|
Log-Analyse und Auswertung: Meine Maus spinnt!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
17.04.2014, 23:31 | #1 |
| Meine Maus spinnt! Hallo! Wenn ich mit der Maus z.B. einen Text markieren möchte, verspringt immer wieder die Markierung des Textes. Dann springt die Markierung von der Stelle weg, wo ich angefangen hatte und fängt mittendrin neu an, als wenn ich die Maustaste losgelassen hätte oder zwischendrin geklickt hätte - was ich aber nicht gemacht habe. Und wenn ich mit der Maus, einen Button einfach anklicken will, folgt oft keine Reaktion, sondern erst nach dem 2., 3. oder 4. Mal erst. So ähnlich verhält es sich auch wenn ich einen Doppelklick machen will, um etwas zu aktivieren. Dann muss ich auch immer wieder mehrfache Doppelklicks machen, bis es endlich klappt. Dann funktioniert auch die Funktion der rechten Maustaste nicht einwandfrei, so dass ich zum Öffnen des Kontextmenüs auch oft mehrmals drücken muss, bis es sich öffnet. Was kann das für ein Problem sein? |
18.04.2014, 09:20 | #2 |
/// the machine /// TB-Ausbilder | Meine Maus spinnt! hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
18.04.2014, 18:25 | #3 |
| Meine Maus spinnt! Hallo Schrauber, danke!
__________________Hier die Scan-Ergebnisse: FRST - Editor: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-04-2014 01 Ran by Friedrich (administrator) on MACK327 on 18-04-2014 19:19:37 Running from C:\Users\Friedrich\Downloads Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Preventon Technologies Limited) C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVScanningService.exe (Preventon Technologies Limited) C:\Program Files (x86)\Common Files\Common Toolkit Suite\AVEngine\AVWatchService.exe (Acer Incorporated) C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Acer Group) C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe (Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe (Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office10\WINWORD.EXE (Microsoft® Corporation) C:\Program Files (x86)\Microsoft Works\MSWorks.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe ==================== Registry (Whitelisted) ================== HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG) HKU\S-1-5-21-3993219044-2753971007-1908284826-1000\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-04-19] (Nokia) HKU\S-1-5-21-3993219044-2753971007-1908284826-1000\...\Run: [Microsoft Works Update Detection] => C:\Program Files (x86)\Microsoft Works\WkDetect.exe ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:tabs HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://emachines.msn.com SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Friedrich\AppData\Roaming\Mozilla\Firefox\Profiles\h89tyrh8.default FF user.js: detected! => C:\Users\Friedrich\AppData\Roaming\Mozilla\Firefox\Profiles\h89tyrh8.default\user.js FF Homepage: https://twitter.com/ FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\Friedrich\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Settings Manager - C:\Users\Friedrich\AppData\Roaming\Mozilla\Firefox\Profiles\h89tyrh8.default\Extensions\{19D73812-1701-1B61-CBA2-12A70C87A0B0} [2014-04-18] FF Extension: Adblock Plus - C:\Users\Friedrich\AppData\Roaming\Mozilla\Firefox\Profiles\h89tyrh8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-10-24] FF Extension: BonanzaDeals - C:\Users\Friedrich\AppData\Roaming\Mozilla\Firefox\Profiles\h89tyrh8.default\Extensions\{f9d03c26-0575-497e-821d-f7956d23e0ca}.xpi [2013-12-18] Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Extension: (Google Wallet) - C:\Users\Friedrich\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-25] ==================== Services (Whitelisted) ================= R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG) R2 AV Engine Scanning Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVScanningService.exe [1246744 2012-09-17] (Preventon Technologies Limited) R2 AV Watch Service; C:/Program Files (x86)/Common Files/Common Toolkit Suite/AVEngine/AVWatchService.exe [468064 2012-09-17] (Preventon Technologies Limited) S4 Common Toolkit 2; C:\Program Files (x86)\Common Files\Common Toolkit Suite\Tools\x64\CommonToolkit2.exe [338432 2013-04-08] (SPAMfighter ApS) S3 GameConsoleService; C:\Program Files (x86)\eMachines Games\eMachines Game Console\GameConsoleService.exe [246520 2010-04-04] (WildTangent, Inc.) R2 