Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1

Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1


Plagegeister aller Art und deren Bekämpfung: Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 03.02.2014, 02:34   #1
BernieBerlin
 
Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1 - Standard

Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1


Hallo zusammen,
aufgrund einiger Merkwürdigkeiten - zum Beispiel Datumsanzeige im Jahr 6114 - hatte ich mich entschlossen von avast-Antivirus auf Kaspersky umzusatteln. Allerdings lässt mein System das nicht zu und bricht vor Fertigstellung der Installation ab. Es bleibt ein Bluescreen, der mitteilt, dass auf dem PC ein Fehler aufgetreten ist - siehe Foto in der Anlage. Was kann ich tun, um die Lage wieder in den Griff zu bekommen?
Viele Grüße
Bernhard
Miniaturansicht angehängter Grafiken
Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1-bluescreen.jpg  

Alt 03.02.2014, 06:19   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1 - Standard

Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 04.02.2014, 03:31   #3
BernieBerlin
 
Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1 - Standard

Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1



FRST Logfile:
[CODE]Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2014 04
Ran by Bernhard (administrator) on BB5 on 04-02-2014 03:02:50
Running from C:\Users\Bernhard\Downloads
Windows 8.1 Pro (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



ATTENTION: If processes are not listed WMI should be repaired.


==================== Processes (Whitelisted) =================



==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-31] (AVAST Software)
HKLM-x32\...\Run: [tvncontrol] - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-01-20] (Comodo Security Solutions, Inc.)
HKU\S-1-5-21-2643811067-3953391971-1405879879-1001\...\MountPoints2: G - "G:\pushinst.exe"
HKU\S-1-5-21-2643811067-3953391971-1405879879-1001\...\MountPoints2: {6e260e7e-4264-11e3-be79-1c7508326c57} - "G:\pushinst.exe"
Startup: C:\Users\Bernhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_60300788.lnk

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x08F2F2F42BA7CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: avast! EasyPass Toolbar Helper - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: BrowserHelper Class - {9A065C65-4EE7-4DDD-9918-F129089A894A} - C:\Program Files\Windows Home Server\WHSDeskBands.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: avast! EasyPass Toolbar Helper - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: FRITZ!Box Addon BHO - {C0C86BBE-9509-4296-8459-FDBFDAF4B673} - C:\Program Files (x86)\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM - Home Server Banner - {D73E76A3-F902-45BD-8FC8-95AE8E014671} - C:\Program Files\Windows Home Server\WHSDeskBands.dll (Microsoft Corporation)
Toolbar: HKLM - avast! EasyPass Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS3/contributeieplugin.dll (Adobe Systems Incorporated.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - avast! EasyPass Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
DPF: HKLM-x32 {0F2AAAE3-7E9E-4B64-AB5D-1CA24C6ACB9C} hxxp://mail.hwg-media.de/dwa85W.cab
DPF: HKLM-x32 {A4150320-98EC-4DB6-9BFB-EBF4B6FBEB16} hxxp://192.168.178.127/codebase/DVM_IPCam2.ocx
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{5FA9D77C-6B38-4B97-8CB1-CC430D4F98BE}: [NameServer]156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{7980AFE1-2747-4539-9353-E16E3DA8AE96}: [NameServer]156.154.70.25,156.154.71.25

FireFox:
========
FF ProfilePath: C:\Users\Bernhard\AppData\Roaming\Mozilla\Firefox\Profiles\viog8yyn.default
FF DefaultSearchEngine: Ask Search
FF SelectedSearchEngine: Ask Search
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Bernhard\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Bernhard\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Bernhard\AppData\Roaming\Mozilla\Firefox\Profiles\viog8yyn.default\searchplugins\ask-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: PrivDog - C:\Users\Bernhard\AppData\Roaming\Mozilla\Firefox\Profiles\viog8yyn.default\Extensions\PrivDog@AdTrustMedia.com [2014-02-04]
FF Extension: Bitdefender QuickScan - C:\Users\Bernhard\AppData\Roaming\Mozilla\Firefox\Profiles\viog8yyn.default\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2014-01-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-16]
FF HKLM-x32\...\Firefox\Extensions: [{22119944-ED35-4ab1-910B-E619EA06A115}] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Firefox
FF Extension: avast! EasyPass Toolbar for Firefox - C:\Program Files (x86)\Siber Systems\AI RoboForm\Firefox [2013-10-16]

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR Extension: (Google Docs) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-16]
CHR Extension: (Google Drive) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-16]
CHR Extension: (YouTube) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-16]
CHR Extension: (PrivDog) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja [2014-02-03]
CHR Extension: (Google-Suche) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-16]
CHR Extension: (avast! Online Security) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-02-03]
CHR Extension: (Google Wallet) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-16]
CHR Extension: (Google Mail) - C:\Users\Bernhard\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-16]
CHR HKLM-x32\...\Chrome\Extension: [cmaiofennmphjldldcpphcechfnnohja] - C:\Program Files (x86)\AdTrustMedia\PrivDog\PrivDog_chrome.crx [2014-02-03]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-01-31]

