| |
| |||||||
Log-Analyse und Auswertung: Windows 7 64 bit: Windows Updates werden nicht installiert (Fehler: Code 80246008)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
08.01.2014, 01:28
| #1 |
| |  Windows 7 64 bit: Windows Updates werden nicht installiert (Fehler: Code 80246008) Guten Tag! Folgendes Problem: Im September habe ich in c:\downloads den Virus WIN32:InstallCore-HG[PUP] mit Avast entdeckt. Dann: Am 22.11.2013 hat mein Antivirusprogramm (Avast) erneut den Virus entdeckt. Er wurde wieder als WIN32:InstallCore-HG[PUP] bezeichnet. Der befand sich in meinem Backup Set. Seit dem ich den Virus mit meinem Antivirusprogramm, hoffentlich, bereinigt habe, installiert mein Laptop die Windows Updates nicht mehr. - Mein intelligenter Hintergrundübertragungsdienst lässt sich nicht mehr starten. Und wenn es versucht wird taucht der Fehler auf: 1068: Abhängigkeitsdienst oder Abhängigkeitsgruppe konnte nicht gestartet werden. Also versuchte ich folgendes: Start: Ausführen und gab ein: regsvr32 %windir%\system32\qmgr.dll dann OK dann öffnete sich das Fenster x: "Das Modul C:\windows\system32\qmgr.dll wurde geladen, aber der DllRegisterServer-Eingabepunkt wurde nicht gefunden. " und soll sicher stellen ob .DLL oder .OCX-Datei eine gültige Datei ist, dann noch mal wiederholen. !!!! Ab diesen Punkt wusste ich nicht mehr weiter. !!!! Ich Danke im Voraus all den, die sich bei der Mithilfe beteiligen und sich Mühe geben dieses Problem zu lösen. 1# FRST-Editor FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-01-2014
Ran by mido (administrator) on MIDO-PC on 07-01-2014 23:19:02
Running from C:\Users\mido\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Source Engine\OSE.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\perfhost.exe
() C:\Program Files (x86)\Ralink\RT2860 Wireless LAN Card\ExtraFiles\RaMediaServer.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(Microsoft Corporation) C:\Windows\System32\snmptrap.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
(Microsoft Corporation) C:\Windows\System32\FXSSVC.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
() D:\Storio\VTech\DownloadManager\System\AgentMonitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(WiseCleaner.com) C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
(CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2538280 2010-12-22] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9769888 2012-01-06] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [5908928 2012-01-06] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-30] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642728 2012-07-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe [222504 2009-05-13] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2010-07-26] (CyberLink Corp.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AgentMonitor] - D:\Storio\VTech\DownloadManager\System\AgentMonitor.exe [377800 2012-11-05] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
MountPoints2: {6ea7cde7-b89c-11e2-9d11-f0def1b8d8f1} - F:\Startme.exe
MountPoints2: {f6b63815-96ff-11e2-80fe-f0def1b8d8f1} - C:\windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Start.hta
AppInit_DLLs: [ ] ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2011.70_0
CHR Extension: (Google Wallet) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\mido\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Whitelisted) =================
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-07-04] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-30] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2013-12-30] (AVAST Software)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 RaMediaServer; C:\Program Files (x86)\Ralink\RT2860 Wireless LAN Card\ExtraFiles\RaMediaServer.exe [454656 2010-05-19] ()
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [453120 2010-11-21] (Microsoft Corporation)
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580232 2013-04-25] (WiseCleaner.com)
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 aswKbd; C:\windows\system32\drivers\aswKbd.sys [28184 2013-11-21] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [78648 2013-12-30] (AVAST Software)
R1 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [439648 2013-12-30] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [92544 2013-11-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-11-21] ()
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [1034464 2013-12-30] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [422216 2013-12-30] (AVAST Software)
R3 aswStm; C:\windows\system32\drivers\aswStm.sys [79672 2013-12-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-30] ()
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [46368 2013-11-22] (AVG Technologies)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [39504 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-08-07] (GFI Software)
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [30336 2007-01-18] (Research in Motion Ltd)
R0 rtcrfilt64; C:\Windows\System32\DRIVERS\rtcrfilt64.sys [19600 2000-01-01] (Realtek Semiconductor Corp.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2013-05-22] ()
R3 SPUVCbv; C:\Windows\System32\Drivers\usbvideo.sys [185344 2013-07-12] (Microsoft Corporation)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-09-02] ()
U3 BcmSqlStartupSvc;
U2 CLKMSVC10_3A60B698;
U2 CLKMSVC10_C3B3B687;
U2 DriverService;
U2 IAStorDataMgrSvc;
U2 iATAgentService;
U2 idealife Update Service;
U3 IGRS;
U2 IviRegMgr;
U2 nvUpdatusService;
U2 Oasis2Service;
U2 PCCarerService;
U2 ReadyComm.DirectRouter;
U2 RichVideo;
U2 RtLedService;
U2 SeaPort;
U2 SoftwareService;
U3 SQLWriter;
S3 usbbus; system32\DRIVERS\lgx64bus.sys [x]
S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [x]
S3 USBModem; system32\DRIVERS\lgx64modem.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-07 23:19 - 2014-01-07 23:19 - 00015585 _____ C:\Users\mido\Downloads\FRST.txt
2014-01-07 23:18 - 2014-01-07 23:18 - 00000000 ____D C:\FRST
2014-01-07 23:16 - 2014-01-07 23:16 - 01931762 _____ (Farbar) C:\Users\mido\Downloads\FRST64.exe
2014-01-07 23:14 - 2014-01-07 23:14 - 00000470 _____ C:\windows\SysWOW64\defogger_disable.log
