Zurück   Trojaner-Board > Archiv - Kein Posten möglich > Mülltonne
Win 8.1/nach Update langsamer/Abstürze

Win 8.1/nach Update langsamer/Abstürze


Mülltonne: Win 8.1/nach Update langsamer/Abstürze

Windows 7 Beiträge, die gegen unsere Regeln verstoßen haben, solche, die die Welt nicht braucht oder sonstiger Müll landet hier in der Mülltonne...

 
Alt 09.11.2014, 04:03   #1
machete81
 
Win 8.1/nach Update langsamer/Abstürze - Standard

Win 8.1/nach Update langsamer/Abstürze


Hallo,

"schön" hier mal wieder aktiv sein zu dürfen.

Genauer als im Titel kann ich mein Problem gar nicht beschreiben, nur das mein PC auch beim booten in der Dauerschleife festhing, die Anmelde-Vorgänge/Benutzerkonten-Steuerung extrem langsam war und ich nur mit radikalem Kappen der Energiezufuhr des PCs weiter kam und ich ihn jetzt "per Windows-Systemwiederherstellungspunkt" zurückgesetzt habe.

Vor dem Zurücksetzen ließ ich noch ein paar MBAM-Scans laufen (ohne den über 100GB großen Musikordner (Fehler?), die auch jedesmal was finden. Jetzt aktuell scheint alles zu laufen, bis auf das der Browser noch manchmal hakt, keine Rückmeldung...

Versuche schon mal mit diesen Ergebnissen vielleicht zu helfen mir zu helfen.
Möchte eigentlich nur wissen, ob ich nicht wirklich noch was auf meinem Rechner habe, das noch Probleme bereiten könnte und wie ich es dann beseitigen kann.


Vielen Dank im Voraus und Grüße.

Scan mit Malwarebytes Anti-Malware
( exklusive Ordner "Musik", inklusive dauerte Scan über 10h )

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Scan Date: 09.11.2014
Scan Time: 00:41:58
Logfile: scan.txt
Administrator: Yes

Version: 2.00.3.1025
Malware Database: v2014.11.08.06
Rootkit Database: v2014.11.08.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x86
File System: NTFS
User: Andreas

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 385648
Time Elapsed: 11 min, 10 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 22
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (user_pref("extensions.delta.admin", false);), Replaced,[cb89b782fa8279bd60ea75019570926e]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ferences

/* Do not edit this file.
 *
 *), Replaced,[d183350478041422400af2842bda3bc5]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (rences

/* Do not edit this file.
 *
 * If you make changes to this file w), Replaced,[9eb67fbade9e42f4103a3c3ae12441bf]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (e.
 *
 * If you make changes to this file whil), Replaced,[0054e4552d4fb383e565ef8711f444bc]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ces

/* Do not edit this file.
 *
 * If ), Replaced,[173d0d2c0577a294a9a14d29897cb947]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (erences

/* Do not edit this file.
 *
 * ), Replaced,[193bf2472c50f541e36755213fc6ae52]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (rences

/* Do not edit this file.
 *
 * If y), Replaced,[91c3ed4c324afb3b88c283f354b1b54b]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ces

/* Do not edit this file.
 *
 * If you make changes to this ), Replaced,[ce866ccd87f5c96d66e4690d1fe61de3]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: ( this file.
 *
 * If you make changes to this ), Replaced,[fa5a85b4235906302921b9bd9b6aa35d]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ces

/* Do not edit this file.
 *
 * If yo), Replaced,[67ed83b6b7c52115cf7bf97d43c2e31d]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ences

/* Do not edit this file.
 *
 * I), Replaced,[e56f0633ceae5adc62e85125fa0b25db]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (rences

/* Do not edit this file.
 *
 * If ), Replaced,[11436acfa2daaf879ab032447b8a6f91]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (nces

/* Do not edit this file.
 *
 * If), Replaced,[80d4e95036462511f9518fe7b94c649c]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (erences

