| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Gebrauchten PC übernommen, ist der sauber und gut genug geschützt?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
07.02.2014, 17:24
| #31 |
| /// the machine /// TB-Ausbilder    |  Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Sieht soweit gut aus. Avast ist noch installiert? Bitte mal den rechner testen und berichten was es noch an Problemen gibt. Und nebenbei: Kannst Du dich vllt erinnern was alles gemacht wurde bevor der Rechner nicht mehr bootete? War da vllt ein WIndows Update? Ich hab jetzt mehrere rechner die mit MBAM nicht mehr booten, aber ich muss rausfinden was genau MBAM abschiesst 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.02.2014, 19:59
| #32 |
 | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Ja, Avast ist noch aktiv, ich lass es gerade mal scannen.
__________________Aber ein Windows-Update habe ich hier nicht gemacht. Ich glaube ja, dass irgendeine Sicherheitssoftware hier drauf ist, die sich nicht mit ADW "verstanden" hat. Zum Beispiel bekomme ich immer, wenn ich eine .jpg mit meinem Irfan-View öffnen will, so eine bescheuerte Meldung von der "Benutzerkontensteuerung", dass das ein nicht identifiziertes Programm sei (komischer Weise kann ich von der Meldung keinen Print-Screen machen). Außerdem ist hier noch so eine doofe McAffee Software drauf, die ich eigentlich auch nicht haben will. Ich würde viel lieber mit den mir bekannten Sicherheitsmaßnahmen arbeiten, die ich durch euch kennen und schätzen gelernt habe. Ich habe nur keine Ahnung, was ich dafür runterschmeißen kann und darf und was nicht. Das Scan-Ergebnis von Avast reiche ich dir gerne nach, wenn es fertig ist. ;-) Avast hat 0 infizierte Dateien gefunden. :-) |
|
08.02.2014, 14:14
| #33 |
| /// the machine /// TB-Ausbilder | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Ok, öffne mal bitte FRST, setze nen Haken bei Additional und scanne, poste beide Logfiles.
__________________Mittlerweile hab ich ne Ahnung wo das Problem her kam
__________________ |
|
08.02.2014, 18:32
| #34 |
| | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Hi. okay, hier die Logfiles: Code:
ATTFilter ---------------------------
Farbar Recovery Scan Tool
---------------------------
The Addition.txt is saved in the same location FRST tool is run.
---------------------------
OK
---------------------------
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-02-2014
Ran by VM (administrator) on CK-PC on 08-02-2014 15:55:56
Running from C:\Users\VM\Desktop\AntiTrojaner
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe
(Arachnoid Biometrics Identification Group Corp.) C:\Program Files\Acer\Acer Bio Protection\CompPtcVUI.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Agere Systems) C:\Windows\System32\agrsmsvc.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
() C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
() C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
() C:\Program Files\GfK-ProxyService\GfK-ProxyService.exe
() C:\Program Files\GfK Internet-Monitor\GfK-Reporting.exe
() C:\Program Files\GfK Internet-Monitor\GfK-Updater.exe
() C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
( ) C:\Windows\System32\lxeecoms.exe
() C:\ACER\Mobility Center\MobilityService.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Deutsche Telekom AG) C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe
(NewTech InfoSystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
() C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Prolific Technology Inc.) C:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\RS_Service.exe
(Uniblue) C:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(sonix) C:\Windows\PLFSetL.exe
() C:\Windows\PLFSetI.exe
(eBay Inc.) C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
() C:\Program Files\Lexmark Pro700 Series\ezprint.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
() C:\Program Files\Lexmark Pro700 Series\lxeemon.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\Program Files\GfK-ProxyService\GfK-ProxyWatchdog.exe
(Acer Incorporated) C:\Program Files\Acer\Acer VCM\AcerVCM.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Deutsche Telekom AG) C:\Program Files\Netzmanager\netzmanager.exe
() C:\Program Files\PdaNet for Android\PdaNetPC.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Realtek Semiconductor Corp.) C:\Users\VM\AppData\Local\Temp\RtkBtMnt.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files\Common Files\Lexware\LxWebAccess\LxWebAccess.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Acer Inc.) C:\Program Files\Acer\Acer VCM\acp2HID.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664 2012-10-12] (Synaptics Incorporated)
HKLM\...\Run: [eAudio] - C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-05-30] (Acer Incorporated)
HKLM\...\Run: [ArcadeDeluxeAgent] - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [147456 2008-07-24] (CyberLink Corp.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [IntelliPoint] - C:\Program Files\Microsoft IntelliPoint\ipoint.exe [1468296 2009-06-01] (Microsoft Corporation)
HKLM\...\Run: [Lexmark Pro700 Series Fax Server] - C:\Program Files\Lexmark Pro700 Series\fm3032.exe [316072 2011-01-23] ()
HKLM\...\Run: [eDataSecurity Loader] - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [ePower_DMC] - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [405504 2008-08-01] (Acer Inc.)
HKLM\...\Run: [PLFSetL] - C:\Windows\PLFSetL.exe [94208 2011-01-22] (sonix)
HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-06-30] ()
HKLM\...\Run: [eBayToolbar] - C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe [632048 2009-03-19] (eBay Inc.)
HKLM\...\Run: [EzPrint] - C:\Program Files\Lexmark Pro700 Series\ezprint.exe [139944 2010-01-18] ()
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [182808 2008-07-20] (Intel Corporation)
HKLM\...\Run: [CLMLServer] - C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [167936 2008-07-24] (CyberLink)
HKLM\...\Run: [lxeemon.exe] - C:\Program Files\Lexmark Pro700 Series\lxeemon.exe [770728 2011-01-23] ()
HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [LManager] - C:\Program Files\Launch Manager\LManager.exe [1115728 2009-12-15] (Dritek System Inc.)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-08-21] (DivX, LLC)
HKLM\...\Run: [LexwareInfoService] - C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-10] (AVAST Software)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9398888 2011-11-04] (Realtek Semiconductor)
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll (Arachnoid Biometrics Identification Group Corp.)
HKU\.DEFAULT\...\Run: [GfK-Proxy-Service] - C:\Program Files\GfK-ProxyService\GfK-ProxyWatchdog.exe [21480 2013-11-28] ()
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-19\...\Run: [GfK-Proxy-Service] - C:\Program Files\GfK-ProxyService\GfK-ProxyWatchdog.exe [21480 2013-11-28] ()
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [GfK-Proxy-Service] - C:\Program Files\GfK-ProxyService\GfK-ProxyWatchdog.exe [21480 2013-11-28] ()
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [KiesPDLR] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [KiesPreload] - C:\Program Files\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\Run: [GfK-Proxy-Service] - C:\Program Files\GfK-ProxyService\GfK-ProxyWatchdog.exe [21480 2013-11-28] ()
HKU\S-1-5-21-2667981686-1106648099-187186479-1000\...\MountPoints2: {b2eaf739-9ee3-11df-9989-001e331dd3dc} - E:\autorun.exe
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter
Startup: C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Netzmanager.lnk
ShortcutTarget: Netzmanager.lnk -> C:\Program Files\Netzmanager\netzmanager.exe (Deutsche Telekom AG)
Startup: C:\Users\VM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk
ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files\PdaNet for Android\PdaNetPC.exe ()
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:7777
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.freenet.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_8930
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://global.acer.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_8930
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0407&s=2&o=vp32&d=0609&m=aspire_8930
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll (eBay Inc.)