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-31] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-31] (AVAST Software)
S4 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin)
R2 CLPSLauncher; C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe [70352 2014-01-20] (Comodo Security Solutions, Inc.)
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6253640 2013-09-24] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [164056 2013-09-24] (COMODO)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2135232 2014-01-28] ()
R2 GeekBuddyRSP; C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe [2327248 2014-01-20] (Comodo Security Solutions, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WHSConnector; C:\Program Files\Windows Home Server\WHSConnector.exe [489840 2011-01-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R0 86912191; C:\Windows\system32\DRIVERS\86912191.sys [460888 2013-11-14] (Kaspersky Lab ZAO)
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [28184 2014-01-03] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [78648 2014-01-31] (AVAST Software)
R1 aswNdisFlt; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [440672 2014-01-31] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [92544 2013-10-16] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-16] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1038072 2014-01-31] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [421704 2014-01-31] (AVAST Software)
R3 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [80184 2014-01-31] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-03] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R1 CFRMD; C:\Windows\System32\DRIVERS\CFRMD.sys [40224 2013-05-07] (Windows (R) Win 7 DDK provider)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2013-09-24] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [715824 2013-09-24] (COMODO)
R1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [38072 2013-09-24] (COMODO)
S3 fwlanusbn; C:\Windows\system32\DRIVERS\fwlanusbn.sys [714368 2010-10-22] (AVM GmbH)
R1 HMD; C:\Windows\system32\DRIVERS\hmd.sys [14888 2013-10-07] ()
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [118400 2013-09-24] (COMODO)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Generic USB smartcard reader)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-04 03:02 - 2014-02-04 03:03 - 00017212 _____ () C:\Users\Bernhard\Downloads\FRST.txt
2014-02-04 03:02 - 2014-02-04 03:02 - 00000000 ____D () C:\FRST
2014-02-04 03:01 - 2014-02-04 03:01 - 02080256 _____ (Farbar) C:\Users\Bernhard\Downloads\FRST64.exe
2014-02-03 11:34 - 2014-02-03 23:07 - 00000000 ____D () C:\Users\Bernhard\Documents\Steuerbescheide
2014-02-03 11:08 - 2014-02-03 11:11 - 00000000 ____D () C:\Users\Bernhard\AdobeLicensingFilesBackup
2014-02-03 11:01 - 2014-02-03 11:02 - 00000000 ____D () C:\Users\Bernhard\Downloads\Acrobat-Update
2014-02-03 01:35 - 2014-02-03 01:35 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Bernhard\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-03 01:35 - 2014-02-03 01:35 - 00001129 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-03 01:35 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-02-03 01:29 - 2014-02-03 01:29 - 00259584 _____ (OldTimer Tools) C:\Users\Bernhard\Downloads\OTH.scr
2014-02-03 01:06 - 2014-02-03 01:07 - 00279800 _____ () C:\WINDOWS\Minidump\020314-32468-01.dmp
2014-02-03 00:57 - 2013-11-14 17:33 - 00460888 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\60300788.sys
2014-02-03 00:42 - 2014-02-03 00:42 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\Langmeier Software
2014-02-03 00:33 - 2014-02-03 00:42 - 00003030 _____ () C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-02-03 00:33 - 2014-02-03 00:33 - 00048392 _____ (COMODO CA Limited) C:\WINDOWS\SysWOW64\certsentry.dll
2014-02-03 00:33 - 2014-02-03 00:33 - 00001904 _____ () C:\Users\Public\Desktop\COMODO Internet Security.lnk
2014-02-03 00:33 - 2014-02-03 00:33 - 00000605 _____ () C:\Users\Public\Desktop\Gemeinsamer Bereich.lnk
2014-02-03 00:33 - 2014-02-03 00:33 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-02-03 00:32 - 2014-02-04 02:55 - 01234736 _____ () C:\WINDOWS\system32\Drivers\sfi.dat
2014-02-03 00:32 - 2014-02-03 00:33 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-02-03 00:31 - 2014-02-03 00:31 - 00000000 ____D () C:\ProgramData\Adtrustmedia
2014-02-03 00:31 - 2014-02-03 00:31 - 00000000 ____D () C:\Program Files\AdTrustMedia
2014-02-03 00:31 - 2014-02-03 00:31 - 00000000 ____D () C:\Program Files (x86)\AdTrustMedia
2014-02-03 00:30 - 2014-02-03 15:14 - 00002033 _____ () C:\Users\Public\Desktop\GeekBuddy.lnk
2014-02-03 00:30 - 2014-02-03 00:33 - 00057096 _____ (COMODO CA Limited) C:\WINDOWS\system32\certsentry.dll
2014-02-03 00:30 - 2014-02-03 00:32 - 00000000 ____D () C:\ProgramData\COMODO
2014-02-03 00:30 - 2014-02-03 00:32 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-02-03 00:30 - 2014-02-03 00:31 - 00000000 ____D () C:\Program Files\COMODO
2014-02-03 00:30 - 2014-02-03 00:30 - 00001140 _____ () C:\Users\Public\Desktop\Comodo Dragon.lnk