2014-01-07 23:14 - 2014-01-07 23:14 - 00000000 _____ C:\Users\mido\defogger_reenable
2014-01-07 23:12 - 2014-01-07 23:13 - 00000242 _____ C:\Users\mido\Downloads\defogger_enable.log
2014-01-07 23:11 - 2014-01-07 23:12 - 00000470 _____ C:\Users\mido\Downloads\defogger_disable.log
2014-01-07 23:10 - 2014-01-07 23:10 - 00050477 _____ C:\Users\mido\Downloads\Defogger.exe
2014-01-07 22:27 - 2014-01-07 22:29 - 00000000 ____D C:\Users\mido\Downloads\welt306
2014-01-07 22:27 - 2014-01-07 22:27 - 00421517 _____ C:\Users\mido\Downloads\welt306.zip
2014-01-06 11:38 - 2014-01-06 11:38 - 00000000 ____D C:\Users\mido\Neuer Ordner
2014-01-06 11:38 - 2014-01-06 11:38 - 00000000 _____ C:\Users\mido\Neue Bitmap.bmp
2014-01-05 03:05 - 2014-01-05 03:05 - 00000000 __SHD C:\found.000
2014-01-04 16:12 - 2014-01-04 16:12 - 00000000 ____D C:\Users\mido_2\AppData\Local\Adobe
2014-01-04 16:11 - 2014-01-04 16:11 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-03 13:53 - 2014-01-03 13:53 - 00068216 _____ C:\Users\mido\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-03 13:46 - 2014-01-07 22:47 - 01360254 _____ C:\windows\WindowsUpdate.log
2014-01-03 13:44 - 2014-01-07 22:41 - 00000672 _____ C:\windows\setupact.log
2014-01-03 13:44 - 2014-01-03 13:44 - 00003118 _____ C:\windows\PFRO.log
2014-01-03 13:44 - 2014-01-03 13:44 - 00000000 _____ C:\windows\setuperr.log
2014-01-03 13:43 - 2014-01-07 22:41 - 00000420 _____ C:\windows\Tasks\Wise Care 365.job
2014-01-03 13:43 - 2014-01-03 13:43 - 00002844 _____ C:\windows\System32\Tasks\Wise Care 365
2013-12-30 18:05 - 2013-12-30 18:05 - 00002032 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-30 18:05 - 2013-12-30 18:05 - 00001972 _____ C:\Users\Public\Desktop\avast! Internet Security.lnk
2013-12-30 18:04 - 2013-12-30 18:05 - 00079672 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2013-12-16 11:46 - 2013-12-16 11:46 - 00000000 ____D C:\Users\mido\.jordan
2013-12-16 11:09 - 2013-12-16 11:09 - 00915368 _____ (Oracle Corporation) C:\Users\mido\Downloads\chromeinstall-7u45 (1).exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00174504 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2013-12-16 11:06 - 2013-12-16 11:06 - 00000000 ____D C:\ProgramData\Oracle
2013-12-16 11:06 - 2013-12-16 11:06 - 00000000 ____D C:\Program Files (x86)\Java
2013-12-16 11:05 - 2013-12-16 11:05 - 00915368 _____ (Oracle Corporation) C:\Users\mido\Downloads\chromeinstall-7u45.exe
2013-12-16 10:28 - 2013-12-16 10:28 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\setup (3).exe
2013-12-16 10:25 - 2013-12-16 10:26 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\setup (2).exe
2013-12-16 09:58 - 2013-12-16 09:58 - 00002996 _____ C:\windows\System32\Tasks\{FDB21A06-65FE-43CB-AA86-831753BC78F2}
2013-12-16 09:58 - 2013-12-16 09:58 - 00002996 _____ C:\windows\System32\Tasks\{8424F9EF-E43D-4CBD-94FF-8B1555BD2A8C}
2013-12-16 09:58 - 2013-12-16 09:58 - 00002996 _____ C:\windows\System32\Tasks\{01AC028C-9EC6-4C70-A1A6-5E3D2B2220B7}
2013-12-16 09:57 - 2013-12-16 09:57 - 00000000 ____D C:\Users\mido\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2013-12-16 09:56 - 2013-12-16 09:56 - 00002996 _____ C:\windows\System32\Tasks\{DBB47211-90D5-41EA-856D-071E66421E9C}
2013-12-16 09:56 - 2013-12-16 09:56 - 00002996 _____ C:\windows\System32\Tasks\{B3853162-6D23-4201-86F8-88070DC39010}
2013-12-16 09:56 - 2013-12-16 09:56 - 00002996 _____ C:\windows\System32\Tasks\{68191A55-301E-4252-AE47-F3E318BE31F6}
2013-12-16 09:56 - 2013-12-16 09:56 - 00000000 ____D C:\ProgramData\ATI
2013-12-16 09:54 - 2013-12-16 09:54 - 00002960 _____ C:\windows\System32\Tasks\{E69591D0-E7AC-4369-A9F1-BB05CBBFBB66}
2013-12-16 09:51 - 2013-12-16 09:51 - 00002966 _____ C:\windows\System32\Tasks\{6BF9B4A7-BD37-440A-96A2-F3D8FE5567B5}
2013-12-16 09:41 - 2013-12-16 09:41 - 00000000 _____ C:\END
2013-12-10 16:52 - 2014-01-07 23:08 - 00001106 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-10 16:52 - 2014-01-07 22:41 - 00001102 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-10 16:52 - 2013-12-10 17:03 - 00004102 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-10 16:52 - 2013-12-10 17:03 - 00003850 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-10 16:32 - 2013-12-10 16:32 - 00000000 ____D C:\windows\ERUNT
2013-12-10 13:48 - 2013-12-10 15:02 - 00000000 ____D C:\AdwCleaner
2013-12-09 22:53 - 2013-12-17 01:03 - 00000398 _____ C:\windows\Tasks\DriverTuner.job
2013-12-09 22:53 - 2013-12-09 22:55 - 00003078 _____ C:\windows\System32\Tasks\DriverTuner
2013-12-09 22:47 - 2013-12-09 22:47 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\DriverTuner_Setup.exe
2013-12-09 22:32 - 2013-12-16 10:26 - 00000000 ____D C:\Program Files (x86)\DriverTuner
2013-12-09 22:32 - 2013-12-09 22:32 - 00000000 ____D C:\Users\mido\AppData\Local\DriverTuner
2013-12-09 22:30 - 2013-12-09 22:30 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\setup (1).exe
==================== One Month Modified Files and Folders =======
2014-01-07 23:19 - 2014-01-07 23:19 - 00015585 _____ C:\Users\mido\Downloads\FRST.txt
2014-01-07 23:18 - 2014-01-07 23:18 - 00000000 ____D C:\FRST
2014-01-07 23:16 - 2014-01-07 23:16 - 01931762 _____ (Farbar) C:\Users\mido\Downloads\FRST64.exe
2014-01-07 23:14 - 2014-01-07 23:14 - 00000470 _____ C:\windows\SysWOW64\defogger_disable.log
2014-01-07 23:14 - 2014-01-07 23:14 - 00000000 _____ C:\Users\mido\defogger_reenable
2014-01-07 23:14 - 2012-03-10 20:27 - 00000000 ____D C:\Users\mido
2014-01-07 23:13 - 2014-01-07 23:12 - 00000242 _____ C:\Users\mido\Downloads\defogger_enable.log
2014-01-07 23:12 - 2014-01-07 23:11 - 00000470 _____ C:\Users\mido\Downloads\defogger_disable.log
2014-01-07 23:12 - 2012-03-30 12:35 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-07 23:10 - 2014-01-07 23:10 - 00050477 _____ C:\Users\mido\Downloads\Defogger.exe
2014-01-07 23:08 - 2013-12-10 16:52 - 00001106 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-07 22:50 - 2009-07-14 05:45 - 00021072 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-07 22:50 - 2009-07-14 05:45 - 00021072 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-07 22:47 - 2014-01-03 13:46 - 01360254 _____ C:\windows\WindowsUpdate.log