BHO: GfK Internet-Monitor - {4BEEA052-726D-4A6E-B65D-A6BD07C263F3} - C:\Program Files\GfK Internet-Monitor\Gacela2.dll (GfK)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
Toolbar: HKLM - eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll (eBay Inc.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKCU - No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: haufereader - No CLSID Value -
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 217.0.43.49 217.0.43.33 192.168.1.1
Chrome:
=======
CHR Extension: (avast! Online Security) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-12-25]
CHR Extension: (GfK Internet-Monitor) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\igkejcihojcegdmifcnlkhmnelneogef [2014-01-15]
CHR Extension: (Freemake Video Converter) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-06-08]
CHR Extension: (Google Wallet) - C:\Users\VM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2013-12-25]
CHR HKLM\...\Chrome\Extension: [igkejcihojcegdmifcnlkhmnelneogef] - C:\Program Files\GfK Internet-Monitor\Chrome Extension\extension.crx [2014-01-15]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-06-08]
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-10] (AVAST Software)
R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [81504 2008-01-16] ()
R2 DeviceManager; C:\Program Files\Common Files\DeviceHelper\DeviceManager.exe [40960 2009-05-25] ()
S3 DfSdkS; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 6\Dfsdks.exe [406016 2009-08-24] (mst software GmbH, Germany)
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-06-02] ()
R2 GfK-Proxy-Service; C:\Program Files\GfK-ProxyService\GfK-ProxyService.exe [45544 2013-11-28] ()
R2 GfK-Reporting-Service; C:\Program Files\GfK Internet-Monitor\GfK-Reporting.exe [3089384 2013-11-28] ()
R2 GfK-Update-Service; C:\Program Files\GfK Internet-Monitor\GfK-Updater.exe [1376232 2013-11-28] ()
R2 IGBASVC; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [3520512 2009-06-14] ()
S2 lxeeCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxee_device; C:\Windows\system32\lxeecoms.exe [598696 2010-04-14] ( )
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] ()
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R2 Netzmanager Service; C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe [2635776 2012-07-20] (Deutsche Telekom AG)
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-25] ()
R2 PLFlash DeviceIoControl Service; C:\Program Files\Nero\Nero BackItUp 4\IoctlSvc.exe [81920 2008-08-29] (Prolific Technology Inc.)
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()
R2 RS_Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [233472 2008-07-19] (Acer Incorporated)
R2 Uniblue DiskRescue; C:\Program Files\Uniblue\DiskRescue\UBDiskRescueSrv.exe [229648 2008-09-10] (Uniblue)
==================== Drivers (Whitelisted) ====================
R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2009-06-14] (Alfa Corporation)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-01-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [54832 2014-01-10] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2013-12-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [775952 2014-01-10] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [410528 2014-01-10] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57672 2014-01-10] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180248 2014-01-10] ()
R3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [28048 2010-02-05] (CSR, plc)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [26024 2010-01-01] (Elaborate Bytes AG)
R3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [37344 2013-10-30] ()
R2 int15; C:\Windows\system32\drivers\int15.sys [69632 2007-01-26] ()
R3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [62496 2011-11-04] (ITE Tech. Inc. )
R3 L1E; C:\Windows\System32\DRIVERS\L1E60x86.sys [54824 2012-10-12] (Atheros Communications, Inc.)
R3 NETwNv32; C:\Windows\System32\DRIVERS\NETwNv32.sys [7346176 2012-10-12] (Intel Corporation)
S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R3 pmkbdfltr; C:\Windows\System32\DRIVERS\pmkbdfltr.sys [15248 2012-10-12] (PenMount)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [103552 2009-05-25] (TCT International Mobile Ltd)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [23608 2012-10-12] (Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1759744 2011-01-22] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-10-16] (Avira GmbH)
R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2009-09-01] ()
R3 TelekomNM3; C:\Program Files\Netzmanager\NMInfraIS2\Driver\TelekomNM3.sys [35040 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [61424 2008-07-18] (Cyberlink Corp.)
S2 Aspi32; No ImagePath
S1 DritekPortIO; No ImagePath
S3 esgiguard; No ImagePath
S3 IpInIp; No ImagePath
S3 NwlnkFlt; No ImagePath
S3 NwlnkFwd; No ImagePath
S3 pccsmcfd; system32\DRIVERS\pccsmcfd.sys [X]
S3 S6U12Scanner; system32\drivers\usbscan.sys [X]
S3 usbscan; system32\DRIVERS\usbscan.sys [X]
U5 usbser; C:\Windows\System32\Drivers\usbser.sys [27648 2009-04-11] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-07 18:28 - 2014-02-07 19:22 - 00000000 ____D () C:\Users\VM\Desktop\Spanisch
2014-02-05 23:05 - 2014-02-05 23:05 - 00000000 _____ () C:\END
2014-01-29 09:26 - 2014-01-29 09:26 - 00140304 _____ () C:\Windows\Minidump\Mini012914-01.dmp
2014-01-28 09:44 - 2014-01-28 09:44 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-CK-PC-Microsoft®-Windows-Vista™-Home-Premium-(32-bit).dat
2014-01-28 09:43 - 2014-01-28 09:43 - 00000000 ____D () C:\RegBackup
2014-01-28 08:51 - 2014-01-28 08:52 - 00000000 ____D () C:\Users\VM\Desktop\Tweaking.com - Windows Repair
2014-01-28 08:25 - 2014-01-28 08:26 - 02903255 _____ () C:\Users\VM\Downloads\tweaking.com_windows_repair_aio (2).zip
2014-01-28 08:25 - 2014-01-28 08:25 - 02903255 _____ () C:\Users\VM\Downloads\tweaking.com_windows_repair_aio (1).zip
2014-01-28 08:02 - 2014-01-28 08:02 - 02903255 _____ () C:\Users\VM\Downloads\tweaking.com_windows_repair_aio.zip
2014-01-27 15:22 - 2014-02-08 15:55 - 00000000 ____D () C:\Users\VM\Desktop\AntiTrojaner
2014-01-27 10:33 - 2014-01-27 10:33 - 00140112 _____ () C:\Windows\Minidump\Mini012714-01.dmp
2014-01-27 10:30 - 2014-01-27 12:30 - 00000000 ____D () C:\AdwCleaner
2014-01-23 22:08 - 2014-02-08 15:55 - 00000000 ____D () C:\FRST
2014-01-17 23:37 - 2014-01-17 23:37 - 00000000 ____D () C:\Users\VM\AppData\Local\gtk-2.0