2014-02-03 00:30 - 2014-02-03 00:30 - 00000000 ____D () C:\Users\Bernhard\AppData\Local\Comodo
2014-02-03 00:30 - 2014-02-03 00:30 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-02-03 00:25 - 2014-02-03 00:25 - 00002048 _____ () C:\Users\Public\Desktop\AwayVir.lnk
2014-02-03 00:25 - 2014-02-03 00:25 - 00000000 ____D () C:\Program Files (x86)\Langmeier Software
2014-02-03 00:06 - 2014-02-03 00:06 - 00001124 _____ () C:\Users\Public\Desktop\Emsisoft HiJackFree.lnk
2014-02-03 00:06 - 2014-02-03 00:06 - 00000000 ____D () C:\Program Files (x86)\Emsisoft HiJackFree
2014-02-03 00:02 - 2014-02-03 00:02 - 00016350 _____ () C:\Users\Bernhard\Desktop\hijackthis.log
2014-02-02 23:58 - 2014-02-02 23:58 - 00000000 ____D () C:\interface
2014-02-02 23:47 - 2014-02-03 01:06 - 464612702 _____ () C:\WINDOWS\MEMORY.DMP
2014-02-02 23:47 - 2014-02-03 01:06 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-02 23:47 - 2014-02-02 23:47 - 00279800 _____ () C:\WINDOWS\Minidump\020214-41734-01.dmp
2014-02-02 23:43 - 2013-11-14 17:33 - 00460888 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\86912191.sys
2014-02-02 23:39 - 2014-02-02 23:39 - 00000000 ____D () C:\Program Files (x86)\stinger
2014-01-31 20:49 - 2014-01-31 21:07 - 00000000 ____D () C:\Users\Bernhard\Documents\VG Wort
2014-01-31 17:53 - 2014-01-31 17:53 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\AVAST Software
2014-01-31 15:36 - 2014-01-31 15:36 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\Nico Mak Computing
2014-01-31 15:35 - 2014-01-31 17:48 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector
2014-01-31 15:35 - 2014-01-31 15:35 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-01-31 15:29 - 2014-02-03 00:55 - 00000000 ____D () C:\Users\Bernhard\AppData\Local\WEKA DVD Interface
2014-01-31 14:29 - 2014-02-02 23:44 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-01-31 14:29 - 2014-01-31 14:29 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-01-29 13:21 - 2014-01-29 13:29 - 00000000 ____D () C:\Users\Bernhard\Documents\Telekom
2014-01-28 18:12 - 2014-01-28 18:23 - 914255640 _____ (Adobe Systems Incorporated) C:\Users\Bernhard\Downloads\Lightroom_5_LS11_win_5_3.exe
2014-01-27 09:03 - 2014-01-27 09:22 - 00000000 ____D () C:\Users\Bernhard\Documents\Vattenfall
2014-01-27 02:58 - 2014-01-27 02:58 - 04849549 _____ () C:\Users\Bernhard\Downloads\_Standard_.zip
2014-01-27 00:19 - 2014-01-27 00:19 - 00001861 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-01-26 10:30 - 2014-01-26 10:35 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2014-01-23 15:05 - 2014-01-23 15:05 - 00001799 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-23 15:04 - 2014-01-23 15:05 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-23 15:04 - 2014-01-23 15:05 - 00000000 ____D () C:\Program Files\iTunes
2014-01-23 15:04 - 2014-01-23 15:05 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-23 15:04 - 2014-01-23 15:04 - 00000000 ____D () C:\Program Files\iPod
2014-01-23 09:39 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2014-01-23 09:39 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2014-01-23 09:39 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2014-01-23 09:39 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2014-01-23 09:38 - 2014-01-23 09:39 - 00005327 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-23 09:37 - 2014-01-23 09:37 - 00921000 _____ (Oracle Corporation) C:\Users\Bernhard\Downloads\jxpiinstall.exe
2014-01-14 19:47 - 2013-11-27 16:36 - 03395920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-01-14 19:47 - 2013-11-27 12:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-01-14 19:47 - 2013-11-27 11:34 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-01-14 19:47 - 2013-11-27 10:54 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-01-14 19:47 - 2013-11-27 09:48 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-14 19:47 - 2013-11-27 09:45 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-01-14 19:47 - 2013-11-27 09:40 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-14 19:47 - 2013-11-27 09:38 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-01-14 19:47 - 2013-11-27 09:17 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-14 19:47 - 2013-11-27 09:12 - 00848384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-14 19:46 - 2013-12-09 01:15 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-01-10 11:49 - 2014-01-10 11:49 - 00000000 ____D () C:\ProgramData\APN
2014-01-10 11:48 - 2014-01-23 09:39 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-10 11:47 - 2014-01-23 09:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-10 11:47 - 2014-01-10 11:47 - 00000000 ____D () C:\ProgramData\Sun
2014-01-06 07:18 - 2014-01-06 07:20 - 27494900 _____ () C:\Users\Bernhard\Downloads\Abflughalle 2.tif
2014-01-05 21:34 - 2014-01-05 21:34 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-01-05 21:34 - 2014-01-05 21:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-01-05 21:25 - 2014-01-05 21:25 - 13079688 _____ (Microsoft Corporation) C:\Users\Bernhard\Downloads\Silverlight_x64.exe