2014-01-07 22:47 - 2012-01-07 00:14 - 00775848 _____ C:\windows\system32\perfh007.dat
2014-01-07 22:47 - 2012-01-07 00:14 - 00175120 _____ C:\windows\system32\perfc007.dat
2014-01-07 22:47 - 2009-07-14 06:13 - 01697500 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-07 22:46 - 2013-12-04 02:37 - 00000000 ____D C:\Users\mido\AppData\Roaming\Wise Care 365
2014-01-07 22:44 - 2013-08-14 15:11 - 00004182 _____ C:\windows\System32\Tasks\avast! Emergency Update
2014-01-07 22:42 - 2012-01-06 17:05 - 00176326 _____ C:\windows\system32\fastboot.set
2014-01-07 22:41 - 2014-01-03 13:44 - 00000672 _____ C:\windows\setupact.log
2014-01-07 22:41 - 2014-01-03 13:43 - 00000420 _____ C:\windows\Tasks\Wise Care 365.job
2014-01-07 22:41 - 2013-12-10 16:52 - 00001102 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-07 22:41 - 2013-11-25 21:30 - 00000338 _____ C:\windows\Tasks\SlimDrivers Startup.job
2014-01-07 22:41 - 2013-11-25 21:23 - 00000348 _____ C:\windows\Tasks\GlaryInitialize 3.job
2014-01-07 22:41 - 2012-01-06 17:03 - 03016164 _____ C:\FaceProv.log
2014-01-07 22:41 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2014-01-07 22:29 - 2014-01-07 22:27 - 00000000 ____D C:\Users\mido\Downloads\welt306
2014-01-07 22:27 - 2014-01-07 22:27 - 00421517 _____ C:\Users\mido\Downloads\welt306.zip
2014-01-06 11:38 - 2014-01-06 11:38 - 00000000 ____D C:\Users\mido\Neuer Ordner
2014-01-06 11:38 - 2014-01-06 11:38 - 00000000 _____ C:\Users\mido\Neue Bitmap.bmp
2014-01-05 20:55 - 2012-03-12 09:29 - 19426449 _____ C:\windows\system32\PsBoot.log
2014-01-05 20:55 - 2012-03-12 09:29 - 00068334 _____ C:\windows\system32\defragLog.log
2014-01-05 03:05 - 2014-01-05 03:05 - 00000000 __SHD C:\found.000
2014-01-04 17:06 - 2013-11-01 08:56 - 00000435 _____ C:\windows\system32\Drivers\etc\hosts.ics
2014-01-04 16:12 - 2014-01-04 16:12 - 00000000 ____D C:\Users\mido_2\AppData\Local\Adobe
2014-01-04 16:12 - 2013-12-02 02:14 - 00000000 ____D C:\Users\mido_2\AppData\Roaming\Adobe
2014-01-04 16:12 - 2013-02-20 12:14 - 00000000 ____D C:\Users\mido\AppData\Local\Adobe
2014-01-04 16:11 - 2014-01-04 16:11 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-04 16:11 - 2013-02-20 12:12 - 00000000 ____D C:\ProgramData\Adobe
2014-01-04 01:00 - 2013-07-06 00:04 - 00000400 _____ C:\windows\Tasks\Wise Turbo Checker.job
2014-01-03 13:53 - 2014-01-03 13:53 - 00068216 _____ C:\Users\mido\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-03 13:44 - 2014-01-03 13:44 - 00003118 _____ C:\windows\PFRO.log
2014-01-03 13:44 - 2014-01-03 13:44 - 00000000 _____ C:\windows\setuperr.log
2014-01-03 13:43 - 2014-01-03 13:43 - 00002844 _____ C:\windows\System32\Tasks\Wise Care 365
2013-12-30 18:05 - 2013-12-30 18:05 - 00002032 _____ C:\Users\Public\Desktop\avast! SafeZone.lnk
2013-12-30 18:05 - 2013-12-30 18:05 - 00001972 _____ C:\Users\Public\Desktop\avast! Internet Security.lnk
2013-12-30 18:05 - 2013-12-30 18:04 - 00079672 _____ (AVAST Software) C:\windows\system32\Drivers\aswstm.sys
2013-12-30 18:04 - 2013-08-29 10:58 - 00439648 _____ (AVAST Software) C:\windows\system32\Drivers\aswNdisFlt.sys
2013-12-30 18:04 - 2013-08-14 15:11 - 01034464 _____ (AVAST Software) C:\windows\system32\Drivers\aswSnx.sys
2013-12-30 18:04 - 2013-08-14 15:11 - 00422216 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2013-12-30 18:04 - 2013-08-14 15:11 - 00334136 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2013-12-30 18:04 - 2013-08-14 15:11 - 00207904 _____ C:\windows\system32\Drivers\aswVmm.sys
2013-12-30 18:04 - 2013-08-14 15:11 - 00078648 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2013-12-30 18:04 - 2013-08-14 15:09 - 00043152 _____ (AVAST Software) C:\windows\avastSS.scr
2013-12-17 01:03 - 2013-12-09 22:53 - 00000398 _____ C:\windows\Tasks\DriverTuner.job
2013-12-16 11:46 - 2013-12-16 11:46 - 00000000 ____D C:\Users\mido\.jordan
2013-12-16 11:09 - 2013-12-16 11:09 - 00915368 _____ (Oracle Corporation) C:\Users\mido\Downloads\chromeinstall-7u45 (1).exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00264616 _____ (Oracle Corporation) C:\windows\SysWOW64\javaws.exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00175016 _____ (Oracle Corporation) C:\windows\SysWOW64\javaw.exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00174504 _____ (Oracle Corporation) C:\windows\SysWOW64\java.exe
2013-12-16 11:06 - 2013-12-16 11:06 - 00096168 _____ (Oracle Corporation) C:\windows\SysWOW64\WindowsAccessBridge-32.dll
2013-12-16 11:06 - 2013-12-16 11:06 - 00000000 ____D C:\ProgramData\Oracle
2013-12-16 11:06 - 2013-12-16 11:06 - 00000000 ____D C:\Program Files (x86)\Java
2013-12-16 11:05 - 2013-12-16 11:05 - 00915368 _____ (Oracle Corporation) C:\Users\mido\Downloads\chromeinstall-7u45.exe
2013-12-16 10:28 - 2013-12-16 10:28 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\setup (3).exe
2013-12-16 10:26 - 2013-12-16 10:25 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\setup (2).exe
2013-12-16 10:26 - 2013-12-09 22:32 - 00000000 ____D C:\Program Files (x86)\DriverTuner
2013-12-16 09:58 - 2013-12-16 09:58 - 00002996 _____ C:\windows\System32\Tasks\{FDB21A06-65FE-43CB-AA86-831753BC78F2}
2013-12-16 09:58 - 2013-12-16 09:58 - 00002996 _____ C:\windows\System32\Tasks\{8424F9EF-E43D-4CBD-94FF-8B1555BD2A8C}
2013-12-16 09:58 - 2013-12-16 09:58 - 00002996 _____ C:\windows\System32\Tasks\{01AC028C-9EC6-4C70-A1A6-5E3D2B2220B7}
2013-12-16 09:57 - 2013-12-16 09:57 - 00000000 ____D C:\Users\mido\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2013-12-16 09:56 - 2013-12-16 09:56 - 00002996 _____ C:\windows\System32\Tasks\{DBB47211-90D5-41EA-856D-071E66421E9C}
2013-12-16 09:56 - 2013-12-16 09:56 - 00002996 _____ C:\windows\System32\Tasks\{B3853162-6D23-4201-86F8-88070DC39010}
2013-12-16 09:56 - 2013-12-16 09:56 - 00002996 _____ C:\windows\System32\Tasks\{68191A55-301E-4252-AE47-F3E318BE31F6}
2013-12-16 09:56 - 2013-12-16 09:56 - 00000000 ____D C:\ProgramData\ATI
2013-12-16 09:54 - 2013-12-16 09:54 - 00002960 _____ C:\windows\System32\Tasks\{E69591D0-E7AC-4369-A9F1-BB05CBBFBB66}
2013-12-16 09:51 - 2013-12-16 09:51 - 00002966 _____ C:\windows\System32\Tasks\{6BF9B4A7-BD37-440A-96A2-F3D8FE5567B5}