GREGService; C:\Program Files (x86)\eMachines\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2138936 2014-03-20] (TuneUp Software) R2 Updater Service; C:\Program Files\eMachines\eMachines Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group) S2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [X] S3 NisSrv; "c:\Program Files\Microsoft Security Client\NisSrv.exe" [X] ==================== Drivers (Whitelisted) ==================== S3 AVFSFilter; C:\Windows\System32\DRIVERS\avfsfilter.sys [13720 2012-09-17] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-01] (Avira Operations GmbH & Co. KG) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-18] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [228768 2012-08-30] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [128456 2012-08-30] (Microsoft Corporation) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-09-18] (TuneUp Software) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-04-18 19:19 - 2014-04-18 19:19 - 00012642 _____ () C:\Users\Friedrich\Downloads\FRST.txt 2014-04-18 19:18 - 2014-04-18 19:19 - 00000000 ____D () C:\FRST 2014-04-18 19:17 - 2014-04-18 19:17 - 02158592 _____ (Farbar) C:\Users\Friedrich\Downloads\FRST64.exe 2014-04-18 03:36 - 2014-04-18 15:01 - 00000112 _____ () C:\Windows\setupact.log 2014-04-18 03:36 - 2014-04-18 03:36 - 00000950 _____ () C:\Windows\PFRO.log 2014-04-18 03:36 - 2014-04-18 03:36 - 00000000 _____ () C:\Windows\setuperr.log 2014-04-18 03:25 - 2014-04-18 19:13 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-04-18 03:25 - 2014-04-18 03:25 - 00001115 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-04-18 03:25 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-04-18 03:25 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-04-18 03:25 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-04-18 03:24 - 2014-04-18 03:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Friedrich\Downloads\mbam-setup-2.0.1.1004.exe 2014-04-18 01:59 - 2014-04-18 02:34 - 00000000 ____D () C:\Program Files (x86)\Settings Manager 2014-04-18 01:58 - 2014-04-18 03:25 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-04-18 01:57 - 2014-04-18 01:57 - 00109120 _____ () C:\Users\Friedrich\AppData\Local\GDIPFONTCACHEV1.DAT 2014-04-17 02:32 - 2014-04-17 02:32 - 00000000 __SHD () C:\Users\Friedrich\AppData\Local\EmieUserList 2014-04-17 02:32 - 2014-04-17 02:32 - 00000000 __SHD () C:\Users\Friedrich\AppData\Local\EmieSiteList 2014-04-12 10:58 - 2014-04-12 10:58 - 00410824 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-04-12 03:57 - 2014-04-12 03:58 - 21407864 _____ (Simply Super Software ) C:\Users\Friedrich\Downloads\trjsetup690.exe 2014-04-12 03:51 - 2014-04-12 03:52 - 02209056 _____ () C:\Users\Friedrich\Downloads\avira-eu-cleaner_de.exe 2014-04-12 03:45 - 2014-04-12 03:45 - 00000000 ____D () C:\Users\Friedrich\AppData\Local\TuneUp Software 2014-04-09 00:49 - 2014-03-31 03:16 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-04-09 00:49 - 2014-03-31 03:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-04-09 00:49 - 2014-03-31 02:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-04-09 00:49 - 2014-03-31 01:57 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-04-09 00:48 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2014-04-09 00:48 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2014-04-09 00:48 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2014-04-09 00:48 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2014-04-09 00:48 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2014-04-09 00:48 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2014-04-09 00:48 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2014-04-09 00:48 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2014-04-09 00:48 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2014-04-09 00:48 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2014-04-09 00:48 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2014-04-09 00:48 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-04-09 00:48 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-04-09 00:48 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys 2014-04-09 00:48 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll 2014-04-09 00:48 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll 2014-04-09 