==================== One Month Modified Files and Folders =======

2099-01-30 21:34 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-04 03:03 - 2014-02-04 03:02 - 00017212 _____ () C:\Users\Bernhard\Downloads\FRST.txt
2014-02-04 03:02 - 2014-02-04 03:02 - 00000000 ____D () C:\FRST
2014-02-04 03:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-04 03:01 - 2014-02-04 03:01 - 02080256 _____ (Farbar) C:\Users\Bernhard\Downloads\FRST64.exe
2014-02-04 03:01 - 2013-04-07 13:00 - 00000000 ____D () C:\Users\Bernhard\Documents\Outlook-Dateien
2014-02-04 02:55 - 2014-02-03 00:32 - 01234736 _____ () C:\WINDOWS\system32\Drivers\sfi.dat
2014-02-04 02:20 - 2013-12-10 22:10 - 00001140 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2643811067-3953391971-1405879879-1001UA.job
2014-02-04 02:19 - 2013-10-04 16:53 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-04 02:12 - 2013-10-16 12:51 - 00001122 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-04 01:43 - 2013-10-18 00:51 - 01813618 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-04 00:00 - 2013-10-29 15:04 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\ClassicShell
2014-02-03 23:26 - 2013-10-24 03:22 - 00000000 ____D () C:\Users\Bernhard\Documents\Bewerbung2013
2014-02-03 23:07 - 2014-02-03 11:34 - 00000000 ____D () C:\Users\Bernhard\Documents\Steuerbescheide
2014-02-03 23:06 - 2013-04-06 17:45 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2643811067-3953391971-1405879879-1001
2014-02-03 20:15 - 2013-10-16 12:52 - 00002199 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-03 19:11 - 2013-11-10 19:40 - 00000000 ____D () C:\WINDOWS\system32\(SYSTEM RESERVED)
2014-02-03 15:14 - 2014-02-03 00:30 - 00002033 _____ () C:\Users\Public\Desktop\GeekBuddy.lnk
2014-02-03 11:12 - 2013-04-07 23:00 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-02-03 11:11 - 2014-02-03 11:08 - 00000000 ____D () C:\Users\Bernhard\AdobeLicensingFilesBackup
2014-02-03 11:08 - 2013-10-18 00:31 - 00000000 ____D () C:\Users\Bernhard
2014-02-03 11:02 - 2014-02-03 11:01 - 00000000 ____D () C:\Users\Bernhard\Downloads\Acrobat-Update
2014-02-03 10:35 - 2013-10-18 08:05 - 00000000 __RDO () C:\Users\Bernhard\SkyDrive
2014-02-03 10:15 - 2013-10-02 13:58 - 00000000 ____D () C:\Users\Bernhard\Documents\Convention_International
2014-02-03 01:35 - 2014-02-03 01:35 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Bernhard\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-03 01:35 - 2014-02-03 01:35 - 00001129 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-03 01:35 - 2014-01-02 08:36 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-03 01:29 - 2014-02-03 01:29 - 00259584 _____ (OldTimer Tools) C:\Users\Bernhard\Downloads\OTH.scr
2014-02-03 01:09 - 2013-10-16 12:50 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-02-03 01:07 - 2014-02-03 01:06 - 00279800 _____ () C:\WINDOWS\Minidump\020314-32468-01.dmp
2014-02-03 01:07 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-03 01:06 - 2014-02-02 23:47 - 464612702 _____ () C:\WINDOWS\MEMORY.DMP
2014-02-03 01:06 - 2014-02-02 23:47 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-03 00:57 - 2013-04-06 17:38 - 00000000 ___RD () C:\Users\Bernhard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-03 00:55 - 2014-01-31 15:29 - 00000000 ____D () C:\Users\Bernhard\AppData\Local\WEKA DVD Interface
2014-02-03 00:49 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-03 00:43 - 2013-10-16 12:51 - 00001118 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-03 00:43 - 2013-09-29 20:04 - 00593992 _____ () C:\WINDOWS\PFRO.log
2014-02-03 00:42 - 2014-02-03 00:42 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\Langmeier Software
2014-02-03 00:42 - 2014-02-03 00:33 - 00003030 _____ () C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2014-02-03 00:42 - 2013-10-16 12:51 - 00003864 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-03 00:42 - 2013-08-22 14:25 - 00000761 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.old