2013-12-16 09:44 - 2013-10-18 22:45 - 00000000 ____D C:\Users\mido\AppData\Roaming\DivX
2013-12-16 09:44 - 2013-09-29 13:24 - 00000000 ____D C:\Program Files\DivX
2013-12-16 09:44 - 2013-09-29 13:21 - 00000000 ____D C:\ProgramData\DivX
2013-12-16 09:44 - 2013-09-29 13:21 - 00000000 ____D C:\Program Files (x86)\DivX
2013-12-16 09:41 - 2013-12-16 09:41 - 00000000 _____ C:\END
2013-12-13 18:18 - 2013-12-02 02:13 - 00002086 _____ C:\Users\mido_2\Desktop\OneKey Recovery.lnk
2013-12-13 18:18 - 2013-12-02 02:13 - 00001122 _____ C:\Users\mido_2\Desktop\Cyberlink Power2Go.lnk
2013-12-13 18:18 - 2013-12-02 02:13 - 00000000 ____D C:\Users\mido_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2013-12-13 18:18 - 2013-12-02 02:13 - 00000000 ____D C:\Users\mido_2\AppData\Roaming\Apple Computer
2013-12-13 18:17 - 2013-12-02 02:14 - 00002247 _____ C:\Users\mido_2\Desktop\Google Chrome.lnk
2013-12-10 21:12 - 2012-03-30 12:35 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-10 21:12 - 2012-03-30 12:35 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-10 21:12 - 2012-03-30 12:35 - 00003822 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-10 17:03 - 2013-12-10 16:52 - 00004102 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-10 17:03 - 2013-12-10 16:52 - 00003850 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-10 16:52 - 2013-12-02 01:44 - 00000000 ____D C:\Users\mido\AppData\Local\Deployment
2013-12-10 16:52 - 2012-03-10 20:35 - 00000000 ____D C:\Users\mido\AppData\Local\Google
2013-12-10 16:52 - 2012-01-06 17:16 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-10 16:32 - 2013-12-10 16:32 - 00000000 ____D C:\windows\ERUNT
2013-12-10 15:02 - 2013-12-10 13:48 - 00000000 ____D C:\AdwCleaner
2013-12-10 15:02 - 2013-08-15 15:33 - 00000000 ____D C:\ProgramData\Uniblue
2013-12-10 00:37 - 2012-12-01 17:55 - 00000000 ____D C:\Users\mido\AppData\Roaming\SoftGrid Client
2013-12-09 23:51 - 2013-12-06 14:49 - 00000000 ___DC C:\Users\mido\AppData\Local\MigWiz
2013-12-09 23:07 - 2009-07-14 04:20 - 00000000 ____D C:\windows\system32\NDF
2013-12-09 22:55 - 2013-12-09 22:53 - 00003078 _____ C:\windows\System32\Tasks\DriverTuner
2013-12-09 22:49 - 2012-01-06 17:23 - 00000000 ____D C:\Program Files\DIFX
2013-12-09 22:47 - 2013-12-09 22:47 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\DriverTuner_Setup.exe
2013-12-09 22:32 - 2013-12-09 22:32 - 00000000 ____D C:\Users\mido\AppData\Local\DriverTuner
2013-12-09 22:30 - 2013-12-09 22:30 - 02816072 _____ (LionSea SoftWare ) C:\Users\mido\Downloads\setup (1).exe
2013-12-09 18:55 - 2009-07-14 04:20 - 00000000 ____D C:\windows\registration
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.4124.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-31 00:58
==================== End Of Log ============================
1# Addition-Editor Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-01-2014
Ran by mido at 2014-01-07 23:19:57
Running from C:\Users\mido\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Internet Security (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Internet Security (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Internet Security (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD AVIVO64 Codecs (Version: 11.7.0.11215 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Fuel (Version: 2012.0704.2139.36919 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.61215.0904 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In (Version: 2.02.0000 - AMD) Hidden
AMD VISION Engine Control Center (x32 Version: 2012.0704.2139.36919 - Ihr Firmenname) Hidden
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
avast! Internet Security (x32 Version: 9.0.2011 - Avast Software)
Benutzerhandbuch (x32 Version: 1.0.0.6 - Lenovo) Hidden
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0704.2139.36919 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0704.2139.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0704.2138.36919 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0704.2139.36919 - Advanced Micro Devices, Inc.) Hidden
CCleaner (Version: 3.17 - Piriform)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DC-Bass Source 1.3.0 (x32 Version: - )
DirectVobSub 2.40.4209 (x32 Version: 2.40.4209 - MPC-HC Team)
DivX-Setup (x32 Version: 2.6.1.87 - DivX, LLC)
DriverTuner 3.1.0.1 (x32 Version: 3.1.0.1 - LionSea SoftWare)
Energy Management (x32 Version: 6.0.2.1 - Lenovo)
Energy Management (x32 Version: 6.0.2.1 - Lenovo) Hidden
ffdshow v1.1.4399 [2012-03-22] (x32 Version: 1.1.4399.0 - )
Free YouTube to MP3 Converter version 3.12.0.128 (x32 Version: 3.12.0.128 - DVDVideoSoft Ltd.)
Google Chrome (x32 Version: 31.0.1650.63 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Haali Media Splitter (x32 Version: - )
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
iCloud (Version: 2.1.2.8 - Apple Inc.)
iTunes (Version: 11.1.2.31 - Apple Inc.)
Java 7 Update 45 (x32 Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lagarith Lossless Codec (1.3.27) (x32 Version: - )
LAME v3.99.3 (for Windows) (x32 Version: - )
Lenovo EasyCamera (x32 Version: 1.11.0209.1 - Lenovo EasyCamera)
Lenovo EE Boot Optimizer (Version: 0.0.1.9 - Lenovo)
Lenovo OneKey Recovery (Version: 7.0.0.2525 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (x32 Version: 7.0.0.2525 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 3.1.3728 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 3.1.3728 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (x32 Version: 3.2.5.0 - Lenovo)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Media Go (x32 Version: 2.6.205 - Sony)
Media Go Video Playback Engine 2.0.117.09030 (x32 Version: 2.0.117.09030 - Sony)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.5128.5002 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
Onekey Theater (x32 Version: 2.0.2.8 - Lenovo)
Onekey Theater (x32 Version: 2.0.2.8 - Lenovo) Hidden
OpenSource Flash Video Splitter 1.0.0.5 (x32 Version: 1.0.0.5 - )
PDFCreator (x32 Version: 1.3.1 - Frank Heindörfer, Philip Chinery)
PlayStation(R)Store (x32 Version: 4.18.0.15698 - Sony Computer Entertainment Inc.)
