Funde von AdwCleaner
Hallo,
AdwCleaner hat einiges gefunden bei mir.Alles wurde gelöscht.
Malewarebytes keinen Fund.
Wie soll ich weiter verfahren?
PC läuft ohne Beanstandung
LGG Code:
# AdwCleaner v3.202 - Bericht erstellt am 24/04/2014 um 15:07:03
# Aktualisiert 23/04/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (32 bits)
# Benutzername : Claus - CLAUS-PC
# Gestartet von : C:\Users\Claus\Desktop\adwcleaner.exe
# Option : Suchen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gefunden : C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc
Ordner Gefunden C:\Users\Claus\.android
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Schlüssel Gefunden : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3152E1F19977892449DC968802CE8964
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17041
-\\ Mozilla Firefox v28.0 (de)
[ Datei : C:\Users\Claus\AppData\Roaming\Mozilla\Firefox\Profiles\vtz5bua3.default-1388416262325\prefs.js ]
-\\ Google Chrome v34.0.1847.116
[ Datei : C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gefunden [Search Provider] : hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=88f2bb2b-14bc-eee6-f7d4-2ef919381ebc&searchtype=ds&q={searchTerms}&installDate=24/09/2013
Gefunden [Search Provider] : hxxp://www.searchqu.com/web?src=crb&appid=0&systemid=410&sr=0&q={searchTerms}
Gefunden [Search Provider] : hxxps://isearch.avg.com/search?cid={88A5AD82-7272-4287-B6E8-B77814DD6322}&mid=e198fa22729647d088e1d154d464d211-3c56dded76437bca60bdb29aaffab015db7cae2f&lang=de&ds=is015&pr=sa&d=2013-01-30 15:01:35&v=13.2.0.3&sap=dsp&q={searchTerms}
Gefunden [Search Provider] : hxxp://dts.search-results.com/sr?src=crb&appid=0&systemid=410&sr=0&q={searchTerms}
Gefunden [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2319825&SearchSource=3&q={searchTerms}
Gefunden [Search Provider] : hxxp://www.bigseekpro.com/search/browser/burn4free/{F1DBE676-F32B-4EA6-AC7D-D3707C6119A2}?q={searchTerms}
Gefunden [Search Provider] : hxxp://int.search-results.com/web?q={searchTerms}&o=15527&l=dis&prt=NIS&chn=retail&geo=DE&ver=18
Gefunden [Search Provider] : hxxp://websearch.ask.com/redirect?client=ff&src=crm&tb={tb}&o={o}&locale={locale}&apn_uid={id}&apn_ptnrs={cbid}&apn_sauid={said}&apn_dtid={dtid}&q={searchTerms}
Gefunden [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&affID=110187&tt=4212_4&babsrc=SP_ss&mntrId=08dd60a3000000000000001d92803be2
Gefunden [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN27676765639092256&ctid=CT3312331&UM=2
Gefunden [Search Provider] : hxxp://de.ask.com/web?q={searchTerms}
Gefunden [Extension] : amfclgbdpgndipgoegfpkkgobahigbcl
Gefunden [Extension] : gflandjopdloblmlcoiidmncpinmmacn
Gefunden [Extension] : kpdjmbiefanbdgnkcikhllpmjnnllbbc
*************************
AdwCleaner[R0].txt - [958 octets] - [16/12/2013 12:49:20]
AdwCleaner[R10].txt - [1615 octets] - [05/01/2014 19:28:19]
AdwCleaner[R11].txt - [1676 octets] - [11/01/2014 18:55:14]
AdwCleaner[R12].txt - [1737 octets] - [14/01/2014 19:33:27]
AdwCleaner[R13].txt - [1928 octets] - [22/01/2014 19:45:56]
AdwCleaner[R14].txt - [1920 octets] - [22/01/2014 20:12:39]
AdwCleaner[R15].txt - [1981 octets] - [24/01/2014 15:32:31]
AdwCleaner[R16].txt - [2043 octets] - [29/01/2014 19:11:54]
AdwCleaner[R17].txt - [2087 octets] - [31/01/2014 12:05:16]
AdwCleaner[R18].txt - [2202 octets] - [11/02/2014 11:32:47]
AdwCleaner[R19].txt - [2263 octets] - [12/02/2014 17:28:54]
AdwCleaner[R1].txt - [982 octets] - [16/12/2013 12:51:30]
AdwCleaner[R20].txt - [2319 octets] - [17/02/2014 19:25:01]
AdwCleaner[R21].txt - [2782 octets] - [26/02/2014 21:26:55]
AdwCleaner[R22].txt - [2471 octets] - [26/02/2014 21:32:32]
AdwCleaner[R23].txt - [2532 octets] - [27/02/2014 18:20:38]
AdwCleaner[R24].txt - [2581 octets] - [28/02/2014 12:51:25]
AdwCleaner[R25].txt - [2834 octets] - [04/03/2014 11:42:33]
AdwCleaner[R26].txt - [2817 octets] - [07/03/2014 17:29:00]