2014-02-03 00:33 - 2014-02-03 00:33 - 00048392 _____ (COMODO CA Limited) C:\WINDOWS\SysWOW64\certsentry.dll
2014-02-03 00:33 - 2014-02-03 00:33 - 00001904 _____ () C:\Users\Public\Desktop\COMODO Internet Security.lnk
2014-02-03 00:33 - 2014-02-03 00:33 - 00000605 _____ () C:\Users\Public\Desktop\Gemeinsamer Bereich.lnk
2014-02-03 00:33 - 2014-02-03 00:33 - 00000000 ____D () C:\WINDOWS\System32\Tasks\COMODO
2014-02-03 00:33 - 2014-02-03 00:32 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-02-03 00:33 - 2014-02-03 00:30 - 00057096 _____ (COMODO CA Limited) C:\WINDOWS\system32\certsentry.dll
2014-02-03 00:33 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated
2014-02-03 00:32 - 2014-02-03 00:30 - 00000000 ____D () C:\ProgramData\COMODO
2014-02-03 00:32 - 2014-02-03 00:30 - 00000000 ____D () C:\Program Files (x86)\Comodo
2014-02-03 00:31 - 2014-02-03 00:31 - 00000000 ____D () C:\ProgramData\Adtrustmedia
2014-02-03 00:31 - 2014-02-03 00:31 - 00000000 ____D () C:\Program Files\AdTrustMedia
2014-02-03 00:31 - 2014-02-03 00:31 - 00000000 ____D () C:\Program Files (x86)\AdTrustMedia
2014-02-03 00:31 - 2014-02-03 00:30 - 00000000 ____D () C:\Program Files\COMODO
2014-02-03 00:30 - 2014-02-03 00:30 - 00001140 _____ () C:\Users\Public\Desktop\Comodo Dragon.lnk
2014-02-03 00:30 - 2014-02-03 00:30 - 00000000 ____D () C:\Users\Bernhard\AppData\Local\Comodo
2014-02-03 00:30 - 2014-02-03 00:30 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-02-03 00:25 - 2014-02-03 00:25 - 00002048 _____ () C:\Users\Public\Desktop\AwayVir.lnk
2014-02-03 00:25 - 2014-02-03 00:25 - 00000000 ____D () C:\Program Files (x86)\Langmeier Software
2014-02-03 00:06 - 2014-02-03 00:06 - 00001124 _____ () C:\Users\Public\Desktop\Emsisoft HiJackFree.lnk
2014-02-03 00:06 - 2014-02-03 00:06 - 00000000 ____D () C:\Program Files (x86)\Emsisoft HiJackFree
2014-02-03 00:02 - 2014-02-03 00:02 - 00016350 _____ () C:\Users\Bernhard\Desktop\hijackthis.log
2014-02-02 23:58 - 2014-02-02 23:58 - 00000000 ____D () C:\interface
2014-02-02 23:47 - 2014-02-02 23:47 - 00279800 _____ () C:\WINDOWS\Minidump\020214-41734-01.dmp
2014-02-02 23:44 - 2014-01-31 14:29 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-02-02 23:39 - 2014-02-02 23:39 - 00000000 ____D () C:\Program Files (x86)\stinger
2014-01-31 21:07 - 2014-01-31 20:49 - 00000000 ____D () C:\Users\Bernhard\Documents\VG Wort
2014-01-31 19:49 - 2013-10-16 16:13 - 00000000 ____D () C:\Users\Bernhard\Documents\My Avast EasyPass Data
2014-01-31 18:18 - 2014-01-03 15:39 - 00080184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
2014-01-31 18:18 - 2014-01-03 15:39 - 00002052 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-01-31 18:18 - 2014-01-03 15:39 - 00001992 _____ () C:\Users\Public\Desktop\avast! Internet Security.lnk
2014-01-31 18:18 - 2013-10-16 12:51 - 00421704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-01-31 18:18 - 2013-10-16 12:50 - 01038072 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-31 18:18 - 2013-10-16 12:50 - 00334136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-31 18:18 - 2013-10-16 12:50 - 00078648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-31 18:18 - 2013-10-16 12:49 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-31 18:17 - 2014-01-03 15:38 - 00440672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys
2014-01-31 17:58 - 2013-10-18 01:11 - 00003922 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{618AF40B-09D8-40F1-8DDB-CC172D4E0FE7}
2014-01-31 17:53 - 2014-01-31 17:53 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\AVAST Software
2014-01-31 17:48 - 2014-01-31 15:35 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector
2014-01-31 17:48 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-01-31 17:47 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\ELAMBKUP
2014-01-31 17:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\registration
2014-01-31 17:34 - 2013-10-16 12:48 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-01-31 17:33 - 2013-10-20 16:14 - 00000000 ____D () C:\Program Files\Adobe
