| |
| |||||||
Alles rund um Windows: SoftwareeinschränkungsrichtlinienWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
30.08.2014, 22:24
| #9 |
 |  Softwareeinschränkungsrichtlinien Jetzt gibts was zum Lachen!? Denn es erscheint nun die Info =Text sei zu kurz, solle mind. 3 Zeichen lang sein... FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:29-08-2014 01
Ran by User (administrator) on USER-PC on 30-08-2014 23:07:57
Running from C:\Users\User\Downloads
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(AVM Berlin) C:\Program Files\avmwlanstick\WLanNetService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVM Berlin) C:\Program Files\avmwlanstick\WLanGUI.exe
( ) C:\Windows\System32\lxddcoms.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
() C:\Program Files\Lexmark 2500 Series\lxddmon.exe
() C:\Program Files\Lexmark 2500 Series\lxddamon.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AVMWlanClient] => C:\Program Files\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-06] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [lxddmon.exe] => C:\Program Files\Lexmark 2500 Series\lxddmon.exe [291760 2007-06-11] ()
HKLM\...\Run: [lxddamon] => C:\Program Files\Lexmark 2500 Series\lxddamon.exe [20480 2007-04-30] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [161584 2014-08-04] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
HKU\S-1-5-21-728581627-3406434954-4089395993-1000\...\MountPoints2: {4140fa84-05e0-11e4-8240-001d6067fded} - E:\pushinst.exe
HKU\S-1-5-21-728581627-3406434954-4089395993-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {4140fa84-05e0-11e4-8240-001d6067fded} - E:\pushinst.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://localoem.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://localoem.msn.com
SearchScopes: HKLM - {8FCBC56B-785F-408D-A0F5-8A0B3F72220B} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE9TR&src=IE9TR&pc=MASBJS
SearchScopes: HKCU - {8FCBC56B-785F-408D-A0F5-8A0B3F72220B} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qfy29d09.default
FF Homepage: hxxp://www.dwd.de/bvbw/appmanager/bvbw/dwdwwwDesktop?_nfpb=true&_pageLabel=_dwdwww_spezielle_nutzer_hobbymeteorologen_radar&T7540135651192188031245gsbDocumentPath=Content%2FOeffentlichkeit%2FKU%2FKUPK%2FHobbymet%2FRadarmeteorologie%2Fwetter__radar-aktuell__de__teaser.html&_state=maximized&_windowLabel=T7540135651192188031245&lastPageLabel=_dwdwww_spezielle_nutzer_hobbymeteorologen_radar
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qfy29d09.default\searchplugins\wiktionary-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Avira Browser Safety - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qfy29d09.default\Extensions\abs@avira.com [2014-08-28]
FF Extension: GMX MailCheck - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\qfy29d09.default\Extensions\toolbar@gmx.net [2014-07-11]
Chrome:
=======
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-08-06] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-06] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [149296 2014-08-04] (Avira Operations GmbH & Co. KG)
R2 AVM WLAN Connection Service; C:\Program Files\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S2 lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [99248 2007-05-25] (Lexmark International, Inc.)
R2 lxdd_device; C:\Windows\system32\lxddcoms.exe [537520 2007-05-25] ( )
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [97648 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-06-24] (Avira Operations GmbH & Co. KG)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [4352 2010-10-22] (AVM Berlin) [File not signed]
R3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [265088 2010-10-22] (AVM GmbH)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2014-06-24] (Avira GmbH)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-30 09:48 - 2014-08-30 09:48 - 00000000 ____D () C:\Users\User\Downloads\FRST-OlderVersion
2014-08-29 21:57 - 2014-08-29 21:57 - 01364531 _____ () C:\Users\User\Downloads\adwcleaner_3.308.exe
2014-08-29 07:51 - 2014-08-30 23:08 - 00000000 ____D () C:\FRST
2014-08-29 07:51 - 2014-08-30 23:07 - 00008703 _____ () C:\Users\User\Downloads\FRST.txt
2014-08-29 07:51 - 2014-08-29 20:56 - 00017099 _____ () C:\Users\User\Downloads\Addition.txt
2014-08-29 07:44 - 2014-08-30 09:48 - 01095680 _____ (Farbar) C:\Users\User\Downloads\FRST.exe
2014-08-28 09:19 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 09:19 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-27 20:13 - 2014-08-27 20:39 - 00003850 __RSH () C:\ProgramData\ntuser.pol
2014-08-26 20:15 - 2014-08-26 20:15 - 00009728 ___SH () C:\Users\User\Thumbs.db
2014-08-26 18:27 - 2014-08-26 18:27 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-08-26 17:09 - 2014-08-26 17:09 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-26 17:09 - 2014-08-26 17:09 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-26 17:08 - 2014-08-26 18:29 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-26 17:08 - 2014-08-26 17:09 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-08-26 17:08 - 2014-08-26 17:08 - 00000000 ____D () C:\Program Files\Adobe
2014-08-24 12:01 - 2014-08-24 12:02 - 00009216 ___SH () C:\Users\User\Documents\Thumbs.db