/* Do not edit this file.
 *
 * I), Replaced,[f26252e7a3d983b30a40f97df41102fe]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ences

/* Do not edit this file.
 *
 * If), Replaced,[32225adf1a62ca6ca1a93640fd0837c9]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (rences

/* Do not edit this file.
 *
 * If), Replaced,[42124fea592320169cae492d38cdbb45]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ences

/* Do not edit this file.
 *
 * If y), Replaced,[6be9d861a2da96a03b0f5026ea1bbe42]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (nces

/* Do not edit this file.
 *
 * If you make ch), Replaced,[b99bd76287f559dddc6e0571d431956b]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (* Do not edit this file.
 *
 * If you make cha), Replaced,[6de719204d2f50e6f5556a0c21e43ec2]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ces

/* Do not edit this file.
 *
 * If), Replaced,[9bb92e0b9ddf87afae9cf680c3423ac6]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: (ferences

/* Do not edit this file.
 *
 * If you make changes to this file while t), Replaced,[ec68b6832c5081b5ff4b6a0c4abb6a96]
PUP.Optional.Delta.A, C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\prefs.js, Good: (), Bad: ( * If you make changes to this file while the), Replaced,[82d2db5e483482b463e7a3d3ef169d63]

Physical Sectors: 0
(No malicious items detected)


(end)

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-11-2014 01
Ran by Andreas (administrator) on MACHETE81 on 09-11-2014 01:12:10
Running from C:\Users\Andreas\Downloads
Loaded Profile: Andreas (Available profiles: Andreas & UpdatusUser)
Platform: Microsoft Windows 8.1 Pro (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_9e2c4d65e2c1ef06\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\AM_Delta_Patch_1.187.1656.0.exe
(Microsoft Corporation) C:\Windows\System32\MpSigStub.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [APSDaemon] => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [569696 2014-03-06] (Copyright 2013 SAMSUNG)
HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe [747264 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [FreePDF Assistant] => C:\Program Files\FreePDF_XP\fpassist.exe [374784 2014-01-09] (shbox.de)
HKU\S-1-5-21-2094352545-3968287851-2684274641-1001\...\MountPoints2: {f9e43eb8-60fc-11e2-af9b-806e6f6e6963} - "E:\setup.exe" 
Startup: C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Andreas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.babylon.com/?affID=119781&tt=gc_&babsrc=HP_ss_din2g&mntrId=B26C0019214D0BCF
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x7109338C76F5CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: samsung.com/SamsungLinkPCPlugin -> C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF user.js: detected! => C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\user.js
FF SearchPlugin: C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\searchplugins\ask-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Forecastfox - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2013-11-09]
FF Extension: ViewMarks - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\Extensions\{7443739c-bff6-4af0-aea5-7ed29006966c} [2014-02-10]
FF Extension: DownloadHelper - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-06]
FF Extension: AutoCopy 2 - C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\Extensions\autocopy2@teo.pl.xpi [2014-05-25]

Chrome: 
=======
CHR Profile: C:\Users\Andreas\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [bebnnlollpcjnfpkafhoclljaojgnfok] - C:\Program Files\FTDownloader.com\FTDownloader10.crx []
CHR HKLM\...\Chrome\Extension: [blaofbhgbmeikidhlkmjhbkbfohpgekf] - C:\Program Files\Movie2KDownloader.com\Movie2KDownloader10.crx []
CHR HKLM\...\Chrome\Extension: [lgnbhdnimikkoodkogjlcllngimhlapp] - C:\Program Files\FTDownloader.com\FTDownloader10.crx []