2014-01-31 17:33 - 2013-10-16 12:49 - 00000000 ____D () C:\Program Files\AVAST Software
2014-01-31 15:36 - 2014-01-31 15:36 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\Nico Mak Computing
2014-01-31 15:35 - 2014-01-31 15:35 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-01-31 14:30 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-01-31 14:29 - 2014-01-31 14:29 - 00000000 ____D () C:\Program Files (x86)\Kaspersky Lab
2014-01-30 08:28 - 2013-08-22 15:46 - 00324318 _____ () C:\WINDOWS\setupact.log
2014-01-29 21:19 - 2013-11-21 04:11 - 00000000 ____D () C:\Users\Bernhard\Documents\Südostkurier
2014-01-29 13:29 - 2014-01-29 13:21 - 00000000 ____D () C:\Users\Bernhard\Documents\Telekom
2014-01-29 09:20 - 2013-12-10 22:09 - 00001088 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2643811067-3953391971-1405879879-1001Core.job
2014-01-29 08:49 - 2013-10-20 19:19 - 00000000 ____D () C:\Users\Bernhard\Desktop\Adobe
2014-01-28 18:23 - 2014-01-28 18:12 - 914255640 _____ (Adobe Systems Incorporated) C:\Users\Bernhard\Downloads\Lightroom_5_LS11_win_5_3.exe
2014-01-28 18:14 - 2013-09-30 05:14 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-28 18:14 - 2013-09-30 04:56 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-01-28 18:14 - 2013-09-30 04:56 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-01-27 09:22 - 2014-01-27 09:03 - 00000000 ____D () C:\Users\Bernhard\Documents\Vattenfall
2014-01-27 02:58 - 2014-01-27 02:58 - 04849549 _____ () C:\Users\Bernhard\Downloads\_Standard_.zip
2014-01-27 00:20 - 2013-04-06 17:37 - 00000000 ____D () C:\Users\Bernhard\AppData\Roaming\Adobe
2014-01-27 00:19 - 2014-01-27 00:19 - 00001861 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-01-27 00:19 - 2013-04-07 23:55 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-01-27 00:15 - 2013-04-07 20:03 - 00000000 ____D () C:\Users\Bernhard\AppData\Local\Adobe
2014-01-26 10:35 - 2014-01-26 10:30 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2014-01-23 15:05 - 2014-01-23 15:05 - 00001799 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-23 15:05 - 2014-01-23 15:04 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-23 15:05 - 2014-01-23 15:04 - 00000000 ____D () C:\Program Files\iTunes
2014-01-23 15:05 - 2014-01-23 15:04 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-23 15:04 - 2014-01-23 15:04 - 00000000 ____D () C:\Program Files\iPod
2014-01-23 14:58 - 2013-12-04 22:12 - 00000000 ____D () C:\ProgramData\Apple
2014-01-23 09:39 - 2014-01-23 09:38 - 00005327 _____ () C:\WINDOWS\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-23 09:39 - 2014-01-10 11:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-23 09:39 - 2014-01-10 11:47 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-23 09:37 - 2014-01-23 09:37 - 00921000 _____ (Oracle Corporation) C:\Users\Bernhard\Downloads\jxpiinstall.exe
2014-01-18 11:32 - 2013-10-17 17:07 - 00000000 ____D () C:\Users\Bernhard\Documents\DxO
2014-01-18 11:15 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-01-14 20:53 - 2013-08-25 21:41 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-01-14 20:51 - 2013-04-07 19:41 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-10 11:49 - 2014-01-10 11:49 - 00000000 ____D () C:\ProgramData\APN
2014-01-10 11:47 - 2014-01-10 11:47 - 00000000 ____D () C:\ProgramData\Sun
2014-01-08 15:39 - 2014-01-03 15:38 - 00439648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswndisflt.sys.1391187511
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-06 07:20 - 2014-01-06 07:18 - 27494900 _____ () C:\Users\Bernhard\Downloads\Abflughalle 2.tif
2014-01-05 21:34 - 2014-01-05 21:34 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-01-05 21:34 - 2014-01-05 21:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-01-05 21:25 - 2014-01-05 21:25 - 13079688 _____ (Microsoft Corporation) C:\Users\Bernhard\Downloads\Silverlight_x64.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-03 02:08

FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-02-2014 04
Ran by Bernhard at 2014-02-04 03:03:59
Running from C:\Users\Bernhard\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================


==================== Installed Programs ======================

Adobe Acrobat 9 Pro - English, Français, Deutsch (x32 Version: 9.2.0 - Adobe Systems) Hidden
Adobe Acrobat 9.2.0 - CPSID_50026 (x32 Version:  - Adobe Systems Incorporated)
Adobe After Effects CS3 (x32 Version: 8 - Adobe Systems Incorporated) Hidden
Adobe After Effects CS3 Presets (x32 Version: 8 - Adobe Systems Incorporated) Hidden
Adobe After Effects CS3 Template Projects & Footage (x32 Version: 8 - Adobe Systems Incorporated) Hidden
Adobe After Effects CS3 Third Party Content (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS3 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS3 (x32 Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Bridge Start Meeting (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe BridgeTalk Plugin CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Camera Raw 4.0 (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color Common Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Recommended Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Extra Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Contribute CS3 (x32 Version: 4.1 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 3 Master Collection hinzufügen oder entfernen (x32 Version: 1.0 - Adobe Systems Incorporated)
Adobe Default Language CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS3 (x32 Version: 9 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 Codecs (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Encore CS3 Library (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit 2 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS3 (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS3 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS3 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (x32 Version: 9.0.45.0 - Adobe Systems, Inc.)
Adobe Flash Video Encoder (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fonts All (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Help Viewer CS3 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS3 (x32 Version: 13.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS3 Icon Handler (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS3 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe MotionPicture Color Files (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files (x32 Version: 8.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS3 (x32 Version: 10 - Adobe Systems Incorporated) Hidden
Adobe Photoshop Lightroom 5.2 64-bit (Version: 5.2.1 - Adobe)
Adobe Premiere Pro CS3 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 Functional Content (x32 Version: 8 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CS3 Third Party Content (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Setup (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS3 (x32 Version: 0.1 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 Codecs (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Soundbooth CS3 Scores (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Stock Photos CS3 (x32 Version: 1.5 - Adobe Systems Incorporated) Hidden
Adobe Type Support (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS3 (x32 Version: 5.1.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Client (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS3 Server (x32 Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Video Profiles (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WAS CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP DVA Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS3 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
AHV content for Acrobat and Flash (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Apple Application Support (x32 Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
avast! EasyPass (x32 Version: 7-9-1-129 - AVAST Software)
avast! Internet Security (x32 Version: 9.0.2013 - Avast Software)
AVM FRITZ!Box AddOn (IE) (x32 Version: 1.7.0 - AVM Berlin)
AVM FRITZ!WLAN (x32 Version:  - AVM Berlin)
AwayVir (x32 Version: 2.00 - Langmeier Software GmbH)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-6490CW (x32 Version: 2.0.0.0 - Brother Industries, Ltd.)
Brother MFL-Pro Suite MFC-J6910DW (x32 Version: 2.0.0.0 - Brother Industries, Ltd.)
Classic Shell (Version: 4.0.2 - IvoSoft)
Comodo Dragon (x32 Version: 31.1.0.0 - COMODO)
COMODO Internet Security Premium (Version: 6.3.32439.2937 - COMODO Security Solutions Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32 Version:  - Microsoft)
DxO Optics Pro 8 (Version: 8.3.2 - DxO Labs)
DxO ViewPoint 2 (Version: 2.0.76.0 - DxO Labs)
Emsisoft HiJackFree 4.5 (x32 Version: 4.5 - Emsisoft GmbH)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GeekBuddy (Version: 4.10.86 - Comodo Security Solutions Inc)
Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
HP Data Vault 3.1 (x64) (Version: 3.1.1.34819 - Ihr Firmenname)
HP Update (x32 Version: 4.000.011.006 - Hewlett-Packard)
IP Camera (x32 Version:  - )
IPCamClient (x32 Version: 1.0.0.10 - )
iTunes (Version: 11.1.4.62 - Apple Inc.)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (x32 Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (x32 Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
Music Manager (HKCU Version:  - Google, Inc.)
Notepad++ (x32 Version: 6.5.3 - Notepad++ Team)
Nuance PDF Viewer Plus (x32 Version: 5.30.3290 - Nuance Communications, Inc)
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PrivDog (x32 Version: 1.5.0.14 - privdog.com)
QuickTime (x32 Version: 7.74.80.86 - Apple Inc.)
Scansoft PDF Professional (x32 Version:  - ) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (x32 Version:  - Microsoft)
VLC media player 2.0.7 (x32 Version: 2.0.7 - VideoLAN)
Windows Home Server Toolkit 1.1 (Version: 6.0.1800.0 - Microsoft Corporation)
Windows Home Server-Connector (Version: 6.0.3436.0 - Microsoft Corporation)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2013-08-22 14:25 - 2014-02-03 00:46 - 00000761 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {1B477944-1B45-455E-8DA0-183A544BAF3D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2643811067-3953391971-1405879879-1001UA => C:\Users\Bernhard\AppData\Local\Google\Update\GoogleUpdate.exe [2013-12-10] (Google Inc.)
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {49DAC7F7-76C3-45C8-84AF-2DBAB180CF19} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-09-24] (COMODO)
Task: {51B494C5-7BE3-45B8-88A5-231B54AC6A0E} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-09-24] (COMODO)
Task: {657C4BE0-8517-4E1B-B670-8DAE160582ED} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {73EC036C-D638-42F1-BEB6-C6C9784E81C4} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [2014-01-03] (Siber Systems)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {88D1D683-5500-421E-A061-BB24B0C9F123} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2643811067-3953391971-1405879879-1001Core => C:\Users\Bernhard\AppData\Local\Google\Update\GoogleUpdate.exe [2013-12-10] (Google Inc.)
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9DF3C91C-52F0-4CF7-AF53-3EE8DAA7A257} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-09-24] (COMODO)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A894491C-1ACB-4426-9C1A-A87EC1BB4F58} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-01-14] (Microsoft Corporation)
Task: {AEA45D41-1FC5-4FCB-AA8B-F243EE2B8893} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-31] (AVAST Software)
Task: {BBD7372B-1B69-438A-98BF-5A964B85194D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C37A785F-D03E-430D-B168-1D793C7ADD46} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-16] (Google Inc.)
Task: {C61A1D79-7CBA-4F30-9E51-4E650CA9E474} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-09-24] (COMODO)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DDD9D2E8-19D0-4428-B906-92081F6F887B} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-09-24] (COMODO)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F387DD52-2164-4071-A4AC-2DBE2846832E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-16] (Google Inc.)
Task: {F7D9DEA5-749F-499A-9A00-5B4C532E2171} - System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3} => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [2013-09-24] (COMODO)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2643811067-3953391971-1405879879-1001Core.job => C:\Users\Bernhard\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2643811067-3953391971-1405879879-1001UA.job => C:\Users\Bernhard\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============


==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\Bernhard\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Could not list Devices. Check WMI.


==================== Event log errors: =========================

Could not start eventlog service, could not read events.

Der angeforderte Dienst wurde bereits gestartet.

Sie erhalten weitere Hilfe, wenn Sie NET HELPMSG 2182 eingeben.