2014-08-24 11:56 - 2014-08-24 11:56 - 00026356 _____ () C:\Users\User\Documents\Einl. Mariannes 75..odt
2014-08-24 10:56 - 2014-08-24 10:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\LibreOffice
2014-08-24 10:49 - 2014-08-24 10:49 - 00001426 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-08-24 10:49 - 2014-08-24 10:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
2014-08-24 10:49 - 2014-08-24 10:49 - 00000000 ____D () C:\Program Files\LibreOffice 4
2014-08-24 10:44 - 2014-08-24 10:45 - 07426048 _____ () C:\Users\User\Downloads\LibreOffice_4.2.6_Win_x86_helppack_de.msi
2014-08-24 10:35 - 2014-08-24 10:40 - 220463104 _____ () C:\Users\User\Downloads\LibreOffice_4.2.6_Win_x86.msi
2014-08-18 20:52 - 2014-08-18 20:52 - 00001095 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-08-14 17:53 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 17:53 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 17:53 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 17:53 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 17:23 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 17:23 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 17:23 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 17:23 - 2014-07-25 15:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 17:23 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 17:23 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 17:23 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 17:23 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 17:23 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 17:23 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 17:23 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 17:23 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 17:23 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 17:23 - 2014-07-25 14:10 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 17:23 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 17:23 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 17:23 - 2014-07-25 13:59 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 17:23 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 17:23 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 17:23 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 17:23 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 17:23 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 17:23 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 17:23 - 2014-07-25 13:09 - 00663040 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 17:23 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 17:23 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 17:23 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 17:23 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 17:23 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 17:23 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 17:23 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 17:23 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 17:23 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-14 17:23 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-14 17:21 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 17:21 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 17:21 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 17:21 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 17:21 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-06 09:17 - 2014-08-06 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-06 09:17 - 2014-08-06 09:17 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-06 09:17 - 2014-08-06 09:16 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-06 09:17 - 2014-08-06 09:16 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-06 09:17 - 2014-08-06 09:16 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-06 09:17 - 2014-08-06 09:16 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-06 09:16 - 2014-08-06 09:16 - 00000000 ____D () C:\Program Files\Java
2014-08-01 10:22 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-01 10:22 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-01 10:22 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-01 10:22 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-01 10:22 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-01 10:22 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-01 10:22 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-01 10:22 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-01 10:22 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-30 23:08 - 2014-08-29 07:51 - 00008703 _____ () C:\Users\User\Downloads\FRST.txt
2014-08-30 23:08 - 2014-08-29 07:51 - 00000000 ____D () C:\FRST
2014-08-30 22:15 - 2014-07-08 07:50 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-30 21:23 - 2014-06-23 08:04 - 01434914 _____ () C:\Windows\WindowsUpdate.log
2014-08-30 20:41 - 2014-07-09 21:05 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-30 14:52 - 2009-07-14 06:34 - 00029696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-30 14:52 - 2009-07-14 06:34 - 00029696 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-30 14:49 - 2010-11-20 23:01 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-30 14:44 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-30 14:44 - 2009-07-14 06:39 - 00031145 _____ () C:\Windows\setupact.log