2014-01-17 23:28 - 2014-01-17 23:43 - 00000000 ____D () C:\Users\VM\.gimp-2.8
2014-01-17 23:28 - 2014-01-17 23:28 - 00000000 ____D () C:\Users\VM\AppData\Local\gegl-0.2
2014-01-17 23:16 - 2014-02-07 19:21 - 00000000 ____D () C:\Users\VM\Desktop\Mallorca
2014-01-16 21:03 - 2007-11-14 15:18 - 00000553 _____ () C:\Windows\USetup.iss
2014-01-16 05:23 - 2014-01-16 05:53 - 00000000 ____D () C:\Program Files\GfK-ProxyService
2014-01-15 21:48 - 2014-02-08 15:54 - 00000000 ____D () C:\Program Files\GfK Internet-Monitor
2014-01-15 21:48 - 2014-01-15 21:48 - 00002672 _____ () C:\Windows\system32\GacelaLSPServiceOff.ini
2014-01-09 23:54 - 2014-01-16 03:09 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-01-09 23:54 - 2014-01-09 23:54 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-09 23:54 - 2014-01-09 23:54 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-09 23:54 - 2014-01-09 23:54 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-01-09 23:54 - 2014-01-09 23:54 - 00000000 ____D () C:\ProgramData\McAfee
2014-01-09 23:51 - 2014-01-09 23:51 - 00000000 ____D () C:\Users\VM\AppData\Local\cache
2014-01-09 23:48 - 2014-01-09 23:48 - 00000000 ____D () C:\Program Files\Image Converter
==================== One Month Modified Files and Folders =======
2014-02-08 15:55 - 2014-01-27 15:22 - 00000000 ____D () C:\Users\VM\Desktop\AntiTrojaner
2014-02-08 15:55 - 2014-01-23 22:08 - 00000000 ____D () C:\FRST
2014-02-08 15:54 - 2014-01-15 21:48 - 00000000 ____D () C:\Program Files\GfK Internet-Monitor
2014-02-08 15:54 - 2010-03-07 20:25 - 00226639 _____ () C:\ProgramData\lxeescan.log
2014-02-08 15:52 - 2009-02-02 13:15 - 00000147 _____ () C:\Windows\system32\agent.log
2014-02-08 15:51 - 2013-12-21 21:48 - 01205424 _____ () C:\Windows\PFRO.log
2014-02-08 15:51 - 2009-02-02 12:17 - 00000000 ____D () C:\Program Files\InstallShield Installation Information
2014-02-08 15:51 - 2006-11-02 13:47 - 00003344 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-08 15:51 - 2006-11-02 13:47 - 00003344 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-07 20:04 - 2009-07-02 00:19 - 00010652 _____ () C:\Windows\bthservsdp.dat
2014-02-07 20:03 - 2009-06-14 07:52 - 01455888 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 20:02 - 2008-01-21 08:16 - 01549904 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-07 19:22 - 2014-02-07 18:28 - 00000000 ____D () C:\Users\VM\Desktop\Spanisch
2014-02-07 19:21 - 2014-01-17 23:16 - 00000000 ____D () C:\Users\VM\Desktop\Mallorca
2014-02-07 18:59 - 2010-03-07 20:31 - 00000000 ____D () C:\ProgramData\Lx_cats
2014-02-07 18:58 - 2010-03-07 21:06 - 00402604 _____ () C:\ProgramData\lxeeJSW.log
2014-02-07 18:27 - 2013-01-02 23:03 - 00000000 ____D () C:\Users\VM\AppData\Local\Nero
2014-02-07 18:01 - 2013-12-24 00:40 - 00000000 ___RD () C:\Users\VM\Eigene Bilder
2014-02-05 23:05 - 2014-02-05 23:05 - 00000000 _____ () C:\END
2014-02-05 23:04 - 2011-02-07 20:19 - 00008592 _____ () C:\Users\VM\AppData\Local\d3d9caps.dat
2014-02-05 23:00 - 2009-06-14 08:05 - 00000000 _____ () C:\Windows\system32\LogConfigTemp.xml
2014-02-05 22:58 - 2006-11-02 13:47 - 00492008 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-30 16:11 - 2013-12-24 00:33 - 00000000 ____D () C:\Users\VM\My Digital Editions
2014-01-30 15:58 - 2009-06-28 17:16 - 00000000 ____D () C:\Users\VM
2014-01-29 20:48 - 2009-06-28 23:58 - 00139936 _____ () C:\Windows\system32\GDIPFONTCACHEV1.DAT
2014-01-29 20:18 - 2006-11-02 13:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-01-29 09:26 - 2014-01-29 09:26 - 00140304 _____ () C:\Windows\Minidump\Mini012914-01.dmp
2014-01-29 09:26 - 2013-12-25 17:05 - 325170187 _____ () C:\Windows\MEMORY.DMP
2014-01-29 09:26 - 2010-01-11 00:25 - 00000000 ____D () C:\Windows\Minidump
2014-01-28 12:52 - 2006-11-02 11:23 - 00000855 _____ () C:\Windows\system32\Drivers\etc\hosts_bak_702
2014-01-28 09:44 - 2014-01-28 09:44 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-CK-PC-Microsoft®-Windows-Vista™-Home-Premium-(32-bit).dat
2014-01-28 09:43 - 2014-01-28 09:43 - 00000000 ____D () C:\RegBackup
2014-01-28 08:52 - 2014-01-28 08:51 - 00000000 ____D () C:\Users\VM\Desktop\Tweaking.com - Windows Repair
2014-01-28 08:26 - 2014-01-28 08:25 - 02903255 _____ () C:\Users\VM\Downloads\tweaking.com_windows_repair_aio (2).zip
2014-01-28 08:25 - 2014-01-28 08:25 - 02903255 _____ () C:\Users\VM\Downloads\tweaking.com_windows_repair_aio (1).zip
2014-01-28 08:02 - 2014-01-28 08:02 - 02903255 _____ () C:\Users\VM\Downloads\tweaking.com_windows_repair_aio.zip
2014-01-27 12:30 - 2014-01-27 10:30 - 00000000 ____D () C:\AdwCleaner
2014-01-27 10:33 - 2014-01-27 10:33 - 00140112 _____ () C:\Windows\Minidump\Mini012714-01.dmp
2014-01-25 20:54 - 2013-12-21 21:16 - 00009070 _____ () C:\Windows\setupact.log
2014-01-24 15:05 - 2009-06-28 19:17 - 00000000 ____D () C:\Users\VM\AppData\Local\Microsoft Help
2014-01-19 23:13 - 2014-01-05 22:37 - 00000000 ____D () C:\Users\VM\Desktop\Handybilder
2014-01-17 23:43 - 2014-01-17 23:28 - 00000000 ____D () C:\Users\VM\.gimp-2.8
2014-01-17 23:37 - 2014-01-17 23:37 - 00000000 ____D () C:\Users\VM\AppData\Local\gtk-2.0
2014-01-17 23:28 - 2014-01-17 23:28 - 00000000 ____D () C:\Users\VM\AppData\Local\gegl-0.2
2014-01-16 21:09 - 2009-02-02 12:21 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-01-16 21:02 - 2009-02-02 12:23 - 00319456 _____ (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2014-01-16 14:25 - 2009-06-28 17:19 - 00000000 ____D () C:\Users\VM\AppData\Local\Google
2014-01-16 14:24 - 2009-02-02 12:44 - 00000000 ____D () C:\Program Files\Google
2014-01-16 09:59 - 2013-09-13 17:22 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-16 05:53 - 2014-01-16 05:23 - 00000000 ____D () C:\Program Files\GfK-ProxyService
2014-01-16 03:11 - 2013-07-22 23:17 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-16 03:09 - 2014-01-09 23:54 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-01-16 03:01 - 2006-11-02 11:24 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-01-15 21:48 - 2014-01-15 21:48 - 00002672 _____ () C:\Windows\system32\GacelaLSPServiceOff.ini
2014-01-10 00:07 - 2013-12-25 14:49 - 00000350 _____ () C:\Windows\Tasks\avast! Emergency Update.job
2014-01-10 00:07 - 2013-12-25 14:43 - 00775952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-10 00:07 - 2013-12-25 14:43 - 00410528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-01-10 00:07 - 2013-12-25 14:43 - 00180248 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-01-10 00:07 - 2013-12-25 14:43 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-10 00:07 - 2013-12-25 14:43 - 00057672 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2014-01-10 00:07 - 2013-12-25 14:43 - 00054832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr.sys