==================== Memory info =========================== 

Percentage of memory in use: 65%
Total physical RAM: 3958.7 MB
Available physical RAM: 1354.36 MB
Total Pagefile: 7926.7 MB
Available Pagefile: 4471.99 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:222.08 GB) (Free:66.64 GB) NTFS
Drive d: (DATA) (Fixed) (Total:222.1 GB) (Free:28.4 GB) NTFS
Drive e: (4FACHUSB) (CDROM) (Total:6.67 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 9AAD3969)
Partition 1: (Not Active) - (Size=21 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=222 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=222 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---

--- --- ---
__________________
Alt 04.02.2014, 21:19   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1 - Standard

Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1


Hi,

ich zähle 3 Antivirenprogramme, davon 2 komplette Suites. Kein Wunder wenn die Kiste abraucht.

Alles deinstallieren was Security ist, plus die Uninstall-Tools der jeweiligen Hersteller. Dann:

Downloade dir bitte Windows Repair (All In One) von hier.
  • Installiere das Programm. Starte es, nachdem die Installation abgeschlossen wurde.
  • Klicke auf Step 2 und drücke unter Check Disk auf Do It.

  • Wenn der Vorgang abgeschlossen ist, klicke auf Step 3 und drücke unter System File Check auf Do It.

  • Nachdem der Vorgang abgeschlossen ist, klicke auf Start Repairs, wähle den Advanced Mode und drücke Start.

  • Gehe bitte sicher, dass die Kästchen wie unten zu sehen angehakt sind. Bitte hake zusätzlich noch Set Windows Services to Default Startup an.
  • Hake Restart System when Finished an.
  • Drücke Start.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1
abbruch, bluescree, bluescreen, bricht, einiger, ellung, fehler, fehlermeldung, foto, griff, hallo zusammen, installation, kaspersky, merkwürdigkeiten, system, win, win8.1, zusammen


« Awesomehp.com und Internet geht nicht mehr | Lollipop Virus doch nicht gelöscht? Weitere Viren... »


Ähnliche Themen: Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1


  1. Kaspersky meldet Trojan.Win32.Generic nach Installation von OpenVPN
    Plagegeister aller Art und deren Bekämpfung - 18.10.2015 (13)
  2. Win8: Malwareflut verlangsamt und schädigt System! Kaspersky nach Neustart verschwunden
    Log-Analyse und Auswertung - 22.07.2015 (22)
  3. Win8/ Firefox voller Werbung nach Avira installation/ evtl. mehr?
    Plagegeister aller Art und deren Bekämpfung - 06.12.2014 (14)
  4. Bluescreen gegen Ende von Windows7 Installation, Abbruch der Installation
    Alles rund um Windows - 27.05.2014 (2)
  5. Windows 8.1 Abbruch bei Installation und automatischer Reparatur.
    Alles rund um Windows - 06.05.2014 (1)
  6. Win8: Nach Trojanerbefall bei Antivir Fehlermeldung C:\swapfile.sys konnte nicht geöffnet werden
    Log-Analyse und Auswertung - 22.04.2014 (14)
  7. Probleme mit searchgol nach deltatoolbar nach installation von imgburn (Win8-x64-chrome)
    Log-Analyse und Auswertung - 31.10.2013 (29)
  8. Windows 7 64 Bit: Neustartschleife bei Kaspersky-Installation,442 infizierte Dateien laut MBAM
    Log-Analyse und Auswertung - 23.09.2013 (7)
  9. Win8 (sonyvaio) "nach" GVU-Virus Rundll-Fehlermeldung - wie bereinige ich meinen Rechner?
    Plagegeister aller Art und deren Bekämpfung - 08.08.2013 (13)
  10. Fehlermeldung: wgsdgsdgdsgsd.exe -- Eintrag H1N1 fehlt (Win8)
    Plagegeister aller Art und deren Bekämpfung - 12.01.2013 (13)
  11. Load.exe gibt mir eine Fehlermeldung bei der Installation
    Alles rund um Windows - 27.01.2011 (1)
  12. Fehlermeldung bei Installation
    Alles rund um Windows - 08.09.2010 (0)
  13. Pc friert ständig ein nach installation kaspersky
    Antiviren-, Firewall- und andere Schutzprogramme - 12.07.2010 (1)
  14. Brauche Hilfe bei Installation von Kaspersky Internet Security 7.0
    Antiviren-, Firewall- und andere Schutzprogramme - 16.12.2007 (7)
  15. Fehlermeldung nach SP 2 Installation, PC fährt fest
    Alles rund um Windows - 12.07.2005 (13)
  16. Fehlermeldung Bei der Installation SP2
    Alles rund um Windows - 09.02.2005 (3)
  17. Fehlermeldung bei Installation AD-AWARE
    Antiviren-, Firewall- und andere Schutzprogramme - 05.01.2005 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1 - Hallo zusammen, aufgrund einiger Merkwürdigkeiten - zum Beispiel Datumsanzeige im Jahr 6114 - hatte ich mich entschlossen von avast-Antivirus auf Kaspersky umzusatteln. Allerdings lässt mein System das nicht zu und - Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1...
Archiv
Du betrachtest: Fehlermeldung und Abbruch bei Kaspersky-Installation auf Win8.1 auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55