00:48 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2014-04-08 19:11 - 2014-04-08 19:12 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup(3).exe 2014-04-08 18:52 - 2014-04-08 18:53 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup(2).exe 2014-04-08 03:41 - 2014-04-08 03:42 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup(1).exe 2014-04-08 03:40 - 2014-04-08 03:41 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup.exe 2014-03-20 15:00 - 2014-03-20 15:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-20 00:55 - 2014-03-20 00:55 - 00000000 _____ () C:\Windows\SysWOW64\sho6789.tmp ==================== One Month Modified Files and Folders ======= 2014-04-18 19:19 - 2014-04-18 19:19 - 00012642 _____ () C:\Users\Friedrich\Downloads\FRST.txt 2014-04-18 19:19 - 2014-04-18 19:18 - 00000000 ____D () C:\FRST 2014-04-18 19:17 - 2014-04-18 19:17 - 02158592 _____ (Farbar) C:\Users\Friedrich\Downloads\FRST64.exe 2014-04-18 19:15 - 2013-10-04 14:30 - 00000000 ___RD () C:\Users\Friedrich\Eigene Bilder 2014-04-18 19:13 - 2014-04-18 03:25 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-04-18 19:13 - 2013-07-17 23:02 - 01226511 _____ () C:\Windows\WindowsUpdate.log 2014-04-18 19:05 - 2014-02-13 01:05 - 00000306 _____ () C:\Windows\Tasks\Update Bonanza.job 2014-04-18 19:05 - 2013-12-29 13:05 - 00000304 _____ () C:\Windows\Tasks\Bonanza.job 2014-04-18 18:55 - 2012-11-10 13:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-04-18 15:08 - 2009-07-14 06:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-04-18 15:08 - 2009-07-14 06:45 - 00009696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-04-18 15:05 - 2011-03-28 20:10 - 00699884 _____ () C:\Windows\system32\perfh007.dat 2014-04-18 15:05 - 2011-03-28 20:10 - 00149766 _____ () C:\Windows\system32\perfc007.dat 2014-04-18 15:05 - 2009-07-14 07:13 - 01622236 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-04-18 15:01 - 2014-04-18 03:36 - 00000112 _____ () C:\Windows\setupact.log 2014-04-18 15:01 - 2011-04-07 14:02 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-04-18 15:01 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-04-18 03:36 - 2014-04-18 03:36 - 00000950 _____ () C:\Windows\PFRO.log 2014-04-18 03:36 - 2014-04-18 03:36 - 00000000 _____ () C:\Windows\setuperr.log 2014-04-18 03:36 - 2013-05-24 19:55 - 00000000 ____D () C:\Windows\Temp7EBDBC94-E9AC-C197-19D9-C5F4D2574315-Signatures 2014-04-18 03:35 - 2013-05-28 19:17 - 00000000 ____D () C:\Windows\SysWOW64\ARFC 2014-04-18 03:25 - 2014-04-18 03:25 - 00001115 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-04-18 03:25 - 2014-04-18 01:58 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2014-04-18 03:24 - 2014-04-18 03:24 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Friedrich\Downloads\mbam-setup-2.0.1.1004.exe 2014-04-18 03:14 - 2013-06-01 22:36 - 00000000 ___RD () C:\Users\Friedrich\Eigene Texte II 2014-04-18 03:14 - 2011-09-21 17:16 - 00000000 ____D () C:\Users\Friedrich 2014-04-18 03:14 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2014-04-18 03:13 - 2011-11-10 00:53 - 00000000 ____D () C:\ProgramData\clp 2014-04-18 03:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration 2014-04-18 03:12 - 2011-10-03 12:07 - 00000000 ____D () C:\Users\Friedrich\AppData\Local\Google 2014-04-18 02:34 - 2014-04-18 01:59 - 00000000 ____D () C:\Program Files (x86)\Settings Manager 2014-04-18 02:20 - 2013-10-24 12:34 - 00000000 ____D () C:\ProgramData\Systweak 2014-04-18 02:20 - 2013-10-24 12:33 - 00000000 ____D () C:\Users\Friedrich\AppData\Roaming\Systweak 2014-04-18 01:57 - 2014-04-18 01:57 - 00109120 _____ () C:\Users\Friedrich\AppData\Local\GDIPFONTCACHEV1.DAT 2014-04-17 02:32 - 2014-04-17 02:32 - 00000000 __SHD () C:\Users\Friedrich\AppData\Local\EmieUserList 2014-04-17 02:32 - 2014-04-17 02:32 - 00000000 __SHD () C:\Users\Friedrich\AppData\Local\EmieSiteList 2014-04-12 10:58 - 2014-04-12 10:58 - 00410824 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-04-12 03:58 - 2014-04-12 03:57 - 21407864 _____ (Simply Super Software ) C:\Users\Friedrich\Downloads\trjsetup690.exe 2014-04-12 03:52 - 2014-04-12 03:51 - 02209056 _____ () C:\Users\Friedrich\Downloads\avira-eu-cleaner_de.exe 2014-04-12 03:46 - 2013-12-19 02:56 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014 2014-04-12 03:45 - 2014-04-12 03:45 - 00000000 ____D () C:\Users\Friedrich\AppData\Local\TuneUp Software 2014-04-12 03:43 - 2011-10-12 19:27 - 00000000 ____D () C:\Users\Friedrich\AppData\Local\CrashDumps 2014-04-11 19:01 - 2012-12-02 20:39 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-04-11 19:01 - 2012-12-02 20:39 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-04-09 04:17 - 2013-08-15 03:14 - 00000000 ____D () C:\Windows\system32\MRT 2014-04-09 04:13 - 2011-09-21 18:29 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-04-08 19:12 - 2014-04-08 19:11 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup(3).exe 2014-04-08 18:53 - 2014-04-08 18:52 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup(2).exe 2014-04-08 03:42 - 2014-04-08 03:41 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup(1).exe 2014-04-08 03:41 - 2014-04-08 03:40 - 25418200 _____ (Mozilla) C:\Users\Friedrich\Downloads\GMX_Firefox_Setup.exe 2014-04-08 02:18 - 2011-09-25 14:54 - 00000000 ____D () C:\Users\Friedrich\AppData\Roaming\PhotoScape 2014-04-03 09:51 - 2014-04-18 03:25 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-04-03 09:51 - 2014-04-18 03:25 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-04-03 09:50 - 2014-04-18 03:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-04-01 00:05 - 2014-01-08 01:05 - 00000138 _____ () C:\Users\Friedrich\AppData\Roaming\WB.CFG 2014-03-31 09:35 - 2012-04-23 14:21 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-03-31 03:16 - 2014-04-09 00:49 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-03-31 03:13 - 2014-04-09 00:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-03-31 02:13 - 2014-04-09 00:49 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-03-31 01:57 - 2014-04-09 00:49 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-03-30 22:58 - 2011-09-23 12:48 - 00000000 ___RD () C:\Users\Friedrich\Eigene Texte 2014-03-20 20:03 - 2012-10-15 13:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-03-20 15:44 - 2013-12-19 02:59 - 00043320 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll 2014-03-20 15:44 - 2013-12-19 02:59 - 00036152 _____ (TuneUp Software) C:\Windows\SysWOW64\uxtuneup.dll 2014-03-20 15:44 - 2013-12-19 02:58 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe 2014-03-20 15:44 - 2013-12-19 02:58 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll 2014-03-20 15:44 - 2013-12-19 02:58 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll 2014-03-20 15:00 - 2014-03-20 15:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-03-20 00:55 - 2014-03-20 00:55 - 00000000 _____ () C:\Windows\SysWOW64\sho6789.tmp Some content of TEMP: ==================== C:\Users\Friedrich\AppData\Local\Temp\avgnt.exe C:\Users\Friedrich\AppData\Local\Temp\NOSEventMessages.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-03-20 22:38 ==================== End Of Log ============================ FRST - Additon Editor:FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-04-2014 01 Ran by Friedrich at 2014-04-18 19:20:12 Running from C:\Users\Friedrich\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Reader XI (11.0.03) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.03 - Adobe Systems Incorporated) Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden Agatha Christie - Death on the Nile (x32 Version: 2.2.0.95 - WildTangent) Hidden Agent Ransack 2010 (64-bit) (HKLM\...\Agent Ransack (64-bit)_is1) (Version: - ) Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC) Amazon MP3-Downloader 1.0.18 (HKCU\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC) Apple Application Support (HKLM-x32\...\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}) (Version: 2.1.7 - Apple Inc.) Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira) Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform) Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden DRIVERfighter (x32 Version: 1.1.31 - SPAMfighter ApS) Hidden Efficient Diary 3.0 (HKLM-x32\...\Efficient Diary_is1) (Version: - Efficient Software) eMachines Game Console (x32 Version: - WildTangent) Hidden eMachines Games (HKLM-x32\...\WildTangent emachines Master Uninstall) (Version: 1.0.1.3 - WildTangent) eMachines Recovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated) eMachines Registration (HKLM-x32\...\eMachines Registration) (Version: 1.03.3003 - Acer Incorporated) eMachines ScreenSaver (HKLM-x32\...