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [401800 2013-12-21] (Samsung) [File not signed]
S3 rpcapd; C:\Program Files\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [577376 2014-03-06] (Copyright 2013 SAMSUNG)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279784 2014-03-24] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2014-03-24] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1222144 2014-07-24] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\WINDOWS\System32\drivers\amdkmafd.sys [15528 2012-09-23] (Advanced Micro Devices, Inc.)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2013-02-03] ()
R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [25600 2014-02-22] (Microsoft Corporation)
R1 CXAVSAUD; C:\WINDOWS\system32\DRIVERS\pvavsaud.sys [11008 2005-10-25] (Conexant Systems, Inc.)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2013-02-03] ()
S3 Netaapl; C:\WINDOWS\system32\DRIVERS\netaapl.sys [18432 2012-03-26] (Apple Inc.) [File not signed]
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2014-07-28] (Apple, Inc.) [File not signed]
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [92504 2014-03-24] (Microsoft Corporation)
R0 Wof; C:\WINDOWS\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [188416 2014-05-31] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-09 01:12 - 2014-11-09 01:12 - 00011460 _____ () C:\Users\Andreas\Downloads\FRST.txt
2014-11-09 01:11 - 2014-11-09 01:12 - 00000000 ____D () C:\FRST
2014-11-09 01:10 - 2014-11-09 01:10 - 01107968 _____ (Farbar) C:\Users\Andreas\Downloads\FRST.exe
2014-11-09 01:09 - 2014-11-09 01:09 - 00000476 _____ () C:\Users\Andreas\Downloads\defogger_disable.log
2014-11-09 01:09 - 2014-11-09 01:09 - 00000000 _____ () C:\Users\Andreas\defogger_reenable
2014-11-09 01:07 - 2014-11-09 01:07 - 00050477 _____ () C:\Users\Andreas\Downloads\Defogger.exe
2014-11-09 01:00 - 2014-11-09 01:00 - 00005887 _____ () C:\Users\Andreas\Desktop\scan.txt
2014-11-09 00:03 - 2014-11-09 00:03 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc71.dll
2014-11-08 23:41 - 2014-11-09 00:41 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-11-08 23:41 - 2014-11-08 23:41 - 00000867 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-11-08 23:41 - 2014-11-08 23:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-11-08 23:40 - 2014-11-08 23:40 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-08 23:40 - 2014-10-01 11:11 - 00075480 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-11-08 23:40 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-11-08 23:40 - 2014-10-01 11:11 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-11-08 22:12 - 2014-11-08 22:12 - 00000000 __SHD () C:\Users\Andreas\AppData\Local\EmieUserList
2014-11-08 22:12 - 2014-11-08 22:12 - 00000000 __SHD () C:\Users\Andreas\AppData\Local\EmieSiteList
2014-11-08 22:03 - 2011-05-13 11:16 - 00493056 _____ ( datenhaus GmbH) C:\WINDOWS\system32\dhRichClient3.dll
2014-11-08 22:03 - 2011-03-25 19:42 - 00338432 _____ () C:\WINDOWS\system32\sqlite36_engine.dll
2014-11-08 21:07 - 2014-11-08 21:07 - 00379888 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-10-26 03:54 - 2014-10-26 03:54 - 00000049 _____ () C:\MWBAM-SCAN.txt
2014-10-23 21:10 - 2014-10-23 21:11 - 00000000 ____D () C:\Program Files\GUM6BA4.tmp
2014-10-23 21:10 - 2014-10-23 21:10 - 00000000 _____ () C:\Program Files\GUT8F5A.tmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-09 01:13 - 2012-07-26 07:43 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-11-09 01:12 - 2014-10-04 15:44 - 01119124 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-09 01:09 - 2014-01-26 02:10 - 00000000 ____D () C:\Users\Andreas