Power2Go (x32 Version: 5.6.0.7303 - CyberLink Corp.)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Ralink RT2860 Wireless LAN Card (x32 Version: 1.2.0.36 - Ralink)
Realtek Ethernet Controller Driver (x32 Version: 7.50.1123.2011 - Realtek)
Realtek HDMI Audio Driver for ATI (x32 Version: 6.0.1.6650 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (x32 Version: 6.2.8400.39032 - Realtek Semiconductor Corp.)
Smart Defrag 2 (x32 Version: 2.8 - IObit)
Sony Ericsson Update Engine (x32 Version: 2.13.11.201309191111 - Sony Ericsson Communications AB)
Sony PC Companion 2.10.181 (x32 Version: 2.10.181 - Sony)
SRS Control Panel (Version: 1.11.0900 - SRS Labs, Inc.)
Synaptics Pointing Device Driver (Version: 15.2.7.0 - Synaptics Incorporated)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
UserGuide (x32 Version: 1.0.0.6 - Lenovo)
VeriFace (x32 Version: 4.0.1.0126 - Lenovo)
VTech Download Agent Library (x32 Version: 1.00.0000 - VTech) Hidden
VTech Download Manager (x32 Version: - VTech)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows-Treiberpaket - AMD USB (03/30/2010 1.0.0.5) (Version: 03/30/2010 1.0.0.5 - AMD)
Windows-Treiberpaket - Lenovo (ACPIVPC) System (12/02/2010 6.1.0.1) (Version: 12/02/2010 6.1.0.1 - Lenovo)
Wise Care 365 version 2.88 (x32 Version: 2.88 - WiseCleaner.com, Inc.)
Wise PC 1stAid 1.34 (x32 Version: 1.34 - WiseCleaner.com, Inc.)
Xvid Video Codec (x32 Version: 1.3.2 - Xvid Team)
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {03C02A10-E150-437E-B572-A1A3EABA8116} - System32\Tasks\{4989BCB1-CC14-4478-821A-AD81CF5528F1} => Chrome.exe
Task: {0C21F4EF-F683-4EF6-B8B5-C318918FA67A} - System32\Tasks\{1298FBAB-0B28-4B61-8EF1-C0866FB950AA} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {0E9944B3-9BCD-40BD-A097-C15851969626} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-10] (Google Inc.)
Task: {11B2FCF0-7F92-4832-87AE-793906FEE0CE} - System32\Tasks\{59C391B0-4BEE-4FFA-A3E7-4F7FA1E48FAE} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {16CAE107-D9D0-4595-A519-B51C454227F8} - System32\Tasks\{B3853162-6D23-4201-86F8-88070DC39010} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2012-04-09] (ATI Technologies Inc.)
Task: {1EEEABD7-0F18-486C-9690-0688E3BE7F89} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~2\AD-AWA~1\AdAwareLauncher.exe
Task: {1F64DAEE-3F26-40CF-9928-89BA9A12016C} - System32\Tasks\{68191A55-301E-4252-AE47-F3E318BE31F6} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2012-04-09] (ATI Technologies Inc.)
Task: {1FF3E5D5-9EE7-49E3-85CD-5243BEC76FFE} - System32\Tasks\{14422BB5-C96E-479B-B952-A01236A77D3A} => Chrome.exe
Task: {20B583E7-DB01-410C-9FB8-6BDEDDD06F16} - System32\Tasks\{6BF9B4A7-BD37-440A-96A2-F3D8FE5567B5} => C:\Program Files (x86)\DriverTuner\update\update.EXE [2013-07-11] (Sunisoft)
Task: {22457D0F-4BFF-4776-9EE4-F1108D071746} - System32\Tasks\{2438E56A-74DB-47C8-8065-B0F690277F32} => Chrome.exe
Task: {2726DAC9-2572-40D0-A379-ECF668420E03} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-12-30] (AVAST Software)
Task: {2BCD30AE-8C9A-4023-89A2-2868521DC6A0} - System32\Tasks\SmartDefragUpdate => C:\Program Files (x86)\IObit\Smart Defrag 2\AutoUpdate.exe [2013-05-22] (IObit)
Task: {31ABDF9D-61F4-4B53-A777-4E9B103A7146} - System32\Tasks\{8424F9EF-E43D-4CBD-94FF-8B1555BD2A8C} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2012-04-09] (ATI Technologies Inc.)
Task: {31EF6EF0-DF5A-46AF-8CEC-A3B62A0DA712} - System32\Tasks\{EE5C595B-D515-4318-81B0-8261F6C2FB7C} => Chrome.exe
Task: {396097B9-BCAB-43F3-B184-D5E5C649A308} - System32\Tasks\{854FA733-9FD4-4103-B2AB-CBD2A8145B70} => C:\FormatFactory\FormatFactory.exe [2012-01-21] (Free Time)
Task: {3CE91B44-45E7-4E78-9D21-725CE1C93F5F} - System32\Tasks\{957FAA97-BAEF-4292-BD38-96F084D98944} => Chrome.exe
Task: {4147147B-2470-419A-A719-AC7916AF827C} - System32\Tasks\GlaryInitialize 3 => C:\Program Files (x86)\Glary Utilities 3\Initialize.exe
Task: {44599132-AAE6-4765-B444-56D6C02CF7D6} - System32\Tasks\DriverTuner => C:\Program Files (x86)\DriverTuner\DriverTuner.exe [2013-07-11] (LionSea)
Task: {486871A6-BAAE-4448-9775-9BDC888FBC9D} - System32\Tasks\{92C049E3-3DC8-4577-8CE9-6ED5911D7115} => Chrome.exe
Task: {52726E60-E1C4-4D4A-B1CB-5AED1BB3DD9D} - System32\Tasks\{C8BFF0B5-4E9A-4747-8238-A84F3E891D6A} => Chrome.exe
Task: {5860302B-6D4F-4F4B-979F-9E4E580A09AD} - System32\Tasks\{F7229472-DFB6-4410-BFD3-570F2471B5DE} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {5E5DE17F-09F9-438F-B39E-450B08F543C5} - System32\Tasks\{65E7CD52-01DE-42D5-9A51-1E441A2B1D33} => Chrome.exe
Task: {654F0384-2A12-4579-8B7F-54C169CEB4A4} - System32\Tasks\{2DA2E753-D12A-4DE0-9975-12C0F314FA45} => Chrome.exe
Task: {65A7FF98-A9C4-4DDB-B278-009ABCF13CCE} - System32\Tasks\{03704162-0B74-48ED-B7CF-17DA3C112380} => Chrome.exe
Task: {65C4AE25-62DA-44D4-8637-7EC65D7DDFF9} - System32\Tasks\{409573E3-329D-4A9B-8E00-CB0F9C0FDA15} => C:\FormatFactory\FormatFactory.exe [2012-01-21] (Free Time)
Task: {702A168A-89FE-45F6-8B56-067120B8D9BF} - System32\Tasks\{DFBF5988-892C-4378-8E2D-26E093896DEF} => C:\FormatFactory\FormatFactory.exe [2012-01-21] (Free Time)
Task: {7166E034-C0C3-43F8-AFD2-1BB86B5523F6} - System32\Tasks\{7126C513-F274-432A-9958-9BCEF8B37E48} => Chrome.exe
Task: {7C91A749-CA23-47C0-AC6B-77FB6F1A213F} - System32\Tasks\{4DE0D34C-44BA-411E-A8E3-546455A8DB19} => Chrome.exe
Task: {7E536294-3699-4659-8EE9-D06A070370E7} - System32\Tasks\{E7135694-0705-4702-9AC9-B4D57B340A81} => Chrome.exe
Task: {815BB1FF-AC5D-4E1E-A03A-E3D98486C949} - \QtraxPlayer No Task File
Task: {8A49390E-05D1-4736-A822-C5A9350DDB2F} - System32\Tasks\{1BC9FA1B-0A3C-4BF3-975A-C28771621208} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {8D0E691A-10DE-4441-8FD9-BCEE67A722C9} - \DigitalSite No Task File
Task: {8DDA2845-AD0A-4EB9-8656-94E75F760D3E} - System32\Tasks\{FDB21A06-65FE-43CB-AA86-831753BC78F2} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2012-04-09] (ATI Technologies Inc.)