AdwCleaner[R27].txt - [2866 octets] - [11/03/2014 13:27:36]
AdwCleaner[R28].txt - [2957 octets] - [11/03/2014 13:40:01]
AdwCleaner[R29].txt - [3006 octets] - [15/03/2014 12:00:35]
AdwCleaner[R2].txt - [1053 octets] - [17/12/2013 09:17:49]
AdwCleaner[R30].txt - [3162 octets] - [19/03/2014 19:14:12]
AdwCleaner[R31].txt - [3198 octets] - [28/03/2014 12:39:49]
AdwCleaner[R32].txt - [3302 octets] - [06/04/2014 19:39:09]
AdwCleaner[R33].txt - [3380 octets] - [06/04/2014 19:43:43]
AdwCleaner[R34].txt - [3441 octets] - [09/04/2014 11:45:28]
AdwCleaner[R35].txt - [3640 octets] - [13/04/2014 18:27:31]
AdwCleaner[R36].txt - [3623 octets] - [17/04/2014 11:09:05]
AdwCleaner[R37].txt - [4981 octets] - [24/04/2014 15:07:03]
AdwCleaner[R3].txt - [1114 octets] - [20/12/2013 15:17:12]
AdwCleaner[R4].txt - [1437 octets] - [24/12/2013 15:37:19]
AdwCleaner[R5].txt - [1300 octets] - [25/12/2013 10:43:37]
AdwCleaner[R6].txt - [1360 octets] - [28/12/2013 10:46:01]
AdwCleaner[R7].txt - [1434 octets] - [30/12/2013 20:36:42]
AdwCleaner[R8].txt - [1494 octets] - [01/01/2014 19:21:55]
AdwCleaner[R9].txt - [1554 octets] - [02/01/2014 11:42:18]
AdwCleaner[S0].txt - [1498 octets] - [24/12/2013 15:38:36]
AdwCleaner[S1].txt - [1988 octets] - [22/01/2014 19:48:46]
AdwCleaner[S2].txt - [2821 octets] - [26/02/2014 21:30:02]
AdwCleaner[S3].txt - [2873 octets] - [04/03/2014 11:44:29]
AdwCleaner[S4].txt - [2905 octets] - [11/03/2014 13:29:26]
AdwCleaner[S5].txt - [3222 octets] - [19/03/2014 19:15:43]
AdwCleaner[S6].txt - [3364 octets] - [06/04/2014 19:40:50]
AdwCleaner[S7].txt - [3700 octets] - [13/04/2014 18:29:48]
########## EOF - C:\AdwCleaner\AdwCleaner[R37].txt - [5942 octets] ##########
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-04-2014
Ran by Claus (administrator) on CLAUS-PC on 24-04-2014 15:23:15
Running from C:\Users\Claus\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(BillP Studios) C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
(Secure Banking) C:\Program Files\Secure Banking\SecureBanking.exe
(AVM Berlin) C:\Program Files\FRITZ!DSL\FwebProt.exe
(AVM Berlin) C:\Program Files\FRITZ!DSL\IGDCTRL.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Dominik Reichl) C:\Program Files\KeePass Password Safe 2\KeePass.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\Secure Banking\sbservice.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(AVM Berlin) C:\Program Files\FRITZ!DSL\StCenter.EXE
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(SarbyxLabs) C:\Program Files\SarbyxTrayClock\trayclock.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-04-24] (AVAST Software)
HKU\S-1-5-21-3193897139-333771760-13577277-1000\...\Run: [WinPatrol] => C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [496192 2014-02-25] (BillP Studios)
HKU\S-1-5-21-3193897139-333771760-13577277-1000\...\Run: [SecureBanking] => C:\Program Files\Secure Banking\SecureBanking.exe [507904 2013-06-30] (Secure Banking)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FRITZ!DSL Protect.lnk
ShortcutTarget: FRITZ!DSL Protect.lnk -> C:\Program Files\FRITZ!DSL\FwebProt.exe (AVM Berlin)
Startup: C:\Users\Claus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Email.lnk
ShortcutTarget: Email.lnk -> C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation)
Startup: C:\Users\Claus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NeueDatenbank.kdbx ()
==================== Internet (Whitelisted) ====================
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
Handler: AutorunsDisabled\grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: AutorunsDisabled\ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: AutorunsDisabled\skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: AutorunsDisabled\viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - No File
Handler: AutorunsDisabled\wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