2014-11-09 01:06 - 2013-09-01 05:30 - 00001126 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-09 01:02 - 2013-01-29 22:46 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-09 01:01 - 2013-02-06 14:00 - 00715776 ___SH () C:\Users\Andreas\Desktop\Thumbs.db
2014-11-09 01:00 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-09 00:16 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-11-09 00:05 - 2013-09-01 08:11 - 00000000 ____D () C:\Program Files\NCH Software
2014-11-09 00:05 - 2013-03-09 22:18 - 00000000 ____D () C:\Users\Andreas\Desktop\Apps&Progs
2014-11-09 00:04 - 2014-09-27 13:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-11-09 00:04 - 2013-11-14 09:09 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-09 00:02 - 2014-09-23 11:25 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-11-09 00:00 - 2014-01-26 02:44 - 00000000 __RDO () C:\Users\Andreas\SkyDrive
2014-11-09 00:00 - 2013-09-01 05:30 - 00001122 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-08 23:59 - 2013-08-22 08:23 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-08 23:59 - 2013-04-02 22:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-08 23:58 - 2013-08-22 09:17 - 00000000 __RSD () C:\WINDOWS\Media
2014-11-08 23:58 - 2013-08-22 07:13 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-08 23:40 - 2013-10-15 01:32 - 00000000 ____D () C:\Apps&Progs
2014-11-08 22:07 - 2013-09-01 05:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-11-08 21:42 - 2014-02-26 00:04 - 00000000 ____D () C:\Users\Andreas\AppData\Roaming\vlc
2014-11-08 21:32 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-08 21:03 - 2014-08-27 20:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreePDF
2014-11-08 20:30 - 2014-01-26 02:10 - 00000000 ____D () C:\Users\UpdatusUser.Machete81
2014-11-08 20:29 - 2013-11-10 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-11-08 20:29 - 2013-06-27 21:29 - 00000000 ____D () C:\Users\Andreas\AppData\Roaming\MyPhoneExplorer
2014-11-08 20:29 - 2013-03-31 03:10 - 00000000 ____D () C:\WINDOWS\pss
2014-11-08 20:28 - 2014-08-27 20:59 - 00000000 ____D () C:\Program Files\FreePDF_XP
2014-11-08 20:28 - 2013-09-14 04:52 - 00000000 ____D () C:\Program Files\MouseServer
2014-11-08 19:56 - 2013-08-22 09:17 - 00000000 ____D () C:\WINDOWS\registration
2014-11-08 19:55 - 2014-09-27 13:52 - 00000000 ____D () C:\Users\Andreas\AppData\Local\Comodo
2014-11-08 19:55 - 2014-08-04 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\THQ
2014-11-08 19:55 - 2013-11-10 03:23 - 00000000 ____D () C:\ProgramData\SAMSUNG
2014-11-08 19:55 - 2013-08-22 07:21 - 00000000 ___RD () C:\Users\Public
2014-11-08 19:54 - 2013-02-06 13:18 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-11-08 19:54 - 2013-02-06 13:17 - 00000000 ____D () C:\ProgramData\Apple
2014-11-08 19:50 - 2014-08-04 21:51 - 00000000 ____D () C:\Program Files\THQ
2014-11-08 19:50 - 2013-11-10 03:22 - 00000000 ____D () C:\Program Files\Samsung
2014-11-08 19:32 - 2013-09-14 04:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MouseServer
2014-10-30 12:24 - 2013-01-21 19:32 - 00229000 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-10-19 15:47 - 2013-08-16 20:12 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-10-18 16:24 - 2012-07-26 07:53 - 00000000 ____D () C:\WINDOWS\LiveKernelReports