2014-01-10 00:06 - 2013-12-25 14:43 - 00270240 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-10 00:06 - 2013-12-25 14:42 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-09 23:54 - 2014-01-09 23:54 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-09 23:54 - 2014-01-09 23:54 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-09 23:54 - 2014-01-09 23:54 - 00000000 ____D () C:\ProgramData\McAfee Security Scan
2014-01-09 23:54 - 2014-01-09 23:54 - 00000000 ____D () C:\ProgramData\McAfee
2014-01-09 23:54 - 2011-06-02 21:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-09 23:54 - 2009-06-28 22:44 - 00000000 ____D () C:\Users\VM\AppData\Local\Adobe
2014-01-09 23:51 - 2014-01-09 23:51 - 00000000 ____D () C:\Users\VM\AppData\Local\cache
2014-01-09 23:48 - 2014-01-09 23:48 - 00000000 ____D () C:\Program Files\Image Converter
Files to move or delete:
====================
C:\Users\VM\AppData\Roaming\desktop.ini
Some content of TEMP:
====================
C:\Users\VM\AppData\Local\Temp\DivXSetup.exe
C:\Users\VM\AppData\Local\Temp\RtkBtMnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-08 15:59
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- --- --- --- |
|
09.02.2014, 09:52
| #35 |
| /// the machine /// TB-Ausbilder | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Additional.txt fehlt
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.02.2014, 20:08
| #36 |
| | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Uuuups, sorry... ;-) Here it is: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-02-2014
Ran by VM at 2014-02-08 15:58:29
Running from C:\Users\VM\Desktop\AntiTrojaner
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
<==== ATTENTION
3Planesoft Screensaver Manager 1.2 (Version: 1.2 - 3Planesoft) <==== ATTENTION
AAV 6.0.00.15 (Version: - ) <==== ATTENTION
ABBYY FineReader 6.0 Sprint (Version: 6.00.2146.41621 - ABBYY Software House) <==== ATTENTION
Acer Arcade Deluxe (Version: 2.1.5529 - CyberLink Corp.) <==== ATTENTION
Acer Arcade Deluxe (Version: 2.1.5529 - CyberLink Corp.) Hidden <==== ATTENTION
Acer Bio Protection <==== ATTENTION
Acer Crystal Eye Webcam 3.0.6.3 (Version: 3.0.6.3 - SuYin) <==== ATTENTION
Acer eAudio Management (Version: 3.0.3008 - CyberLink Corp.) <==== ATTENTION
Acer eDataSecurity Management (Version: 3.0.3065 - Egis Inc.) <==== ATTENTION
Acer Empowering Technology (Version: 3.0.3009 - Acer Incorporated) <==== ATTENTION
Acer ePower Management (Version: 3.0.3014 - Acer Incorporated) <==== ATTENTION
Acer eSettings Management (Version: 3.0.3011 - Acer Incorporated) <==== ATTENTION
Acer GridVista (Version: 2.72.317 - ) <==== ATTENTION
Acer Mobility Center Plug-In (Version: 3.0.3000 - Acer Inc.) <==== ATTENTION
Acer Product Registration (Version: 3.0.0.10 - Acer Incorporated) <==== ATTENTION
Acer ScreenSaver (Version: 1.13.1301 - Acer Inc.) <==== ATTENTION
Acer VCM (Version: 3.2.3002 - Acer Incorporated) <==== ATTENTION
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.0.0 - Adobe Systems) Hidden <==== ATTENTION
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55 - Adobe Systems Incorporated) <==== ATTENTION
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated) <==== ATTENTION
Adobe Reader for Pocket PC 2.0 (Version: 2.0 - Adobe Systems) <==== ATTENTION
Adobe Reader for Pocket PC 2.0 (Version: 2.0 - Adobe Systems) Hidden <==== ATTENTION
Adobe Reader X (10.1.9) - Deutsch (Version: 10.1.9 - Adobe Systems Incorporated) <==== ATTENTION
Adobe Shockwave Player 11.5 (Version: 11.5.9.615 - Adobe Systems, Inc.) <==== ATTENTION
Advertising Center (Version: 0.0.0.1 - Nero AG) Hidden <==== ATTENTION
Agere Systems HDA Modem (Version: - Agere Systems) <==== ATTENTION
Amazon MP3-Downloader 1.0.17 (Version: 1.0.17 - Amazon Services LLC) <==== ATTENTION
Apple Application Support (Version: 2.3.4 - Apple Inc.) <==== ATTENTION
Apple Software Update (Version: 2.1.3.127 - Apple Inc.) <==== ATTENTION
Ashampoo WinOptimizer 6.60 (Version: 6.6.0 - Ashampoo GmbH & Co. KG) <==== ATTENTION
Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (Version: 1.0.0.30 - Atheros Communications Inc.) <==== ATTENTION
avast! Free Antivirus (Version: 9.0.2011 - Avast Software) <==== ATTENTION
BPM-Studio 4 Profi (Version: - ) <==== ATTENTION
C:\Program Files\Acer GameZone\GameConsole (Version: 2.0.1.4 - Oberon Media, Inc.) <==== ATTENTION
CCleaner (Version: 4.06 - Piriform) <==== ATTENTION
Classic PhoneTools (Version: 9.00 - Avanquest software) <==== ATTENTION
Classic PhoneTools (Version: 9.00 - BVRP Software) Hidden <==== ATTENTION
CorelDRAW Graphics Suite X3 (Version: 13.0 - Corel Corporation) <==== ATTENTION
CyberLink PowerDirector (Version: 6.5.3023d - CyberLink Corp.) <==== ATTENTION
CyberLink PowerDirector (Version: 6.5.3023d - CyberLink Corp.) Hidden <==== ATTENTION
DATA BECKER - Die große CD-Druckerei (Version: - ) <==== ATTENTION
DE (Version: 13.0 - Corel Corporation) Hidden <==== ATTENTION
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
DHTML Editing Component (Version: 6.02.0001 - Microsoft Corporation) <==== ATTENTION
DivX-Setup (Version: 2.6.1.84 - DivX, LLC) <==== ATTENTION
eBay Toolbar (Version: 2.50.12.4 - eBay) <==== ATTENTION
eSobi v2 (Version: 2.0.3.000223 - esobi Inc.) <==== ATTENTION
eSobi v2 (Version: 2.0.3.000223 - esobi Inc.) Hidden <==== ATTENTION
Feedback Tool (Version: 1.2.0 - Microsoft Corporation) <==== ATTENTION
Fireplace 3D Screensaver 1.0 (Version: 1.0 - 3Planesoft) <==== ATTENTION
FontNav (Version: 5.0 - Corel Corporation) Hidden <==== ATTENTION
Free Studio version 2013 (Version: 6.1.7.717 - DVDVideoSoft Ltd.) <==== ATTENTION
Freemake Video Converter Version 4.0.1 (Version: 4.0.1 - Ellora Assets Corporation) <==== ATTENTION
Galapago (Version: - Oberon Media) <==== ATTENTION
GameXN GO (HKCU Version: - GameXN AS) <==== ATTENTION
GfK Internet-Monitor (Version: 13.4.53 - GfK) <==== ATTENTION
GfK Proxy Service (Version: - ) <==== ATTENTION
GIMP 2.8.10 (Version: 2.8.10 - The GIMP Team) <==== ATTENTION
Go-Go Gourmet (Version: - Oberon Media) <==== ATTENTION
Google Chrome (Version: 32.0.1700.107 - Google Inc.) <==== ATTENTION
Google Earth (Version: 7.1.2.2041 - Google) <==== ATTENTION
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden <==== ATTENTION