Filter: AutorunsDisabled - No CLSID Value - No File
Winsock: Catalog5 09 C:\Program Files\FRITZ!DSL\\sarah.dll [28472] (AVM Berlin)
Winsock: Catalog9 01 C:\Program Files\FRITZ!DSL\\sarah.dll [28472] (AVM Berlin)
Winsock: Catalog9 02 C:\Program Files\FRITZ!DSL\\sarah.dll [28472] (AVM Berlin)
Winsock: Catalog9 03 C:\Program Files\FRITZ!DSL\\sarah.dll [28472] (AVM Berlin)
Winsock: Catalog9 24 C:\Program Files\FRITZ!DSL\\sarah.dll [28472] (AVM Berlin)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Claus\AppData\Roaming\Mozilla\Firefox\F:\Firefox Acronis
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru [2013-09-18]
FF Extension: Anti-Banner - C:\Program Files\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2 [2013-09-18]
FF Extension: Modul zur Link-Untersuchung - C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2 [2013-09-18]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-03-24]
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR StartupUrls: "https://kunde.onvista-bank.de/login.html","hxxp://www.onvista.de/"]},"sync":{"acknowledged_types":["Bookmarks","Preferences","Passwords","Autofill Profiles","Autofill","Themes","Typed URLs","Extensions","Search Engines","Sessions","Apps","App settings","Extension settings","History Delete Directives","Synced Notifications","Dictionary","Favicon Images","Favicon Tracking","Priority Preferences","Managed Users","Tabs","Encryption keys"],"app_settings":false,"apps":false,"autofill":false,"autofill_profile":false,"bookmarks":true,"dictionary":false,"encryption_bootstrap_token":"AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAheK/SJ3PJECHmC0699ldYQAAAAACAAAAAAAQZgAAAAEAACAAAACTFTg63AMfygl0IWeggaxQaK1qDH/iJGah161kxF/OcQAAAAAOgAAAAAIAACAAAABWjysKwOFFj3yuXet+HCqQtF4vCxkI04MEArMVG7hYRkAAAADBYfagQ/K9bSQlN8IdLVG6nL16HV2IVN3Sx/DFlzDJVppZzzVd46TGp9OQnow+wGQCQeDfowb6oftI1aNI+5S/QAAAAFMgpGRAw4uNJxSiFJJeqKuhh3ClB9L2pXHWHZn8VHZq0H85tPfGHEPW4EkodJnFcybEW6l6qcguHn1IN1HWA2Y=","extension_settings":false,"extensions":false,"favicon_images":false,"favicon_tracking":false,"has_auth_error":true,"has_setup_completed":true,"history_delete_directives":false,"keep_everything_synced":false,"keystore_encryption_bootstrap_token":"AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAheK/SJ3PJECHmC0699ldYQAAAAACAAAAAAAQZgAAAAEAACAAAACiRSwJkOnqgYoLdDxG9okFLlgRUYzmAuMRXCbjQuYCUgAAAAAOgAAAAAIAACAAAACfVHASGUV+nxBugMAFNXUkC8EPgBwoCmbU30MdvpnONVAAAADXD7taYxD3Wfib3+oN+C6WmznXAg/4RHXC/KSYLcoIMXVO2TiQY4K0fyAZDhlM6QaFAPPeO0M6uFcCViCI2hRVhhKNqF5Ip/EwJVofKon23UAAAADFP6ZP4ZNEDEuZvqzjQKrqTu6YzZl4Q3P+2Ea4SOf2b/1Hu0hGLKStU4KLCxV5dgpclqrR5n4yAMfSwYg/se2R","last_synced_time":"13042627458907234","managed_users":false,"passwords":false,"preferences":false,"priority_preferences":false,"search_engines":false,"session_sync_guid":"session_synch0KhZt7FqUC5LnrmSE/NBQ==","sessions":false,"suppress_start":false,"synced_notifications":false,"tabs":false,"themes":false,"typed_urls":false},"sync_promo":{"user_skipped":true},"synced_notification":{"enabled_sending_services":["Google+"],"first_run":false,"initialized_sending_services":["Google+"]},"translate":{"enabled":false},"translate_accepted_count":{"en":0},"translate_blocked_languages":["de","en"],"translate_denied_count":{"en":5},"translate_language_blacklist":["en"],"translate_site_blacklist":["acmfnomgphggonodopogfbmkneepfgnh"],"translate_whitelists"
CHR Extension: (HIFANA X W+K TOKYO LAB) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmhjjmolopikkbigemoocmebohfpnmkj [2014-02-05]
CHR Extension: (Next Browser Sync Plus for Chrome) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\eikaoeimlnplikakodlifpagiklbnefj [2014-03-01]
CHR Extension: (Google Calendar) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-02-05]
CHR Extension: (Bookmarks Menu) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffmdedmghpoipeldijkdlcckdpempkdi [2014-02-05]