Task: {9B0FF915-E736-4792-BA3F-CCF08A3A7B41} - System32\Tasks\{C6D68321-6F23-487E-96E2-480A425F9228} => Chrome.exe
Task: {9BE31035-FE2F-4218-9407-ECD6BE2E93BA} - System32\Tasks\{57C9A872-A70B-47F3-B302-350ED72D5AF0} => Chrome.exe
Task: {9CEBB65C-AFBB-434F-86EA-AECCBA1C5E7F} - System32\Tasks\{1AD616F4-69D6-453B-961A-8A20AEFFF337} => C:\Program Files\Microsoft Security Client\msseces.exe
Task: {A04FB451-4CEB-4377-9136-4CFCA73B7D4C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A05C615A-2770-4088-8B71-E824193D32EF} - System32\Tasks\{521B8FC9-EBB4-4E46-B1EF-F2E6627DC7E2} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {A0FE71C6-77B8-4093-A95A-FA469C361806} - System32\Tasks\{155C1126-973B-4B66-9B11-71A009AA8214} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {A10C5DA3-733C-407A-BE7D-50966447E66D} - System32\Tasks\{3EF65BDF-7884-4743-8DBA-BA575828228F} => C:\Program Files\Microsoft Security Client\msseces.exe
Task: {A72B4C7B-5CA4-4B44-A37F-1DCF6D2F137D} - System32\Tasks\{6709BD70-6DEC-4546-9F36-0DDB012A22A0} => Chrome.exe
Task: {AD03EFEE-9DBD-4784-A075-4F91FBCD32B4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {AE354C5E-FA6C-4E85-9C67-75A78F89BD8F} - \DealPlyUpdate No Task File
Task: {AEFAAFF4-16B8-40FA-9209-52F32970FB7A} - \DSite No Task File
Task: {AF06E927-0FC4-4E67-B671-F897CF0D78AD} - System32\Tasks\{C678C6D2-097F-448C-B006-3E0435BB5D62} => Chrome.exe
Task: {B076A49E-8C75-4ED2-8476-D33DBE69847D} - System32\Tasks\{F9180B45-B002-42A6-9DFD-851AE43B5E1E} => C:\Users\mido\Desktop\RegpairSetup_2.5.exe
Task: {B2DE462A-AAF8-46FF-81D3-0E8CA3C981AE} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
Task: {B3E63A2E-4299-442F-91DA-6B3B012E6468} - System32\Tasks\{E9512BC7-7132-4746-A159-EC9E9C3883BF} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {BAF528D0-81BF-4C4F-A0D9-24AFD15B9D00} - System32\Tasks\{551AF60E-BAD3-46A5-B37D-4A72EF49474F} => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29] (Sony)
Task: {BEEE8362-F689-4738-A95F-A5B8C9395895} - System32\Tasks\{9CB24AC9-3446-410C-A7A6-9C96D37DDFB0} => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2013-05-29] (Sony)
Task: {C1DD0ED0-F280-4FC1-9F80-86DC42E488D1} - System32\Tasks\Wise Turbo Checker => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2013-08-22] (WiseCleaner.COM)
Task: {C479E25B-FABB-4BA2-86C2-8DDA9B49A01E} - System32\Tasks\{DBB47211-90D5-41EA-856D-071E66421E9C} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2012-04-09] (ATI Technologies Inc.)
Task: {C66AE9A5-C528-44F3-92BB-1B4359D007D6} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {C9D61AC8-C953-4697-873A-B4AC0861268E} - System32\Tasks\{FCC1F4EA-41D7-41A1-AB25-5858EB1D82EF} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {CCC2DC91-BEA0-4673-BEBD-01F7EA03A05C} - System32\Tasks\{E69591D0-E7AC-4369-A9F1-BB05CBBFBB66} => C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-30] (AVAST Software)
Task: {D89C5D42-CDAB-456B-A445-D5D65E948399} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-29] (CyberLink)
Task: {DB06F5CD-B733-4D4F-A5BD-A61083A9D809} - System32\Tasks\{9A1BA969-6E23-4E8F-9062-A36D8FC6E419} => Chrome.exe
Task: {DF600D0C-EA1E-49BD-B1E6-F6B85EE6D4D1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-10] (Google Inc.)
Task: {E0FE945C-31C5-4880-A00B-64B5867D13C2} - System32\Tasks\{528F1321-A64F-426E-9624-0AB48DC22551} => Chrome.exe
Task: {E171045C-EDF2-4B0A-8AF3-BD05643BC744} - System32\Tasks\{01AC028C-9EC6-4C70-A1A6-5E3D2B2220B7} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [2012-04-09] (ATI Technologies Inc.)