Haufe iDesk-Service (Version: 11.07.19.8023 - Haufe) <==== ATTENTION
Heroes of Hellas (Version: - Oberon Media) <==== ATTENTION
HSPA USB MODEM (Version: - Alcatel) <==== ATTENTION
Image Editor Packages (HKCU Version: - ) <==== ATTENTION
ImagXpress (Version: 7.0.74.0 - Nero AG) Hidden <==== ATTENTION
Intel PROSet Wireless (Version: - ) Hidden <==== ATTENTION
Intel(R) PROSet/Wireless WiFi-Software (Version: 12.00.0004 - Intel(R) Corporation) <==== ATTENTION
Intel® Matrix Storage Manager (Version: - Intel Corporation) <==== ATTENTION
IrfanView (remove only) (Version: - ) <==== ATTENTION
ITECIR (Version: 1.6 - ITE) <==== ATTENTION
Java 7 Update 45 (Version: 7.0.450 - Oracle) <==== ATTENTION
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden <==== ATTENTION
Java(TM) 6 Update 2 (Version: 1.6.0.20 - Sun Microsystems, Inc.) <==== ATTENTION
Java(TM) 6 Update 35 (Version: 6.0.350 - Oracle) <==== ATTENTION
JMicron JMB38X Flash Media Controller (Version: 1.00.12.07 - JMicron Technology Corp.) <==== ATTENTION
Junk Mail filter update (Version: 14.0.8089.726 - Microsoft Corporation) Hidden <==== ATTENTION
Launch Manager (Version: 3.0.02 - Acer Inc.) <==== ATTENTION
Lexmark (Version: 1.0.0.0 - ) <==== ATTENTION
Lexmark Pro700 Series (Version: - Lexmark International, Inc.) <==== ATTENTION
Lexmark Symbolleiste (Version: 4.63.37.0 - ) <==== ATTENTION
Lexmark Tools for Office (Version: 1.29.0.0 - ) <==== ATTENTION
Lexware Info Service (Version: 2.90.00.0009 - Haufe-Lexware GmbH & Co.KG) <==== ATTENTION
LightScribe 1.4.142.1 (Version: 1.4.142.1 - hxxp://www.lightscribe.com) Hidden <==== ATTENTION
Macromedia FreeHand 9 (Version: 9 - Macromedia) <==== ATTENTION
McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.) <==== ATTENTION
MEDION GoPal Assistant (Version: 6.2.0.12196 - MEDION) <==== ATTENTION
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version: - Microsoft Corporation) <==== ATTENTION
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation) <==== ATTENTION
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320 - Microsoft Corporation) <==== ATTENTION
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) <==== ATTENTION
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) <==== ATTENTION
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) <==== ATTENTION
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft IntelliPoint 7.0 (Version: 7.0.260.0 - Microsoft) <==== ATTENTION
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) <==== ATTENTION
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden <==== ATTENTION
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation) <==== ATTENTION
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) <==== ATTENTION
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) <==== ATTENTION
Microsoft Works (Version: 08.05.0822 - Microsoft Corporation) <==== ATTENTION
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0 - Microsoft Corp.) <==== ATTENTION
Mobipocket Reader 6.2 (Version: 6.2.608 - Mobipocket.com) <==== ATTENTION
MSVC80_x86 (Version: 1.0.1.0 - Nokia) Hidden <==== ATTENTION
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden <==== ATTENTION
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden <==== ATTENTION
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden <==== ATTENTION
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation) <==== ATTENTION
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation) <==== ATTENTION
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0 - Microsoft Corporation) <==== ATTENTION
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation) <==== ATTENTION
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation) <==== ATTENTION
Mythic Mahjong (Version: - Oberon Media) <==== ATTENTION
Nero 12 (Version: 12.0.02900 - Nero AG) <==== ATTENTION
Nero Audio Pack 1 (Version: 11.0.11500.110.0 - Nero AG) Hidden <==== ATTENTION
Nero BackItUp (Version: 12.0.6002 - Nero AG) Hidden <==== ATTENTION
Nero BackItUp (Version: 4.0.0.0 - Nero AG) Hidden <==== ATTENTION
Nero BackItUp 4 (Version: - Nero AG) <==== ATTENTION
Nero BackItUp Help (CHM) (Version: 12.0.8000 - Nero AG) Hidden <==== ATTENTION
Nero Blu-ray Player (Version: 12.0.17700 - Nero AG) Hidden <==== ATTENTION
Nero Blu-ray Player Help (CHM) (Version: 12.0.9000 - Nero AG) Hidden <==== ATTENTION
Nero Burning ROM (Version: 12.0.28001 - Nero AG) Hidden <==== ATTENTION
Nero Burning ROM Help (CHM) (Version: 12.0.3000 - Nero AG) Hidden <==== ATTENTION
Nero ControlCenter (Version: 11.0.15500 - Nero AG) Hidden <==== ATTENTION
Nero ControlCenter (Version: 9.0.0.1 - Nero AG) Hidden <==== ATTENTION
Nero ControlCenter Help (CHM) (Version: 12.0.7000 - Nero AG) Hidden <==== ATTENTION
Nero Core Components (Version: 11.0.18900 - Nero AG) Hidden <==== ATTENTION
Nero Disc Menus Basic (Version: 12.0.11500 - Nero AG) Hidden <==== ATTENTION
Nero Effects Basic (Version: 12.0.11500 - Nero AG) Hidden <==== ATTENTION
Nero Express (Version: 12.0.28001 - Nero AG) Hidden <==== ATTENTION
Nero Express Help (CHM) (Version: 12.0.5000 - Nero AG) Hidden <==== ATTENTION
Nero Installer (Version: 2.0.0.1 - Nero AG) Hidden <==== ATTENTION
Nero Kwik Media (Version: 1.18.19600 - Nero AG) Hidden <==== ATTENTION
Nero Kwik Media Help (CHM) (Version: 12.0.7000 - Nero AG) Hidden <==== ATTENTION
Nero Kwik Themes Basic (Version: 12.0.11500 - Nero AG) Hidden <==== ATTENTION
Nero PiP Effects Basic (Version: 12.0.11500 - Nero AG) Hidden <==== ATTENTION
Nero Recode (Version: 12.0.31001 - Nero AG) Hidden <==== ATTENTION
Nero Recode Help (CHM) (Version: 12.0.7000 - Nero AG) Hidden <==== ATTENTION
Nero RescueAgent (Version: 12.0.10002 - Nero AG) Hidden <==== ATTENTION
Nero RescueAgent Help (CHM) (Version: 12.0.7000 - Nero AG) Hidden <==== ATTENTION
Nero SharedVideoCodecs (Version: 1.0.12100.2.0 - Nero AG) Hidden <==== ATTENTION
Nero Update (Version: 11.0.11800.31.0 - Nero AG) Hidden <==== ATTENTION
Nero Video (Version: 12.0.8000 - Nero AG) Hidden <==== ATTENTION
Nero Video Help (CHM) (Version: 12.0.7000 - Nero AG) Hidden <==== ATTENTION
neroxml (Version: 1.0.0 - Nero AG) Hidden <==== ATTENTION
Netzmanager (Version: 1.071 - Deutsche Telekom AG) <==== ATTENTION
Netzmanager (Version: 1.071 - Deutsche Telekom AG, Marmiko IT-Solutions GmbH) Hidden <==== ATTENTION
NTI Backup Now 5 (Version: 5.1.2.606 - NewTech Infosystems) <==== ATTENTION
NTI Backup Now Standard (Version: 5.1.2.606 - NewTech Infosystems) Hidden <==== ATTENTION