Files to move or delete:
====================
C:\Users\Andreas\Apache_OpenOffice_incubating_3.4.1_Win_x86_install_de.exe
C:\Users\Andreas\DocumentsNTRsupport.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-09 00:16

==================== End Of Log ============================
--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-11-2014 01
Ran by Andreas at 2014-11-09 01:13:52
Running from C:\Users\Andreas\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
AllShare Framework DMS (HKLM\...\{1C2A409B-3D00-4EE7-B13C-3C70AB8704B0}) (Version: 1.3.23 - Samsung)
AMD Catalyst Install Manager (HKLM\...\{C2796CF4-6517-00C1-9F70-6A9C50680D29}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
ANNO 2070 (HKLM\...\{B48E264C-C8CD-4617-B0BE-46E977BAD694}) (Version: 1.0.0.0 - Ubisoft)
aTube Catcher (HKLM\...\aTube Catcher) (Version: 3.8.7918 - DsNET Corp)
aTube Catcher Version 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Audiograbber 1.83 SE  (HKLM\...\Audiograbber) (Version: 1.83 SE - Audiograbber Deutschland)
CCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
ElsterFormular (HKLM\...\ElsterFormular) (Version: 15.0.20140117 - Landesfinanzdirektion Thüringen)
EVEREST Home Edition v2.20 (HKLM\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
FreePDF (Remove only) (HKLM\...\FreePDF_XP) (Version:  - )
GIMP 2.6.8 (HKLM\...\WinGimp-2.0_is1) (Version:  - )
Google Drive (HKLM\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (Version: 1.3.25.5 - Google Inc.) Hidden
Java 7 Update 21 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217021FF}) (Version: 7.0.210 - Oracle)
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
MouseServer Version 1.5.0.0 (HKLM\...\{E13018F5-FFC7-4729-9C1B-1A85807D03E6}_is1) (Version: 1.5.0.0 - Necta Co.)
Mozilla Firefox 32.0.3 (x86 de) (HKLM\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MyPhoneExplorer (HKLM\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NVIDIA 3D Vision Treiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Grafiktreiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
OpenOffice.org 3.4.1 (HKLM\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PlanningPME (HKLM\...\{52AA9FE1-7943-4552-BCA1-220BA3DFB07A}) (Version: 1.0.0.0 - Target Skills)
Playlist Creator 3.6.2 (HKLM\...\Playlist Creator 3.6.2) (Version: 3.6.2.0 - oddgravity)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: 1.90 - Ghostgum Software Pty Ltd)
Samsung Link 1.8.0.1403060938 (HKLM\...\8474-7877-9059-0204) (Version: 1.8.0.1403060938 - Copyright 2013 SAMSUNG)
Scribus 1.4.4 (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)
The Whispered World (HKLM\...\{BD009869-6498-4CF9-9016-E9EA6E3742B2}) (Version: 1.00 - Deep Silver)
Ubisoft Game Launcher (HKLM\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
VisiPics V1.30 (HKLM\...\VisiPics_is1) (Version:  - Ozone)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2094352545-3968287851-2684274641-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Andreas\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

24-10-2014 17:33:59 Geplanter Prüfpunkt
08-11-2014 19:05:26 Geplanter Prüfpunkt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 07:13 - 2013-08-22 07:13 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {00704A85-0569-4166-8A60-E4EF7E6111BF} - System32\Tasks\0 => Iexplore.exe  <==== ATTENTION
Task: {484225AA-D839-472F-9F05-B49CC535010E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-01] (Google Inc.)
Task: {93F8D79D-E9BF-44F3-A559-8E1C5D74AC74} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated)
Task: {C0D0F7C4-419F-41B3-90A2-FE79270B828A} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {C9091FB4-BF05-45BD-8F36-96E35B5597AA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-01] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-12-11 16:46 - 2013-12-11 16:46 - 01114624 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
2013-07-23 19:18 - 2013-07-23 19:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
2013-10-22 09:48 - 2013-10-22 09:48 - 00707072 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
2013-10-24 16:53 - 2013-10-24 16:53 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
2013-12-11 16:46 - 2013-12-11 16:46 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
2013-10-24 16:53 - 2013-10-24 16:53 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
2013-04-19 16:38 - 2013-04-19 16:38 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
2013-12-11 16:46 - 2013-12-11 16:46 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
2013-10-25 19:49 - 2013-10-25 19:49 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
2013-12-11 16:45 - 2013-12-11 16:45 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
2013-10-25 19:53 - 2013-10-25 19:53 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
2013-10-25 19:53 - 2013-10-25 19:53 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
2013-12-11 16:45 - 2013-12-11 16:45 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
2013-10-25 19:53 - 2013-10-25 19:53 - 01033728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
2013-10-25 19:48 - 2013-10-25 19:48 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
2013-02-14 19:42 - 2013-02-14 19:42 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
2014-09-11 21:01 - 2014-09-11 21:02 - 00143360 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\ErrorReporting.dll
2014-03-29 04:32 - 2014-09-26 03:51 - 03715184 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-02-10 00:20 - 2014-02-10 00:20 - 00121856 _____ () C:\Users\Andreas\AppData\Roaming\Mozilla\Firefox\Profiles\o95dgwyb.default\extensions\{7443739c-bff6-4af0-aea5-7ed29006966c}\chrome\content\vmks32.dll
2014-09-09 20:02 - 2014-09-09 20:02 - 16825520 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Andreas\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "APSDaemon"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "SunJavaUpdateSched"
HKCU\...\StartupApproved\StartupFolder: => "OpenOffice.org 3.4.1.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Dropbox.lnk"

