MSCamSvc; "C:\Program Files\Microsoft LifeCam\MSCamS64.exe" [x]
S2 Realtek11nCU; C:\Program Files (x86)\Hama\Wireless LAN RTL8188CU\RtlService.exe [x]
==================== Drivers (Whitelisted) ====================
S3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [123840 2010-06-09] (SlySoft, Inc.)
S3 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [127328 2012-12-10] (AVG Technologies CZ, s.r.o. )
S3 AVGIDSFilter; C:\Windows\System32\DRIVERS\avgidsfiltera.sys [29776 2011-12-23] (AVG Technologies CZ, s.r.o. )
S0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [28480 2012-04-19] (AVG Technologies CZ, s.r.o. )
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [307040 2012-11-08] (AVG Technologies CZ, s.r.o.)
S1 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [47696 2011-12-23] (AVG Technologies CZ, s.r.o.)
S0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [36944 2012-01-31] (AVG Technologies CZ, s.r.o.)
S1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [384800 2013-04-11] (AVG Technologies CZ, s.r.o.)
S1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [45856 2013-08-18] (AVG Technologies)
S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-10-06] (DT Soft Ltd)
S1 HWiNFO32; C:\Neue Programme\Benchmark\HWiNFO64\HWiNFO64A.SYS [30080 2011-09-22] (REALiX(tm))
S3 NTIOLib_1_0_1; C:\Neue Programme\Tuning\ControlCenter\NTIOLib_X64.sys [14136 2009-10-06] (MSI)
S3 NTIOLib_1_0_1; C:\Neue Programme\Tuning\ControlCenter\NTIOLib_X64.sys [14136 2009-10-06] (MSI)
S3 RRNetCap; C:\Windows\System32\DRIVERS\rrnetcap.sys [37480 2012-04-02] (RapidSolution Software AG)
S3 RRNetCapMP; C:\Windows\System32\DRIVERS\rrnetcap.sys [37480 2012-04-02] (RapidSolution Software AG)
S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [748648 2010-07-07] (Realtek Semiconductor Corporation )
S3 SANDRA; C:\Neue Programme\Tuning\SiSoftware Sandra Lite 2012.SP1\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)
S3 ALSysIO; \??\C:\Users\Jens\AppData\Local\Temp\ALSysIO64.sys [x]
S2 AODDriver4.01; \??\C:\Neue Programme\ATI\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [x]
S3 NTIOLib_1_0_3; \??\C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [x]
S3 NTIOLib_1_0_5; \??\C:\Neue Programme\Tuning\GreenPowerCenterII\NTIOLib_X64.sys [x]
S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-03 17:14 - 2013-10-03 17:14 - 00000000 ____D C:\FRST
2013-09-21 17:00 - 2013-09-21 17:00 - 00049952 _____ C:\Users\Jens\Downloads\video.hd_625.zip
2013-09-21 13:53 - 2013-09-21 14:43 - 751197802 _____ C:\Users\Jens\Downloads\R.I.P.D.2013-POE.part2(2).rar
2013-09-19 20:44 - 2013-09-19 20:48 - 75516831 _____ C:\Users\Jens\Downloads\213765_1.mp4
2013-09-19 19:38 - 2013-09-19 20:39 - 338627398 _____ C:\Users\Jens\Downloads\215137_1.mp4
2013-09-19 18:38 - 2013-09-19 18:38 - 00000000 ____D C:\Users\Jens\AppData\Roaming\MobileAction
==================== One Month Modified Files and Folders =======
2013-10-03 17:14 - 2013-10-03 17:14 - 00000000 ____D C:\FRST
2013-09-21 20:21 - 2013-06-07 19:18 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
2013-09-21 20:21 - 2012-01-27 19:31 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-21 20:20 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-21 20:20 - 2009-07-14 05:51 - 00083442 _____ C:\Windows\setupact.log
2013-09-21 20:19 - 2010-01-06 01:01 - 01481427 _____ C:\Windows\WindowsUpdate.log