\eMachines Screensaver) (Version: 1.1.0825.2010 - Acer Incorporated) eMachines Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated) Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden Fighters (x32 Version: 4.1.265 - SPAMFIGHTER ApS) Hidden Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden Free Studio version 5.5.0 (HKLM-x32\...\Free Studio_is1) (Version: 5.5.0 - DVDVideoSoft Ltd.) Free YouTube Download version 3.1.39.1015 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.1.39.1015 - DVDVideoSoft Ltd.) Free YouTube to MP3 Converter version 3.11.26.706 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.11.26.706 - DVDVideoSoft Ltd.) FULL-DISKfighter (x32 Version: 1.4.28 - SPAMfighter ApS.) Hidden GIMP 2.6.8 (HKLM\...\WinGimp-2.0_is1) (Version: - ) Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3009 - Acer Incorporated) Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden Insaniquarium Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation) Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden Java(TM) 6 Update 29 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.290 - Oracle) Java(TM) 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle) Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Lernen durch Wiederholung 6.2.3 (HKLM-x32\...\Lernen durch Wiederholung_is1) (Version: - ©Matthias Kraus) Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation) map&guide base (HKLM-x32\...\{8BECCB29-DA5E-4002-B211-C3A148E48D63}) (Version: 1.05.00000 - MAP&GUIDE GmbH) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft AutoRoute 2002 (HKLM-x32\...\{F7F2DC0A-C22E-49AD-AD37-797309A54E7B}) (Version: 9.00.17.0200 - Microsoft) Microsoft Encarta Enzyklopädie 2002 (HKLM-x32\...\{01008202-823E-46CD-A70E-BEE818F97169}) (Version: 2002 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation) Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Picture It! Foto 2002 (HKLM-x32\...\{C769A271-7E1C-48F9-B331-474600DD4C06}) (Version: 6.0.0.0000 - Microsoft) Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0407-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Word 2002 (HKLM-x32\...\{911B0407-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation) Microsoft Works 2002-Setup-Start (HKLM-x32\...\Works2002Setup) (Version: - ) Microsoft Works 6.0 (HKLM-x32\...\{ED5EDCD0-5745-4B13-8061-58C9833FD06D}) (Version: 06.00.0000 - Microsoft Corporation) Microsoft Works Suite-Add-Ins für Microsoft Word (HKLM-x32\...\{25F60491-F5AB-4985-9354-37C146783F35}) (Version: 2.0.0.0000 - Microsoft Corporation) Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla) Mozilla Thunderbird 17.0.8 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 17.0.8 (x86 de)) (Version: 17.0.8 - Mozilla) MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nero 9 Essentials (HKLM-x32\...\{19d74c6e-c6f0-493a-832f-03edf5aad5b8}) (Version: - Nero AG) Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden Nero DiscSpeed (x32 Version: 5.4.13.100 - Nero AG) Hidden Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden Nero DriveSpeed (x32 Version: 4.4.12.100 - Nero AG) Hidden Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden Nero Express Help (x32 Version: 9.4.37.100 - Nero AG) Hidden Nero InfoTool (x32 Version: 6.4.12.100 - Nero AG) Hidden Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden Nero Installer (x32 Version: 4.4.9.0 - Nero AG) Hidden Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden Nero StartSmart (x32 Version: 9.4.37.100 - Nero AG) Hidden Nero StartSmart Help (x32 Version: 9.4.27.100 - Nero AG) Hidden Nero StartSmart OEM (x32 Version: 9.15.0.100 - Nero AG) Hidden NeroExpress (x32 Version: 9.4.37.100 - Nero AG) Hidden neroxml (x32 Version: 1.0.0 - Nero AG) Hidden Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.30.0 - Nokia) Nokia Suite (x32 Version: 3.8.30.0 - Nokia) Hidden NVIDIA Grafiktreiber 266.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 266.84 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.109.718 - NVIDIA Corporation) Hidden NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden NVIDIA PhysX-Systemsoftware 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation) NVIDIA Stereoscopic 3D Driver (HKLM-x32\...\NVIDIAStereo) (Version: 7.17.12.6684 - NVIDIA Corporation) NVIDIA Systemsteuerung 266.84 (Version: 266.84 - NVIDIA Corporation) Hidden OpenOffice.org 3.3 (HKLM-x32\...