NTI Media Maker 8 (Version: 8.0.2.6329 - NewTech Infosystems) <==== ATTENTION
NTI Media Maker 8 (Version: 8.0.2.6329 - NewTech Infosystems) Hidden <==== ATTENTION
NVIDIA Drivers (Version: 1.10 - NVIDIA Corporation) <==== ATTENTION
NVIDIA Install Application (Version: 2.1002.85.551 - NVIDIA Corporation) Hidden <==== ATTENTION
NVIDIA PhysX (Version: 9.09.0203 - NVIDIA Corporation) <==== ATTENTION
NVIDIA Systemsteuerung 306.97 (Version: 306.97 - NVIDIA Corporation) Hidden <==== ATTENTION
Office-Bibliothek (Version: 5.00.4 - Bibliographisches Institut & F.A. Brockhaus AG) <==== ATTENTION
Orion (Version: 2.0.1 - Convesoft) <==== ATTENTION
PdaNet for Android 3.50 (Version: - June Fabrics Technology Inc) <==== ATTENTION
PhotoNow! (Version: 1.1.4619 - CyberLink Corp.) <==== ATTENTION
PixiePack Codec Pack (Version: 1.1.1200.0 - None) <==== ATTENTION
Prerequisite installer (Version: 12.0.0003 - Nero AG) Hidden <==== ATTENTION
Putt Mania (Version: - Oberon Media) <==== ATTENTION
QuickSteuer 2011 (Version: 17.05.00.0003 - Haufe-Lexware GmbH & Co.KG) <==== ATTENTION
QuickSteuer 2012 COMPUTERBILD Edition (Version: 18.07.00.0008 - Haufe-Lexware GmbH & Co.KG) <==== ATTENTION
QuickSteuer 2013 (Version: 19.06.00.0003 - Haufe-Lexware GmbH & Co.KG) <==== ATTENTION
QuickSteuer Wissens-Center 2011 (Version: 17.10.0.0 - Haufe-Lexware GmbH & Co. KG) <==== ATTENTION
QuickSteuer Wissens-Center 2012 (Version: 18.1.0.0 - Haufe-Lexware GmbH & Co. KG) <==== ATTENTION
QuickTime (Version: 7.74.80.86 - Apple Inc.) <==== ATTENTION
Radiotracker (Version: 6.2.13700.0 - RapidSolution Software AG) <==== ATTENTION
Realtek High Definition Audio Driver (Version: 6.0.1.6167 - Realtek Semiconductor Corp.) <==== ATTENTION
Samsung Kies (Version: 2.0.1.11053_99 - Samsung Electronics Co., Ltd.) <==== ATTENTION
Samsung Kies (Version: 2.0.1.11053_99 - Samsung Electronics Co., Ltd.) Hidden <==== ATTENTION
Samsung PC Studio 3 (Version: 3.0.0.80502 - Samsung Electronics Co., Ltd.) Hidden <==== ATTENTION
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.2410.0 - SAMSUNG Electronics Co., Ltd.) <==== ATTENTION
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden <==== ATTENTION
Servicepack Datumsaktualisierung (Version: 1.00.00.0005 - Haufe-Lexware) Hidden <==== ATTENTION
Skype™ 6.0 (Version: 6.0.126 - Skype Technologies S.A.) <==== ATTENTION
StarMoney (Version: 1.0 - StarFinanz) Hidden <==== ATTENTION
StarMoney (Version: 2.0 - StarFinanz) Hidden <==== ATTENTION
StarMoney (Version: 3.0.0.124 - StarFinanz) Hidden <==== ATTENTION
Synaptics Pointing Device Driver (Version: 14.0.12.0 - Synaptics Incorporated) <==== ATTENTION
TuneUp Utilities Language Pack (de-DE) (Version: 9.0.6030.1 - TuneUp Software) Hidden <==== ATTENTION
TVgenial 4.10 (Version: - ) <==== ATTENTION
Uniblue DiskRescue 2009 (Version: 1.0.0 - Uniblue Systems) Hidden <==== ATTENTION
Uniblue DriverScanner 2009 (Version: 2.0.0.1 - Uniblue Systems Ltd.) Hidden <==== ATTENTION
Uninstall 1.0.0.1 (Version: - ) <==== ATTENTION
Unity Web Player (HKCU Version: - Unity Technologies ApS) <==== ATTENTION
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3 - Microsoft Corporation) <==== ATTENTION
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (Version: - Microsoft) <==== ATTENTION
Update Manager (Version: 4.60 - Corel Corporation) Hidden <==== ATTENTION
Validity Sensors software (Version: 2.7.44 - Validity Sensors, Inc.) <==== ATTENTION
VBA (Version: 6.2 - Corel Corporation) Hidden <==== ATTENTION
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden <==== ATTENTION
Virtual DJ - Atomix Productions (Version: - ) <==== ATTENTION
VirtualCloneDrive (Version: - Elaborate Bytes) <==== ATTENTION
VirtualDJ PRO Full (Version: 7.0.4 - Atomix Productions) <==== ATTENTION
Welcome App (Start-up experience) (Version: 12.0.15000 - Nero AG) Hidden <==== ATTENTION
Windows Live Call (Version: 14.0.8064.0206 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live Communications Platform (Version: 14.0.8098.930 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live Essentials (Version: 14.0.8089.0726 - Microsoft Corporation) <==== ATTENTION
Windows Live Essentials (Version: 14.0.8089.726 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live Fotogalerie (Version: 14.0.8081.709 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live ID-Anmelde-Assistent (Version: 6.500.3165.0 - Microsoft Corporation) <==== ATTENTION
Windows Live Mail (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live Messenger (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live Writer (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden <==== ATTENTION
Windows Live-Uploadtool (Version: 14.0.8014.1029 - Microsoft Corporation) <==== ATTENTION
Windows Mobile-Gerätecenter (Version: 6.1.6965.0 - Microsoft Corporation) <==== ATTENTION
Windows Mobile-Gerätecenter: Treiberupdate (Version: 6.1.6965.0 - Microsoft Corporation) <==== ATTENTION
WinRAR (Version: - ) <==== ATTENTION
Xara Photo & Graphic Designer 6 (Version: 6.1.3.25152 - Xara Group Ltd) <==== ATTENTION
Xara Photo & Graphic Designer 6 (Version: 6.1.3.25152 - Xara Group Ltd) Hidden <==== ATTENTION
==================== Restore Points =========================
07-01-2014 17:44:34 Windows Update
09-01-2014 23:03:34 avast! antivirus system restore point
15-01-2014 12:06:04 Windows Update
16-01-2014 02:00:30 Windows Update
21-01-2014 12:52:21 Windows Update
24-01-2014 18:28:25 Windows Update
==================== Hosts content: ==========================
2006-11-02 11:23 - 2014-01-28 21:33 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {27EC1DEA-57EC-423F-AA44-2D88E86D382D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {5A7F5460-B140-4D8D-B9EB-39C5E1DF451E} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {634EEDCC-710F-464A-A305-32334C8EE65A} - System32\Tasks\Uniblue DiskRescue 2009 => C:\Program Files\Uniblue\DiskRescue\UBDiskRescue.exe [2008-09-10] (Uniblue)
Task: {69623E90-07BC-4041-A70B-3E1A7D6BE87B} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2009-06-01] (Microsoft Corporation)
Task: {69682880-4C7B-4ADD-812B-0A11C2C1103B} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {73CF916C-8B98-4169-A0A9-2974C54CCBE3} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {75D79F72-E960-4A77-92D7-8F1A2A8EBD2C} - System32\Tasks\InstallShield Software-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-08-11] (Macrovision Corporation)
Task: {8B1C49D2-71EA-4E0F-A58D-6E463B027166} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-30] (Google Inc.)