Task: {E4E85B7D-2FBA-4F6D-B9B5-322581E2A322} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {E881AB0E-03AF-427B-A4F9-D5A85E7A9805} - System32\Tasks\{15693DAB-093C-47A1-A5E7-37CAE9E966EA} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {E92513E0-80E7-463E-8A5E-8FD3AE43DA33} - System32\Tasks\{73E93FAD-C2BE-4CFF-84EC-24668421C16B} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: {EB161DEB-73DD-4BD8-9F93-6A3399FB40DD} - System32\Tasks\Wise Care 365 => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2013-08-23] (WiseCleaner.com)
Task: {F2985876-2BB2-4623-A25A-B00D8AAAA7DD} - System32\Tasks\{E146C469-A8AB-4555-BCE2-66C0C367A67D} => Chrome.exe
Task: {FE58C1CC-5239-46CE-8CB4-5FD02E6BFF90} - System32\Tasks\{9F7E4673-2BF5-42B7-B7C9-F91674C86EE7} => C:\Program Files (x86)\Xvid\autoupdate-windows.exe [2011-05-23] (Xvid Team)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\DriverTuner.job => C:\Program Files (x86)\DriverTuner\DriverTuner.exe
Task: C:\windows\Tasks\GlaryInitialize 3.job => C:\Program Files (x86)\Glary Utilities 3\Initialize.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
Task: C:\windows\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe
Task: C:\windows\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe
==================== Loaded Modules (whitelisted) =============
2012-01-06 17:03 - 2012-01-06 17:03 - 01508192 _____ () C:\windows\system32\IcnOvrly.dll
2008-12-20 04:20 - 2012-01-06 17:22 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
2008-12-20 04:20 - 2012-01-06 17:22 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll
2011-02-16 18:54 - 2012-01-06 17:06 - 00120224 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WMCEvent.dll
2014-01-07 22:17 - 2014-01-07 11:47 - 02152960 _____ () C:\Program Files\AVAST Software\Avast\defs\14010700\algo.dll
2013-11-21 13:12 - 2013-11-21 13:12 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-08-29 01:25 - 2013-08-29 01:25 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2012-11-05 10:37 - 2010-06-24 02:16 - 02150400 _____ () D:\Storio\VTech\DownloadManager\System\QtCore4.dll
2012-11-05 10:37 - 2010-07-13 14:07 - 07826432 _____ () D:\Storio\VTech\DownloadManager\System\QtGui4.dll
2012-11-05 10:37 - 2010-06-02 03:29 - 00934912 _____ () D:\Storio\VTech\DownloadManager\System\QtNetwork4.dll
2012-11-05 10:37 - 2010-06-02 03:28 - 00335360 _____ () D:\Storio\VTech\DownloadManager\System\QtXml4.dll
2012-11-05 10:37 - 2012-08-06 10:54 - 09843640 _____ () D:\Storio\VTech\DownloadManager\System\QtWebKit4.dll
2012-11-05 10:37 - 2010-06-02 03:56 - 00232960 _____ () D:\Storio\VTech\DownloadManager\System\phonon4.dll
2012-11-05 10:37 - 2010-06-02 03:54 - 02530816 _____ () D:\Storio\VTech\DownloadManager\System\QtXmlPatterns4.dll
2012-11-05 10:37 - 2010-07-05 10:19 - 00116736 _____ () D:\Storio\VTech\DownloadManager\System\QtSolutions_SOAP-2.7.dll
2012-11-05 10:37 - 2010-11-11 10:24 - 00028160 _____ () D:\Storio\VTech\DownloadManager\System\DACommCenter.dll
2012-11-05 10:37 - 2010-06-02 06:05 - 00119808 _____ () D:\Storio\VTech\DownloadManager\System\imageformats\qjpeg4.dll
2013-12-10 16:52 - 2013-12-04 03:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-10 16:52 - 2013-12-04 03:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-10 16:52 - 2013-12-04 03:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-10 16:52 - 2013-12-04 03:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-10 16:52 - 2013-12-04 03:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-10 16:52 - 2013-12-04 03:48 - 13586896 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/07/2014 10:51:42 PM) (Source: CVHSVC) (User: )
Description: Nur zur Information.
Error: Initialization failed 0x8007042c Type: 88::UnexpectedError.
Error: (01/07/2014 10:45:07 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (01/07/2014 10:45:07 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (01/07/2014 10:43:24 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Generatorname: MSSearch Service Writer
Generatorinstanz-ID: {5c66b521-4b4d-43eb-8cf5-a0060ea9bda3}
Error: (01/07/2014 10:43:24 PM) (Source: VSS) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
]
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Generatorname: MSSearch Service Writer
Generatorinstanz-ID: {5c66b521-4b4d-43eb-8cf5-a0060ea9bda3}
Error: (01/07/2014 10:43:10 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {e4acbdd4-5824-456e-821d-7ec0b0684e85}
Error: (01/07/2014 10:43:10 PM) (Source: VSS) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
]
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {e4acbdd4-5824-456e-821d-7ec0b0684e85}
Error: (01/07/2014 10:43:10 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Generatorname: ASR Writer
Generatorinstanz-ID: {6ec5e60d-e360-40c6-a2db-000df624afb7}
Error: (01/07/2014 10:43:10 PM) (Source: VSS) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
]
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Generatorname: ASR Writer
Generatorinstanz-ID: {6ec5e60d-e360-40c6-a2db-000df624afb7}
Error: (01/07/2014 10:43:10 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Fehler: Beim Initialisieren des Registrierungs-Generators ist ein Fehler "0x80042302, Unerwarteter Fehler bei einer Komponente des Volumeschattenkopie-Diensts.
Weitere Informationen finden Sie im Anwendungsereignisprotokoll.
"
aufgetreten. Dies kann dazu führen, dass keine Schattenkopien mehr erstellt werden können.
System errors:
=============
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" ist vom Dienst "COM+-Ereignissystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "COM+-Ereignissystem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" ist vom Dienst "COM+-Ereignissystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "COM+-Ereignissystem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" ist vom Dienst "COM+-Ereignissystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "COM+-Ereignissystem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" ist vom Dienst "COM+-Ereignissystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1079
Error: (01/07/2014 10:51:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "COM+-Ereignissystem" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1079
Error: (01/07/2014 10:45:54 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Media Center Extender-Dienst" ist vom Dienst "Remotedesktopdienste" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/07/2014 10:45:54 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" ist vom Dienst "COM+-Ereignissystem" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1079
Microsoft Office Sessions:
=========================
Error: (01/07/2014 10:51:42 PM) (Source: CVHSVC)(User: )
Description: Error: Initialization failed 0x8007042c Type: 88::UnexpectedError.
Error: (01/07/2014 10:45:07 PM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (01/07/2014 10:45:07 PM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown
Error: (01/07/2014 10:43:24 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Generatorname: MSSearch Service Writer
Generatorinstanz-ID: {5c66b521-4b4d-43eb-8cf5-a0060ea9bda3}
Error: (01/07/2014 10:43:24 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {cd3f2362-8bef-46c7-9181-d62844cdc0b2}
Generatorname: MSSearch Service Writer
Generatorinstanz-ID: {5c66b521-4b4d-43eb-8cf5-a0060ea9bda3}
Error: (01/07/2014 10:43:10 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {e4acbdd4-5824-456e-821d-7ec0b0684e85}
Error: (01/07/2014 10:43:10 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
Generatorname: Shadow Copy Optimization Writer
Generatorinstanz-ID: {e4acbdd4-5824-456e-821d-7ec0b0684e85}
Error: (01/07/2014 10:43:10 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Generatorname: ASR Writer
Generatorinstanz-ID: {6ec5e60d-e360-40c6-a2db-000df624afb7}
Error: (01/07/2014 10:43:10 PM) (Source: VSS)(User: )
Description: {4e14fba2-2e22-11d1-9964-00c04fbbb345}CEventSystem0x80070437, Das für diesen Dienst angegebene Konto unterscheidet sich von dem für andere Dienste angegebenen Konto, die in diesem Prozess ausgeführt werden.