2014-08-30 09:48 - 2014-08-30 09:48 - 00000000 ____D () C:\Users\User\Downloads\FRST-OlderVersion
2014-08-30 09:48 - 2014-08-29 07:44 - 01095680 _____ (Farbar) C:\Users\User\Downloads\FRST.exe
2014-08-29 22:02 - 2010-11-20 23:48 - 00135816 _____ () C:\Windows\PFRO.log
2014-08-29 22:00 - 2014-07-12 19:17 - 00000000 ____D () C:\AdwCleaner
2014-08-29 21:57 - 2014-08-29 21:57 - 01364531 _____ () C:\Users\User\Downloads\adwcleaner_3.308.exe
2014-08-29 20:56 - 2014-08-29 07:51 - 00017099 _____ () C:\Users\User\Downloads\Addition.txt
2014-08-29 19:13 - 2014-07-18 14:21 - 00000000 ____D () C:\Program Files\Lx_cats
2014-08-28 14:46 - 2009-07-14 06:33 - 00320496 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-27 20:39 - 2014-08-27 20:13 - 00003850 __RSH () C:\ProgramData\ntuser.pol
2014-08-27 20:09 - 2009-07-14 04:37 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-26 20:15 - 2014-08-26 20:15 - 00009728 ___SH () C:\Users\User\Thumbs.db
2014-08-26 18:29 - 2014-08-26 17:08 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-26 18:27 - 2014-08-26 18:27 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-08-26 18:27 - 2014-06-23 11:45 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe
2014-08-26 17:09 - 2014-08-26 17:09 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-26 17:09 - 2014-08-26 17:09 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-26 17:09 - 2014-08-26 17:08 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-08-26 17:08 - 2014-08-26 17:08 - 00000000 ____D () C:\Program Files\Adobe
2014-08-24 15:51 - 2014-06-23 09:00 - 00071616 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-24 12:02 - 2014-08-24 12:01 - 00009216 ___SH () C:\Users\User\Documents\Thumbs.db
2014-08-24 11:56 - 2014-08-24 11:56 - 00026356 _____ () C:\Users\User\Documents\Einl. Mariannes 75..odt
2014-08-24 10:56 - 2014-08-24 10:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\LibreOffice
2014-08-24 10:49 - 2014-08-24 10:49 - 00001426 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-08-24 10:49 - 2014-08-24 10:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.2
2014-08-24 10:49 - 2014-08-24 10:49 - 00000000 ____D () C:\Program Files\LibreOffice 4
2014-08-24 10:45 - 2014-08-24 10:44 - 07426048 _____ () C:\Users\User\Downloads\LibreOffice_4.2.6_Win_x86_helppack_de.msi
2014-08-24 10:40 - 2014-08-24 10:35 - 220463104 _____ () C:\Users\User\Downloads\LibreOffice_4.2.6_Win_x86.msi
2014-08-24 09:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system
2014-08-24 09:51 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-08-23 03:46 - 2014-08-28 09:19 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 02:42 - 2014-08-28 09:19 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-18 20:53 - 2014-07-07 23:59 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-18 20:52 - 2014-08-18 20:52 - 00001095 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-08-18 20:52 - 2014-07-08 00:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-08-18 20:52 - 2014-07-07 23:59 - 00000000 ____D () C:\Program Files\Avira
2014-08-15 08:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-15 00:26 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 22:56 - 2014-07-08 07:50 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-08-14 22:56 - 2014-07-08 07:50 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-08-14 22:52 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-08-14 17:56 - 2014-06-23 09:32 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 17:55 - 2014-06-23 09:31 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-07 05:11 - 2009-07-14 06:53 - 00032634 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-06 09:17 - 2014-08-06 09:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-06 09:17 - 2014-08-06 09:17 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-08-06 09:17 - 2014-07-09 19:58 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-06 09:16 - 2014-08-06 09:17 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-08-06 09:16 - 2014-08-06 09:17 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-08-06 09:16 - 2014-08-06 09:17 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-08-06 09:16 - 2014-08-06 09:17 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-08-06 09:16 - 2014-08-06 09:16 - 00000000 ____D () C:\Program Files\Java
2014-08-05 09:20 - 2014-06-23 08:19 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-04 21:08 - 2011-04-12 03:39 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-08-01 01:16 - 2014-08-14 17:23 - 00307384 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
Files to move or delete:
====================
C:\Users\User\avmacc32.dll
C:\Users\User\avmadd32.DLL
C:\Users\User\fwlan4ci.dll
C:\Users\User\fwlanci.dll
C:\Users\User\fwusbnci.dll
C:\Users\User\setup.exe
Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\avgnt.exe
C:\Users\User\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\User\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-27 12:44
==================== End Of Log ============================
--- --- --- |
| Themen zu Softwareeinschränkungsrichtlinien |
| ahnung, block, blockt, board, deutsche, deutschen, erschein, erscheint, erstem, gefährlich, schritte, standard, tickets, win, win7 |
Baum-Darstellung