\{4286716B-1287-48E7-9078-3DC8248DBA96}) (Version: 3.3.9567 - OpenOffice.org) Opera 12.15 (HKLM-x32\...\Opera 12.15.1748) (Version: 12.15.1748 - Opera Software ASA) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.) Shockwave (HKLM-x32\...\Shockwave) (Version: - ) Sonnensystem 3.0 (HKLM-x32\...\{44104223-5CFF-4ADE-AF33-584CF83FA1B8}) (Version: 1.0.0 - Standardfirmenname) SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC) Stellarium 0.11.4 (HKLM\...\Stellarium_is1) (Version: 0.11.4 - Stellarium team) Teachmaster 4.3 (nur Entfernen) (HKLM-x32\...\Teachmaster 4.3) (Version: - ) TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.275 - TuneUp Software) TuneUp Utilities 2014 (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden Update_for_BonanzaDeals (HKCU\...\Bonanza) (Version: - Update_for_BonanzaDeals) <==== ATTENTION Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.95 - WildTangent) Hidden VIS (HKLM-x32\...\VIS) (Version: - ) <==== ATTENTION VLC media player 2.0.8 (HKLM-x32\...\VLC media player) (Version: 2.0.8 - VideoLAN) Welcome Center (HKLM-x32\...\eMachines Welcome Center) (Version: 1.02.3005 - Acer Incorporated) Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation) Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Windows Media Center Add-in for Silverlight (HKLM-x32\...\{0EDBEB2B-7C8D-42E6-8312-0F84394A3223}) (Version: 4.7.3.0 - Microsoft Corporation) Windows-Treiberpaket - Intel hdc (10/05/2012 9.1.9.1002) (HKLM\...\29B76F9C91EE9BA9A63E88D9F0000E010363DCB5) (Version: 10/05/2012 9.1.9.1002 - Intel) Windows-Treiberpaket - Intel System (10/05/2012 9.1.9.1002) (HKLM\...\5E9040CBF06133134873F64C0D152BEBA5F98677) (Version: 10/05/2012 9.1.9.1002 - Intel) Windows-Treiberpaket - Intel System (10/05/2012 9.1.9.1002) (HKLM\...\6C352BEA80A0DBEB6FCE6F10DEDB382409B6E4CF) (Version: 10/05/2012 9.1.9.1002 - Intel) Windows-Treiberpaket - Intel USB (10/05/2012 9.1.9.1002) (HKLM\...\62461C94E7F67025AC113795AF5428E1B73EA068) (Version: 10/05/2012 9.1.9.1002 - Intel) Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) Windows-Treiberpaket - NVIDIA Corporation (NVHDA) MEDIA (12/18/2012 1.3.23.1) (HKLM\...\53E1594B2022B94BADE3466EE5459687E18D582E) (Version: 12/18/2012 1.3.23.1 - NVIDIA Corporation) Windows-Treiberpaket - Realtek (RTL8167) Net (12/26/2012 7.067.1226.2012) (HKLM\...\85BB2284011D96871518CFA7B57630FE47BEA2B4) (Version: 12/26/2012 7.067.1226.2012 - Realtek) Windows-Treiberpaket - Realtek Semiconductor Corp. HD Audio Driver (06/19/2012 6.0.1.6662) (HKLM\...\4A5EF81C80190F479C6FB16BC8CF595275AAC778) (Version: 06/19/2012 6.0.1.6662 - Realtek Semiconductor Corp.) Works Suite-Betriebssystem-Pack (x32 Version: 1.0.0.0000 - Microsoft Corporation) Hidden Works-Synchronisierung (x32 Version: 1.0.0.0000 - Firmenname) Hidden Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Zuma's Revenge (x32 Version: 2.2.0.95 - WildTangent) Hidden ==================== Restore Points ========================= 15-04-2014 02:34:37 Windows Update 18-04-2014 01:10:41 Wiederherstellungsvorgang 18-04-2014 01:21:42 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {0CE1FA3A-A6A8-4465-9A39-CA6B135407EF} - System32\Tasks\Works Update Find => C:\Program Files (x86)\Common Files\Microsoft Shared\Works Shared\WkUFind.exe [2001-10-04] (Microsoft® Corporation) Task: {10E0C014-034C-4949-9061-0E56F6F9A85E} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe Task: {222D648C-17E5-4407-A70A-886BDF6946DE} - System32\Tasks\{F68F6828-01AF-41FF-AA08-8B6B93DB25B3} => Firefox.exe Task: {2DDAF7C7-3832-4581-B931-412F6EDEAC3F} - System32\Tasks\{1271A5A0-75B0-483B-8AD1-39947713A666} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {30D9DFA6-1A63-4D63-A1D6-60EA5511F124} - System32\Tasks\Bonanza => C:\Users\Friedrich\AppData\Roaming\Bonanza\UpdateProc\UpdateTask.exe [2013-04-30] () <==== ATTENTION Task: {35163004-3616-46A1-BCC6-7978278A20C8} - System32\Tasks\{C8706F56-E750-4BAF-899E-81231C1758EF} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {46E6A429-0F35-43E6-B847-C2342C12BDE0} - System32\Tasks\{000C7954-D2C1-4C99-B852-AE2778220F87} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {5AD13413-C681-424E-B81F-04A64AC24C8A} - System32\Tasks\{02E8F160-9E00-43CF-90E6-A0134BDCFB26} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {5FE11406-462A-48D3-B2EA-82326B38684D} - System32\Tasks\{E7CBE3C0-0922-4D3A-B048-1F267137476D} => Firefox.exe