Task: {A43163DD-771C-4F90-A1C5-827EF9792C8B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B19AD1E9-68EC-4259-8132-F36461A0F0E0} - System32\Tasks\{F62FF463-32EE-4AB5-91B3-768D3C5905BB} => C:\Program Files\Skype\Phone\Skype.exe [2012-11-09] (Skype Technologies S.A.)
Task: {C0276B33-DD07-41FB-B1CC-1F7B41746315} - System32\Tasks\{B54E3089-7E05-4657-8ADF-FD6ACB82CC21} => C:\Program Files\Skype\\Phone\Skype.exe [2012-11-09] (Skype Technologies S.A.)
Task: {CD85FE0E-256B-4185-968B-B2E859598A46} - System32\Tasks\{6D53D572-09B3-432B-8B05-6B0C41F87FAC} => C:\Program Files\Skype\Phone\Skype.exe [2012-11-09] (Skype Technologies S.A.)
Task: {E1FD0C7C-6741-43CA-952C-72310DE39797} - System32\Tasks\{57C162A0-E3B0-4C81-81C7-3B784833FC42} => C:\Program Files\Skype\Phone\Skype.exe [2012-11-09] (Skype Technologies S.A.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {E765ADB2-FECE-4ECB-9724-E5AF8F8EFB3F} - System32\Tasks\{EDAB9B0E-ACA4-4294-AA65-0A1FE2741AEF} => Iexplore.exe hxxp://ui.skype.com/ui/0/4.1.0.179/de/abandoninstall?page=tsChrome&installinfo=google-toolbar:notoffered;toolbarpresent,google-chrome:offered-notinstalled
Task: {E7D075D2-BF1B-45AC-BFE2-F0B692466C48} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-01-30] (Google Inc.)
Task: {E97F56B4-78D5-4E60-AE6B-C367FFE5A3D3} - System32\Tasks\Update Manager => C:\Program Files\Common Files\Lexware\Update Manager\LxUpdateManager.exe [2011-07-31] (Haufe-Lexware GmbH & Co. KG)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cef1e721a369a0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Uniblue DiskRescue 2009.job => C:\Program Files\Uniblue\DiskRescue\UBDiskRescue.exe
==================== Loaded Modules (whitelisted) =============
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2008-05-22 03:27 - 2011-08-19 02:09 - 00528384 _____ () C:\Program Files\Lexmark Toolbar\toolband.dll
2008-05-22 03:28 - 2011-08-19 02:25 - 00471040 _____ () C:\Program Files\Lexmark Toolbar\resource.dll
2008-07-29 17:52 - 2008-07-29 17:52 - 00227888 _____ () C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
2009-02-02 12:43 - 2009-02-02 12:43 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3009.0__4df5dcab8860d239\Framework.Utility.dll
2009-02-02 12:43 - 2009-02-02 12:43 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3009.0__3036420f80dd6947\Framework.Library.dll
2010-03-07 20:22 - 2009-03-30 07:37 - 00708608 _____ () C:\Program Files\Lexmark Pro700 Series\Epwizard.DLL
2010-03-07 20:22 - 2009-03-30 07:35 - 00159744 _____ () C:\Program Files\Lexmark Pro700 Series\customui.dll
2010-03-07 20:22 - 2009-03-30 07:35 - 00118784 _____ () C:\Program Files\Lexmark Pro700 Series\Eputil.DLL
2010-03-07 20:22 - 2009-03-30 07:35 - 00139264 _____ () C:\Program Files\Lexmark Pro700 Series\Imagutil.DLL
2010-03-07 20:22 - 2009-03-30 07:35 - 00061440 _____ () C:\Program Files\Lexmark Pro700 Series\Epfunct.DLL
2010-03-07 20:22 - 2009-06-23 06:09 - 02203648 _____ () C:\Program Files\Lexmark Pro700 Series\EPWizRes.dll
2010-03-07 20:22 - 2009-06-23 06:10 - 00045056 _____ () C:\Program Files\Lexmark Pro700 Series\epstring.dll
2010-03-07 20:22 - 2009-06-23 06:11 - 00102400 _____ () C:\Program Files\Lexmark Pro700 Series\EPOEMDll.dll
2010-03-07 20:22 - 2009-04-07 14:25 - 00409600 _____ () C:\Program Files\Lexmark Pro700 Series\iptk.dll
2010-03-07 20:22 - 2009-03-02 09:25 - 00151552 _____ () C:\Program Files\Lexmark Pro700 Series\lxeeptp.dll
2008-07-24 14:54 - 2008-07-24 14:54 - 00757760 _____ () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMediaLibrary.dll
2010-03-07 20:22 - 2010-04-01 11:23 - 00389120 _____ () C:\Program Files\Lexmark Pro700 Series\lxeescw.dll
2010-03-07 20:25 - 2009-05-27 07:16 - 00192512 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxeedatr.dll
2010-03-07 20:22 - 2010-04-01 11:24 - 01159168 _____ () C:\Program Files\Lexmark Pro700 Series\lxeeDRS.dll
2010-03-07 20:22 - 2009-03-10 00:43 - 00155648 _____ () C:\Program Files\Lexmark Pro700 Series\lxeecaps.dll
2010-03-07 20:10 - 2009-02-20 09:48 - 00299008 _____ () C:\Windows\system32\lxeesm.dll
2010-03-07 20:10 - 2009-04-28 08:56 - 00024064 _____ () C:\Windows\system32\lxeesmr.dll
2013-08-29 01:25 - 2013-08-29 01:25 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2013-12-25 14:42 - 2013-12-25 14:42 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-04-21 21:44 - 2013-04-21 21:44 - 00087952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2013-04-21 21:44 - 2013-04-21 21:44 - 01242952 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2009-06-14 08:13 - 2007-09-11 10:12 - 00475136 _____ () C:\Program Files\Acer\Acer VCM\AcerControl.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:05113FB9
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:5D7E5A8F
AlternateDataStreams: C:\ProgramData\Temp:C99F6ECA
AlternateDataStreams: C:\ProgramData\Temp:DAFD38AE
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:EEFF768F
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: isatap.{E8D12279-C9FE-4919-B3C2-94C4123E65E8}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: isatap.{E8D12279-C9FE-4919-B3C2-94C4123E65E8}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: isatap.home
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Microsoft-ISATAP-Adapter #4
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/07/2014 08:01:01 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts auf dem Volume (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Hr = 0x8000ffff).
Error: (02/07/2014 08:01:01 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x80040154.