CHR Extension: (AdBlock) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-10-05]
CHR Extension: (RSS Live Links) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcamnijgggppihioleoenjmlnakejdph [2013-10-05]
CHR Extension: (Print) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\idfnpgjblkahngbondojabhffkkdekbd [2013-10-05]
CHR Extension: (Calc SS3) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\iicfbobganffbpdodmdcbcpblomkbeoa [2014-02-05]
CHR Extension: (Dropbox) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-02-05]
CHR Extension: (Cookies) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphcomljdfghbkdcfndaijbokpgddeno [2013-10-05]
CHR Extension: (No Name) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2013-10-05]
CHR Extension: (Ghostery) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-02-05]
CHR Extension: (FastestFox for Chrome) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm [2014-02-05]
CHR Extension: (Print) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmiefodmmloajakmcfnpnjpkldellhlj [2014-02-05]
CHR Extension: (Bookmarked tabs to the front) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmllilpdpplbmjdjhlkagmimpgdflphb [2013-10-06]
CHR Extension: (Google Bookmarks) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\mnedccijmniojgaehpjebjfpkmafecho [2014-02-05]
CHR Extension: (Google Wallet) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-15]
CHR Extension: (ScriptSafe) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiigbmnaadbkfbmpbfijlflahbdbdgdf [2013-10-05]
CHR Extension: (Google Calendar Checker) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ookhcbgokankfmjafalglpofmolfopek [2014-02-05]
CHR Extension: (Dolphin Connect) - C:\Users\Claus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pajecklcmiegagoelbbjldmfcbcpdpll [2014-03-04]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-24]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [805032 2011-09-22] (Acronis)
S4 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2013-03-03] (Acronis)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-24] (AVAST Software)
S3 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64624 2014-04-14] (CyberGhost S.R.L)
S4 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [250200 2013-09-19] (Garmin Ltd or its subsidiaries)
R2 IGDCTRL; C:\Program Files\FRITZ!DSL\IGDCTRL.EXE [73528 2009-07-28] (AVM Berlin)
S3 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S4 FGICNHGYUO; C:\Users\Claus\AppData\Local\Temp\FGICNHGYUO.exe [X]
S4 KWHGZNP; C:\Users\Claus\AppData\Local\Temp\KWHGZNP.exe [X]
==================== Drivers (Whitelisted) ====================
S3 ampa; C:\Windows\system32\ampa.sys [12728 2011-12-26] ()
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-04-24] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-04-24] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-04-24] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-04-24] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-04-24] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-04-24] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [67776 2014-04-24] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180632 2014-04-24] ()
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [31576 2013-01-31] (AVG Technologies)
R3 CMISTOR; C:\Windows\System32\DRIVERS\cmiucr.SYS [93056 2007-01-12] (C-Media Corporation)
R3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [57800 2009-10-22] (FTDI Ltd.)
S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [15720 2012-04-18] (GARMIN Corp.)
R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [225856 2011-04-25] (QFX Software Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2014-04-24] (Malwarebytes Corporation)
S3 pneteth; C:\Windows\System32\DRIVERS\pneteth.sys [13440 2011-11-25] (June Fabrics Technology Inc.)