Task: {6411C364-7165-4194-8090-C10B4318A12C} - System32\Tasks\{C6E01112-7AA7-457A-8F52-4D1FD33771F7} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {71414F16-5607-4060-BE9E-5C4063852EED} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated) Task: {756AF612-BA9D-4313-BACA-6187BC787B39} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated) Task: {82B45D92-0A35-4540-B186-2EEBF19AC08D} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2014-03-20] (TuneUp Software) Task: {9C40CB84-0919-442B-8496-346E127C5808} - System32\Tasks\{BCDFC23F-C327-40F0-8FCE-A3795C9CF42F} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {9DDFF567-DFE6-4E1C-A656-6B99F81B6005} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation) Task: {A0933171-C5B6-4534-8EC7-2108A966E05E} - System32\Tasks\{A1607798-32C2-433E-A44B-F36BBA68A77C} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {A25ABDA7-5A55-49C3-833B-40969ED51735} - System32\Tasks\{EFD8CBAE-B54F-4872-870F-96CEB3D37E5A} => Firefox.exe Task: {A917DEA8-1BC7-48A1-A848-E38A83F68443} - System32\Tasks\{05D09816-6C61-4C18-B9D0-E1D45D4F4E9B} => Firefox.exe Task: {BF7FDDFB-F791-43E7-A842-98835B0C5E87} - System32\Tasks\{95D1313C-B743-4D4E-87E8-6BDC6D289719} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {C6BE140C-5021-4648-A8BD-548540598BFE} - System32\Tasks\Works Update Detect => C:\Program Files (x86)\Microsoft Works\WkDetect.exe Task: {D534C6CD-A653-402E-B54A-0CABC8F7EEF4} - System32\Tasks\{BABE475E-9A80-4E1C-BA91-2D026A5776B4} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {D6B4E7DD-157E-4E06-B289-8CFF5188E564} - System32\Tasks\Update Bonanza => C:\Users\Friedrich\AppData\Roaming\UpdateBonanza\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION Task: {D82610B3-D9D7-4C2A-8822-D62C963083AB} - System32\Tasks\{EB35C9A5-4AEA-47A8-8DAC-AC0471A74024} => C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe [2013-08-07] (Mozilla Corporation) Task: {E971C3CD-B88E-408C-BBB4-A898B7F4A5E5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\Bonanza.job => C:\Users\FRIEDR~1\AppData\Roaming\Bonanza\UPDATE~1\UPDATE~1.EXE <==== ATTENTION Task: C:\Windows\Tasks\Update Bonanza.job => C:\Users\FRIEDR~1\AppData\Roaming\UPDATE~2\UPDATE~1\UPDATE~1.EXE <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2014-03-20 15:44 - 2014-03-20 15:44 - 00675640 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll 2013-05-29 21:56 - 2013-05-29 21:38 - 00397704 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 08507232 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 02354016 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 01014624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00364384 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 02480992 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 01346912 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00206176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 02653024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll 2013-04-19 01:45 - 2013-04-19 01:45 - 00033120 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll 2013-04-19 01:45 - 2013-04-19 01:45 - 00035680 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll 2013-04-19 01:45 - 2013-04-19 01:45 - 00207200 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 11166560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00276832 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll 2013-04-15 13:26 - 2013-04-15 13:26 - 00391600 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll 2013-04-15 13:26 - 2013-04-15 13:26 - 00059280 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll 2013-04-19 01:45 - 2013-04-19 01:45 - 00438624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00446304 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00520544 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00720736 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll 2013-04-19 01:44 - 2013-04-19 01:44 - 00606560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll 2013-04-19 01:46 - 2013-04-19 01:46 - 00093024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll 2013-12-15 16:31 - 2013-08-07 13:10 - 02244504 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll 2013-12-15 16:31 - 2013-08-07 13:10 - 00158104 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll 2013-12-15 16:31 - 2013-08-07 13:10 - 00022424 