========================= Accounts: ==========================

Administrator (S-1-5-21-2094352545-3968287851-2684274641-500 - Administrator - Disabled)
Andreas (S-1-5-21-2094352545-3968287851-2684274641-1001 - Administrator - Enabled) => C:\Users\Andreas
Gast (S-1-5-21-2094352545-3968287851-2684274641-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2094352545-3968287851-2684274641-1008 - Limited - Enabled)
UpdatusUser (S-1-5-21-2094352545-3968287851-2684274641-1006 - Limited - Enabled) => C:\Users\UpdatusUser.Machete81

==================== Faulty Device Manager Devices =============

Name: Multimediacontroller
Description: Multimediacontroller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Videocontroller für Multimedia
Description: Videocontroller für Multimedia
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (11/08/2014 09:32:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm wwahost.exe, Version 6.3.9600.17031 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: d64

Startzeit: 01cffb925d522be0

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\system32\wwahost.exe

Berichts-ID: 50d3d123-6786-11e4-afed-0019214d0bcf

Vollständiger Name des fehlerhaften Pakets: Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (11/08/2014 09:31:22 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2014 09:18:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AllShareFrameworkDMS.exe, Version: 1.3.0.23, Zeitstempel: 0x52b52bb2
Name des fehlerhaften Moduls: pthreadVC2.dll, Version: 2.8.0.0, Zeitstempel: 0x458b2fea
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00007d71
ID des fehlerhaften Prozesses: 0xcb4
Startzeit der fehlerhaften Anwendung: 0xAllShareFrameworkDMS.exe0
Pfad der fehlerhaften Anwendung: AllShareFrameworkDMS.exe1
Pfad des fehlerhaften Moduls: AllShareFrameworkDMS.exe2
Berichtskennung: AllShareFrameworkDMS.exe3
Vollständiger Name des fehlerhaften Pakets: AllShareFrameworkDMS.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AllShareFrameworkDMS.exe5

Error: (11/08/2014 08:44:56 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2014 08:39:03 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (11/08/2014 08:00:09 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1552) SRUJet: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\WINDOWS\system32\SRU\SRU00723.log.

Error: (10/27/2014 08:10:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20605 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: a3c

Startzeit: 01cff218e3d1f29e

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: d791a5e3-5e0c-11e4-b005-0019214d0bcf

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1

Error: (10/27/2014 07:25:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm wwahost.exe, Version 6.3.9600.17031 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: aac

Startzeit: 01cff2129a7251aa

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\system32\wwahost.exe

Berichts-ID: 91557872-5e06-11e4-b005-0019214d0bcf

Vollständiger Name des fehlerhaften Pakets: Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (10/27/2014 07:10:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm wwahost.exe, Version 6.3.9600.17031 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: e04

Startzeit: 01cff2109b44c1fd

Endzeit: 4294967295

Anwendungspfad: C:\WINDOWS\system32\wwahost.exe

Berichts-ID: 77c7d1df-5e04-11e4-b005-0019214d0bcf

Vollständiger Name des fehlerhaften Pakets: Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App

Error: (10/27/2014 07:09:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.20605 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: be8

Startzeit: 01cff21069ace61a

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 5e621bca-5e04-11e4-b005-0019214d0bcf

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1


System errors:
=============
Error: (11/09/2014 00:53:36 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (11/09/2014 00:53:33 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (11/09/2014 00:53:30 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (11/09/2014 00:53:27 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (11/09/2014 00:53:24 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (11/09/2014 00:53:21 AM) (Source: disk) (EventID: 7) (User: )
Description: Fehlerhafter Block bei Gerät \Device\Harddisk0\DR0.