2013-09-21 19:58 - 2013-04-25 00:42 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-21 19:52 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-21 19:52 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-21 19:43 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-21 19:40 - 2013-08-18 18:01 - 00000000 ____D C:\Users\Jens\AppData\Roaming\Movdap
2013-09-21 18:23 - 2012-05-06 12:26 - 00000000 ____D C:\Users\Jens\AppData\Roaming\MediaMonkey
2013-09-21 18:20 - 2012-01-27 19:31 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-21 17:00 - 2013-09-21 17:00 - 00049952 _____ C:\Users\Jens\Downloads\video.hd_625.zip
2013-09-21 14:43 - 2013-09-21 13:53 - 751197802 _____ C:\Users\Jens\Downloads\R.I.P.D.2013-POE.part2(2).rar
2013-09-21 14:29 - 2012-11-21 20:32 - 00000000 ____D C:\Users\Jens\AppData\Roaming\vlc
2013-09-21 13:50 - 2013-09-14 12:14 - 24057064 _____ C:\Users\Jens\Downloads\R.I.P.D.2013-POE.part2.rar.part
2013-09-21 12:58 - 2013-04-25 00:42 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-21 12:58 - 2012-07-13 19:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-21 12:58 - 2011-12-18 09:23 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-21 12:43 - 2012-01-22 10:24 - 00003922 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{3293AF29-16E0-42C0-9BD9-61D8F77A7557}
2013-09-21 12:40 - 2012-03-30 18:17 - 00000000 ____D C:\Windows\System32\Drivers\AVG
2013-09-19 20:48 - 2013-09-19 20:44 - 75516831 _____ C:\Users\Jens\Downloads\213765_1.mp4
2013-09-19 20:39 - 2013-09-19 19:38 - 338627398 _____ C:\Users\Jens\Downloads\215137_1.mp4
2013-09-19 18:38 - 2013-09-19 18:38 - 00000000 ____D C:\Users\Jens\AppData\Roaming\MobileAction
2013-09-19 16:13 - 2011-04-12 08:43 - 00701686 _____ C:\Windows\System32\perfh007.dat
2013-09-19 16:13 - 2011-04-12 08:43 - 00150680 _____ C:\Windows\System32\perfc007.dat
2013-09-19 16:13 - 2009-07-14 06:13 - 01627088 _____ C:\Windows\System32\PerfStringBackup.INI
==================== Known DLLs (Whitelisted) ================
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
==================== EXE ASSOCIATION =====================
HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK
==================== Restore Points =========================
5
Restore point made on: 2013-09-08 08:08:46
Restore point made on: 2013-09-08 09:40:46
Restore point made on: 2013-09-12 17:56:21
Restore point made on: 2013-09-19 16:09:08
Restore point made on: 2013-09-19 16:45:01
==================== Memory info ===========================
Percentage of memory in use: 10%
Total physical RAM: 8162.59 MB
Available physical RAM: 7293.23 MB
Total Pagefile: 8160.73 MB
Available Pagefile: 7314.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.88 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:298.09 GB) (Free:32.06 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:465.75 GB) (Free:112.88 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (GRMCHPXFRER_DE_DVD) (CDROM) (Total:2.97 GB) (Free:0 GB) UDF
Drive j: (KINGSTON) (Removable) (Total:7.45 GB) (Free:7.44 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: B6770A8B)
Partition 1: (Active) - (Size=298 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 44724471)
Partition 1: (Active) - (Size=466 GB) - (Type=07 NTFS)
========================================================
Disk: 6 (Size: 7 GB) (Disk ID: 69D2614B)
Partition 1: (Not Active) - (Size=7 GB) - (Type=0B)
LastRegBack: 2013-09-21 13:05
==================== End Of Log ============================
--- --- ---
16.10.2013, 18:47
Hybrid-Darstellung