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll 2014-03-20 15:00 - 2014-03-20 15:00 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2011-01-26 17:48 - 2011-01-26 17:48 - 00237160 _____ () C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll 2014-03-12 02:55 - 2014-03-12 02:55 - 16276872 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9 ==================== Safe Mode (whitelisted) =================== ==================== Disabled items from MSCONFIG ============== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (04/18/2014 07:16:24 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:12:14 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:08:03 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:04:02 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:00:00 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:55:49 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:51:38 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:47:37 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:43:35 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:39:33 PM) (Source: Windows Search Service) (User: ) Description: Der Filterhostprozess kann nicht initialisiert werden. Der Vorgang wird abgebrochen. Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) System errors: ============= Error: (04/18/2014 03:01:20 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Microsoft Antimalware Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (04/18/2014 03:38:29 AM) (Source: Service Control Manager) (User: ) Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: %%1056 Error: (04/18/2014 03:37:59 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts. Error: (04/18/2014 03:37:56 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535. Error: (04/18/2014 03:36:38 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Microsoft Antimalware Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (04/18/2014 03:36:38 AM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 18.04.2014 um 03:36:00 unerwartet heruntergefahren. Error: (04/18/2014 03:35:55 AM) (Source: DCOM) (User: ) Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} Error: (04/18/2014 03:22:45 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definition Update for Windows Defender - KB915597 (Definition 1.169.2651.0) Error: (04/18/2014 03:14:59 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Microsoft Antimalware Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%2 Error: (04/18/2014 02:37:07 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts. Microsoft Office Sessions: ========================= Error: (04/18/2014 07:16:24 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:12:14 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:08:03 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:04:02 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 07:00:00 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:55:49 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:51:38 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:47:37 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:43:35 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) Error: (04/18/2014 06:39:33 PM) (Source: Windows Search Service)(User: ) Description: Details: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. (HRESULT : 0x800705b4) (0x800705b4) ==================== Memory info =========================== Percentage of memory in use: 66% Total physical RAM: 4095.24 MB Available physical RAM: 1382.13 MB Total Pagefile: 8188.66 MB Available Pagefile: 4959.26 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (eMachines) (Fixed) (Total:916.91 GB) (Free:813.82 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 0F7E7F14) Partition 1: (Not Active) - (Size=15 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=917 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
19.04.2014, 12:08 | #4 |
/// the machine /// TB-Ausbilder | Meine Maus spinnt! Schon mal ne andere Maus probiert?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu Meine Maus spinnt! |
aktiviere, anklicken, button, doppelklick, einfach, einfachklick, fängt, gefangen, geklickt, gen, immer wieder, keine reaktion, klicke, klicken, markieren, maus, maus spinnt, mausklick, mausmarkierung, maustaste, neu, problem, reaktion, spinn, spinnt, stelle, verhält, ähnlich |