Error: (11/09/2014 00:01:23 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069

Error: (11/09/2014 00:01:23 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: 
%%1330

Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).

Error: (11/08/2014 11:59:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Samsung Link Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (11/08/2014 10:21:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1069


Microsoft Office Sessions:
=========================
Error: (11/08/2014 09:32:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.17031d6401cffb925d522be04294967295C:\WINDOWS\system32\wwahost.exe50d3d123-6786-11e4-afed-0019214d0bcfMicrosoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5cApp

Error: (11/08/2014 09:31:22 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\OpenOffice.org 3\Basis\program\python-core-2.6.1\lib\distutils\command\wininst-9.0-amd64.exe

Error: (11/08/2014 09:18:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AllShareFrameworkDMS.exe1.3.0.2352b52bb2pthreadVC2.dll2.8.0.0458b2feac000000500007d71cb401cffb912682487eC:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exeC:\Program Files\Samsung\AllShare Framework DMS\1.3.23\pthreadVC2.dll66807ec3-6784-11e4-afed-0019214d0bcf

Error: (11/08/2014 08:44:56 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\OpenOffice.org 3\Basis\program\python-core-2.6.1\lib\distutils\command\wininst-9.0-amd64.exe

Error: (11/08/2014 08:39:03 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\OpenOffice.org 3\Basis\program\python-core-2.6.1\lib\distutils\command\wininst-9.0-amd64.exe

Error: (11/08/2014 08:00:09 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost1552SRUJet: C:\WINDOWS\system32\SRU\SRU00723.log-1811 (0xfffff8ed)

Error: (10/27/2014 08:10:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20605a3c01cff218e3d1f29e4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exed791a5e3-5e0c-11e4-b005-0019214d0bcfmicrosoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (10/27/2014 07:25:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.17031aac01cff2129a7251aa4294967295C:\WINDOWS\system32\wwahost.exe91557872-5e06-11e4-b005-0019214d0bcfMicrosoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5cApp

Error: (10/27/2014 07:10:08 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: wwahost.exe6.3.9600.17031e0401cff2109b44c1fd4294967295C:\WINDOWS\system32\wwahost.exe77c7d1df-5e04-11e4-b005-0019214d0bcfMicrosoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5cApp

Error: (10/27/2014 07:09:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: LiveComm.exe17.5.9600.20605be801cff21069ace61a4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbwe\LiveComm.exe5e621bca-5e04-11e4-b005-0019214d0bcfmicrosoft.windowscommunicationsapps_17.5.9600.20605_x86__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1


CodeIntegrity Errors:
===================================
  Date: 2014-09-17 22:59:29.194
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:59:29.194
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:59:29.053
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:59:29.022
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:59:28.944
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:59:28.912
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:58:23.803
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:58:23.787
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:58:23.615
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-09-17 22:58:23.615
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Percentage of memory in use: 46%
Total physical RAM: 3327.3 MB
Available physical RAM: 1794.92 MB
Total Pagefile: 3903.3 MB
Available Pagefile: 2228.57 MB
Total Virtual: 2047.88 MB
Available Virtual: 1862.12 MB

==================== Drives ================================

Drive c: (Speicher1) (Fixed) (Total:303.35 GB) (Free:33.46 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Speicher2Sicherung) (Fixed) (Total:150.69 GB) (Free:130.41 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 3CBBA962)
Partition 1: (Not Active) - (Size=11.7 GB) - (Type=27)
Partition 2: (Active) - (Size=303.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=150.7 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Der Scan mit GMER lief dann nicht durch, auch im abgesicherten Modus nicht. hier kam sogar diese Fehlermeldung:

-2.fehlermeldunggmer_html_b5177db.jpg



Ich hatte mich hiermit zuerst im falschen Themenbereich gemeldet. Hoffe ich kann da gleich noch was schließen/ löschen.