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 08:01:01 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienst-Fehler: Die VSS-Ereignisklasse ist nicht registriert. Dadurch wird
verhindert, dass VSS-Generatoren Ereignisse empfangen. Dies kann auf einen Setupfehler
oder das Installationsprogramm bzw. Deinstallationsprogramm einer Anwendung zurückzuführen
sein.
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 06:38:29 PM) (Source: Application Error) (User: )
Description: Fehlerhafte Anwendung Explorer.EXE, Version 6.0.6002.18005, Zeitstempel 0x49e01da5, fehlerhaftes Modul NBRes-DEU.nls_unloaded, Version 0.0.0.0, Zeitstempel 0x48b76c5c, Ausnahmecode 0xc0000005, Fehleroffset 0x07c1251c,
Prozess-ID 0x7ac, Anwendungsstartzeit Explorer.EXE0.
Error: (02/07/2014 04:03:49 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts auf dem Volume (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Hr = 0x8000ffff).
Error: (02/07/2014 04:03:48 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x80040154.
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 04:03:48 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienst-Fehler: Die VSS-Ereignisklasse ist nicht registriert. Dadurch wird
verhindert, dass VSS-Generatoren Ereignisse empfangen. Dies kann auf einen Setupfehler
oder das Installationsprogramm bzw. Deinstallationsprogramm einer Anwendung zurückzuführen
sein.
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 03:00:25 AM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts auf dem Volume (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Hr = 0x8000ffff).
Error: (02/07/2014 03:00:24 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x80040154.
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 03:00:24 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienst-Fehler: Die VSS-Ereignisklasse ist nicht registriert. Dadurch wird
verhindert, dass VSS-Generatoren Ereignisse empfangen. Dies kann auf einen Setupfehler
oder das Installationsprogramm bzw. Deinstallationsprogramm einer Anwendung zurückzuführen
sein.
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
System errors:
=============
Error: (02/08/2014 03:54:38 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (02/08/2014 03:54:36 PM) (Source: Service Control Manager) (User: )
Description: Windows Media Player-NetzwerkfreigabedienstUPnP-Gerätehost%%1058
Error: (02/08/2014 03:53:29 PM) (Source: Service Control Manager) (User: )
Description: lxeeCATSCustConnectService%%1053
Error: (02/08/2014 03:53:29 PM) (Source: Service Control Manager) (User: )
Description: 30000lxeeCATSCustConnectService
Error: (02/08/2014 03:53:29 PM) (Source: Service Control Manager) (User: )
Description: Aspi32%%2
Error: (02/07/2014 08:03:08 PM) (Source: Service Control Manager) (User: )
Description: Netzmanager Infrastruktur Informationssystem Dienst150001Neustart des Diensts
Error: (02/07/2014 03:01:44 AM) (Source: Service Control Manager) (User: )
Description: Netzmanager Infrastruktur Informationssystem Dienst150001Neustart des Diensts
Error: (02/07/2014 03:01:17 AM) (Source: Service Control Manager) (User: )
Description: 30000Netzmanager Service
Error: (02/07/2014 03:00:46 AM) (Source: Service Control Manager) (User: )
Description: 30000Netzmanager Service
Error: (02/06/2014 10:14:43 PM) (Source: Service Control Manager) (User: )
Description: 30000Netzmanager Service
Microsoft Office Sessions:
=========================
Error: (02/07/2014 08:01:01 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x8000ffff
Error: (02/07/2014 08:01:01 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040154
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 08:01:01 PM) (Source: VSS)(User: )
Description: Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 06:38:29 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.0.6002.1800549e01da5NBRes-DEU.nls_unloaded0.0.0.048b76c5cc000000507c1251c7ac01cf22bd5605a57e
Error: (02/07/2014 04:03:49 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x8000ffff
Error: (02/07/2014 04:03:48 PM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040154
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 04:03:48 PM) (Source: VSS)(User: )
Description: Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 03:00:25 AM) (Source: System Restore)(User: )
Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x8000ffff
Error: (02/07/2014 03:00:24 AM) (Source: VSS)(User: )
Description: CoCreateInstance0x80040154
Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
Error: (02/07/2014 03:00:24 AM) (Source: VSS)(User: )
Description: Vorgang:
Generatordaten werden gesammelt
Asynchroner Vorgang wird ausgeführt
Kontext:
Ausführungskontext: Requestor
Aktueller Status: GatherWriterMetadata
CodeIntegrity Errors:
===================================
Date: 2013-07-22 21:35:04.411
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-22 21:35:03.879
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-22 21:28:34.355
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-07-22 21:28:33.853
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-01-03 23:08:50.063
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-01-03 23:08:49.499
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-01-03 23:05:35.967
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-01-03 23:05:35.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SysHook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 61%
Total physical RAM: 3068.03 MB
Available physical RAM: 1178.9 MB
Total Pagefile: 6044.12 MB
Available Pagefile: 3646.65 MB
Total Virtual: 2047.88 MB
Available Virtual: 1932.09 MB
==================== Drives ================================
Drive c: (ACER) (Fixed) (Total:144.04 GB) (Free:1.75 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:137.5 GB) (Free:126.45 GB) NTFS
Drive f: (SpanischMP3CD) (CDROM) (Total:0.27 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 4EBF5754)
Partition 1: (Not Active) - (Size=13 GB) - (Type=27)
Partition 2: (Active) - (Size=144 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=138 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=4 GB) - (Type=12)
==================== End Of Log ============================
|
|
10.02.2014, 17:08
| #37 |
| /// the machine /// TB-Ausbilder | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? welche Software von McAfee meinst du? Kommt die andere Meldung noch?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
10.02.2014, 22:07
| #38 |
| | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Die läuft irgendwie immer nur im Hintergrund (siehe Anlage). |
|
11.02.2014, 18:00
| #39 | |
| /// the machine /// TB-Ausbilder | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt?Zitat:
Revo Uninstaller - Download - Filepony
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
11.02.2014, 18:37
| #40 |
| | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Okay, hab ich gemacht. Und nun? Welche Sicherheitssoftware soll ich mir wo runterladen? |
|
12.02.2014, 17:47
| #41 |
| /// the machine /// TB-Ausbilder | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Du hast Avast, das reicht mit der WIndows Firewall. Jetzt kommen nach dem Aufräumen noch ein paar Tipps Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
13.02.2014, 09:58
| #42 |
| | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Okay, dann habe ich nur noch folgende abschließende Fragen: - Kann ich jetzt wieder Malwarebytes downloaden, oder ist das jetzt bei mir tabu? - Ich habe "automatische Updates" aktiviert. Als ich jetzt nachgesehen habe, waren da aber 17 (!!!) Updates, die auf meine Bestätigung gewartet haben. Wie kann das sein??? Liebe Grüße Claudia |
|
14.02.2014, 10:45
| #43 |
| /// the machine /// TB-Ausbilder | Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? Du musst unterscheiden zwischen automatisch laden und automatisch installieren. WIe genau ist die Einstellung bei dir? MBAM kannste versuchen, wenn es stresst nochmal im Safe Mode deinstallieren. Sollte aber eigetlich behoben sein.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Gebrauchten PC übernommen, ist der sauber und gut genug geschützt? |
| abgeschafft, alten, eurer, gebrauch, gebrauchte, geschützt, hilfe, liebe, lieben, mobogenie, mobogenie entfernen, pc sauber und gut geschützt?, prüfen, pup.optional.installcore, pup.optional.installcore.a, pup.optional.nextlive.a, pup.optional.pcspeedup.a, sauber |
Linear-Darstellung