Vorgang:
Generator wird abonniert
Kontext:
Generatorklassen-ID: {be000cbe-11fe-4426-9c58-531aa6355fc4}
Generatorname: ASR Writer
Generatorinstanz-ID: {6ec5e60d-e360-40c6-a2db-000df624afb7}
Error: (01/07/2014 10:43:10 PM) (Source: VSS)(User: )
Description: 0x80042302, Unerwarteter Fehler bei einer Komponente des Volumeschattenkopie-Diensts.
Weitere Informationen finden Sie im Anwendungsereignisprotokoll.
==================== Memory info ===========================
Percentage of memory in use: 52%
Total physical RAM: 3558.11 MB
Available physical RAM: 1707.68 MB
Total Pagefile: 7114.4 MB
Available Pagefile: 4652.48 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:421.81 GB) (Free:363.89 GB) NTFS
Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:26.77 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: B2B496BC)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=422 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=29 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=15 GB) - (Type=12)
==================== End Of Log ============================
Jetzt sehe ich, dass noch die Gmer.txt fehlt. die werde ich dann noch erstellen. Ich hoffe es ist nicht zu viel da oben Aufgeführt aber das alles wurde mir in .txt erstellt. Beste Grüße Patro Nachtrag: Gemr und defogger defogger_disable-Editor Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 23:12 on 07/01/2014 (mido)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
gmer-Editor Code:
ATTFilter GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2014-01-08 01:52:57
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\0000007a ST950032 rev.0003 465,76GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\mido\AppData\Local\Temp\kxldypog.sys
---- Kernel code sections - GMER 2.1 ----
INITKDBG C:\windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528 fffff80003fa5000 63 bytes [89, 7F, 20, 48, 83, FB, FF, ...]
INITKDBG C:\windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 594 fffff80003fa5042 4 bytes [00, 80, 05, 00]
.text C:\windows\System32\win32k.sys!EngSetLastError + 612 fffff96000154e24 8 bytes [18, 24, 05, 04, 80, F8, FF, ...]
.text C:\windows\System32\win32k.sys!W32pServiceTable fffff96000184100 7 bytes [C0, 92, F3, FF, 01, 9C, F0]
.text C:\windows\System32\win32k.sys!W32pServiceTable + 9 fffff96000184109 2 bytes [06, 02]
.text ... * 109
.text C:\windows\System32\win32k.sys!EngGetProcessHandle + 392 fffff96000242d0c 6 bytes {JMP QWORD [RIP-0xb364a]}
---- User code sections - GMER 2.1 ----
.text C:\windows\system32\wininit.exe[616] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\services.exe[692] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\lsass.exe[700] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\winlogon.exe[764] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[852] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\atiesrxx.exe[1008] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\System32\svchost.exe[288] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\System32\svchost.exe[396] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[392] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[868] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[1112] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[1184] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[1484] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files\AVAST Software\Avast\afwServ.exe[1744] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files\AVAST Software\Avast\afwServ.exe[1744] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075ab1465 2 bytes [AB, 75]
.text C:\Program Files\AVAST Software\Avast\afwServ.exe[1744] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075ab14bb 2 bytes [AB, 75]
.text ... * 2
.text C:\windows\system32\svchost.exe[1868] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\System32\spoolsv.exe[1952] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe[2188] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe[2224] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[2316] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe[2528] C:\windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[2844] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe[2932] C:\windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\System32\svchost.exe[2460] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\SysWow64\perfhost.exe[2408] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files (x86)\Ralink\RT2860 Wireless LAN Card\ExtraFiles\RaMediaServer.exe[3156] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe[3536] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\windows\System32\tcpsvcs.exe[3560] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\System32\snmptrap.exe[3584] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[3624] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\svchost.exe[3824] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files\Windows Live\Mesh\wlcrasvc.exe[3992] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe[3956] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe[3956] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075ab1465 2 bytes [AB, 75]
.text C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe[3956] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075ab14bb 2 bytes [AB, 75]
.text ... * 2
.text C:\windows\system32\DllHost.exe[4328] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE[4460] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\windows\system32\taskhost.exe[4704] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe[4724] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\windows\system32\Dwm.exe[4788] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\Explorer.EXE[4812] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[4996] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe[5072] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files (x86)\Lenovo\Energy Management\utility.exe[4496] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[4752] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe[4836] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe[4836] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075ab1465 2 bytes [AB, 75]
.text C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe[4836] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075ab14bb 2 bytes [AB, 75]
.text ... * 2
? C:\windows\system32\mssprxy.dll [4836] entry point in ".rdata" section 00000000745771e6
.text D:\Storio\VTech\DownloadManager\System\AgentMonitor.exe[4964] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text D:\Storio\VTech\DownloadManager\System\AgentMonitor.exe[4964] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075ab1465 2 bytes [AB, 75]
.text D:\Storio\VTech\DownloadManager\System\AgentMonitor.exe[4964] C:\windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075ab14bb 2 bytes [AB, 75]
.text ... * 2
.text C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe[5136] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
.text C:\windows\system32\taskeng.exe[5780] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\system32\SearchIndexer.exe[6000] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE[6084] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Program Files\Windows Media Player\wmpnetwk.exe[5588] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Windows\ehome\ehmsas.exe[4672] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\windows\System32\svchost.exe[2324] C:\windows\system32\kernel32.dll!GetBinaryTypeW + 189 000000007799eecd 1 byte [62]
.text C:\Users\mido\Downloads\gmer_2.1.19163.exe[6948] C:\windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007742a2ba 1 byte [62]
---- Threads - GMER 2.1 ----
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [5588:6028] 000007fefbe02a7c
Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [5588:5984] 000007feeb0ed618
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\ControlSet001\services\BTHPORT\Parameters\Keys\0c6076fc1a13 (not active ControlSet)
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\0c6076fc1a13
Reg HKLM\SYSTEM\ControlSet003\services\BTHPORT\Parameters\Keys\0c6076fc1a13 (not active ControlSet)
---- EOF - GMER 2.1 ----
Geändert von Patro (08.01.2014 um 02:02 Uhr) Grund: Nachtrag:gmer und defogger |
|
08.01.2014, 07:43
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 7 64 bit: Windows Updates werden nicht installiert (Fehler: Code 80246008) HI,
__________________was ist Laufwerk E und F? Downloade dir bitte  Farbar Service Scanner
Poste bitte den Inhalt hier.
__________________ |
|
| Themen zu Windows 7 64 bit: Windows Updates werden nicht installiert (Fehler: Code 80246008) |
| ad-aware, branding, converter, desktop, device driver, dllhost.exe, dvdvideosoft ltd., error, failed, fehler, flash player, google, helper, home, mozilla, mp3, nicht installiert, plug-in, problem, prozess, realtek, registry, rundll, scan, security, software, system, taskhost.exe, updates, usbvideo.sys, virus, win32k.sys, windows, windows 7 64 bit, windows update fehler, windows updates |
Linear-Darstellung