Jedenfalls freue ich mich schon was zu hören.
Geändert von machete81 (09.11.2014 um 04:10 Uhr)

 

Themen zu Win 8.1/nach Update langsamer/Abstürze
.dll, adobe, adware, booten, browser, defender, desktop, explorer, fehler?, fehlermeldung, firefox, flash player, google, helper, home, iexplore.exe, monitor, mozilla, musik, problem, programm, security, services.exe, svchost.exe, vista, windowsapps, winlogon.exe


« DOPPELPOST -- Malware taucht in keinem Programm da -X-pert Web 0.2 und Cisco-Systems | DOPPELPOST --- Windows 7: Jolley Wallet »


Ähnliche Themen: Win 8.1/nach Update langsamer/Abstürze


  1. Win 8.1/nach Update langsamer/Abstürze
    Plagegeister aller Art und deren Bekämpfung - 18.12.2014 (17)
  2. Java Update Meldungen und Laptop langsamer geworden
    Plagegeister aller Art und deren Bekämpfung - 12.12.2014 (15)
  3. Langsamer PC, neue Dateien und Pc-Abstürze
    Plagegeister aller Art und deren Bekämpfung - 23.10.2014 (9)
  4. nach firefox update nur noch werbung und popups manchmal auch abstürze!!
    Plagegeister aller Art und deren Bekämpfung - 18.03.2014 (20)
  5. Problem: Unerwartete Abstürze nach Virenfund
    Plagegeister aller Art und deren Bekämpfung - 20.04.2013 (26)
  6. Schwere Fehler / Abstürze nach Windows 7 Installation
    Alles rund um Windows - 03.10.2012 (29)
  7. Dauernd Abstürze, Bluescreens nach löschen von diversen Trojanern
    Log-Analyse und Auswertung - 20.02.2011 (1)
  8. Langsamer PC / Bluesceen / Abstürze uvm.
    Log-Analyse und Auswertung - 13.12.2010 (1)
  9. Nach Trojaner-Angriff lahmer Systemstart, häufige Abstürze.
    Log-Analyse und Auswertung - 28.10.2010 (21)
  10. Adobe denkt über kürzere Update-Zyklen und die Nutzung von Microsoft Update nach
    Nachrichten - 27.05.2010 (0)
  11. Abstürze nach Entfernung von Antimalware Doctor
    Plagegeister aller Art und deren Bekämpfung - 13.05.2010 (13)
  12. PC Abstürze - nach einiger Spielzeit Bluescreen
    Log-Analyse und Auswertung - 03.10.2009 (0)
  13. Logfile Analyse - Langsamer CPU und gelegentliche Abstürze
    Log-Analyse und Auswertung - 04.08.2009 (4)
  14. Langsamer PC und abstürze; Logfile gepostet
    Mülltonne - 08.07.2008 (0)
  15. Nach Windows Update Internet Explorer schließt sich nach dem öffen kann es sein ?
    Log-Analyse und Auswertung - 15.12.2007 (3)
  16. NACH IE7 Installation Abstürze
    Plagegeister aller Art und deren Bekämpfung - 26.11.2006 (4)
  17. SYSTEM WIRD LANGSAMER, Abstürze mit Treiber s3mt3d
    Log-Analyse und Auswertung - 12.05.2006 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Win 8.1/nach Update langsamer/Abstürze - Hallo, "schön" hier mal wieder aktiv sein zu dürfen. Genauer als im Titel kann ich mein Problem gar nicht beschreiben, nur das mein PC auch beim booten in der Dauerschleife - Win 8.1/nach Update langsamer/Abstürze...
Archiv
Du betrachtest: Win 8.1/nach Update langsamer/Abstürze auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130