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-12-06] (Secunia)
S3 RRNetCap; C:\Windows\System32\DRIVERS\rrnetcap.sys [31848 2012-11-06] (RapidSolution Software AG)
R3 RRNetCapMP; C:\Windows\System32\DRIVERS\rrnetcap.sys [31848 2012-11-06] (RapidSolution Software AG)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [60544 2012-10-22] (Silicon Laboratories)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2013-09-20] ()
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R3 tbhsd; C:\Windows\System32\drivers\tbhsd.sys [39048 2012-11-06] (RapidSolution Software AG)
S3 usbcamcl; C:\Windows\System32\DRIVERS\usbcamcl.sys [28416 2011-08-18] (usb camera)
S4 A2DDA; \??\C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys [X]
S3 catchme; \??\C:\Users\Claus\AppData\Local\Temp\catchme.sys [X]
S4 cleanhlp; \??\C:\Program Files\Emsisoft Anti-Malware\cleanhlp32.sys [X]
U3 DfSdkS;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-24 15:21 - 2014-04-24 15:23 - 00018063 _____ () C:\Users\Claus\Desktop\FRST.txt
2014-04-24 15:20 - 2014-04-24 15:20 - 01048576 _____ (Farbar) C:\Users\Claus\Desktop\FRST.exe
2014-04-24 15:18 - 2014-04-24 15:19 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2014-04-24 15:10 - 2014-04-24 15:10 - 00006023 _____ () C:\Users\Claus\Desktop\AdwCleaner[R37].txt
2014-04-24 15:09 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-04-24 14:39 - 2014-04-24 14:39 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-24 14:39 - 2014-04-24 14:39 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-23 09:11 - 2014-04-23 09:12 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-23 09:11 - 2014-04-14 04:11 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-23 09:11 - 2014-04-14 04:07 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-20 18:04 - 2014-04-20 18:04 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-04-20 17:57 - 2014-04-16 09:31 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-20 17:57 - 2014-04-16 09:31 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-20 17:57 - 2014-04-16 09:31 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-20 17:57 - 2014-04-16 09:31 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-20 13:39 - 2014-04-20 13:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secure Banking
2014-04-20 13:39 - 2014-04-20 13:39 - 00000000 ____D () C:\Program Files\Secure Banking
2014-04-16 09:31 - 2014-04-16 09:31 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-09 09:12 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-09 09:12 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-09 09:11 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-09 09:11 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-09 09:11 - 2014-03-06 10:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-09 09:11 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-09 09:11 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-09 09:11 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-09 09:11 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-09 09:11 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-09 09:11 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-09 09:11 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-09 09:11 - 2014-03-06 09:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-09 09:11 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-09 09:11 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-09 09:11 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-09 09:11 - 2014-03-06 09:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-09 09:11 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-09 09:11 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-09 09:11 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-09 09:11 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-09 09:11 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-09 09:11 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-09 09:11 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-09 09:11 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-09 09:11 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-09 08:31 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 08:31 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 08:31 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 08:31 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 08:31 - 2014-01-24 04:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-09 08:30 - 2014-03-04 11:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-07 17:38 - 2014-04-07 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
2014-04-07 17:38 - 2014-04-07 17:38 - 00000000 ____D () C:\Program Files\KeyScrambler
2014-04-07 17:38 - 2011-04-25 00:14 - 00225856 _____ (QFX Software Corporation) C:\Windows\system32\Drivers\keyscrambler.sys
==================== One Month Modified Files and Folders =======
2014-04-24 15:23 - 2014-04-24 15:21 - 00018063 _____ () C:\Users\Claus\Desktop\FRST.txt
2014-04-24 15:23 - 2013-12-21 10:14 - 00000000 ____D () C:\FRST
2014-04-24 15:21 - 2012-12-31 17:17 - 00000000 ____D () C:\Users\Claus\AppData\Roaming\FRITZ!
2014-04-24 15:21 - 2009-07-14 06:34 - 00031280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-24 15:21 - 2009-07-14 06:34 - 00031280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-24 15:20 - 2014-04-24 15:20 - 01048576 _____ (Farbar) C:\Users\Claus\Desktop\FRST.exe
2014-04-24 15:19 - 2014-04-24 15:18 - 00040776 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2014-04-24 15:19 - 2013-05-01 11:47 - 02020272 _____ () C:\Windows\WindowsUpdate.log
2014-04-24 15:18 - 2014-03-24 09:06 - 00018325 _____ () C:\Users\Claus\DesktopStCenter.txt
2014-04-24 15:16 - 2014-02-26 21:09 - 00004872 _____ () C:\Windows\setupact.log
2014-04-24 15:16 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-24 15:11 - 2013-12-16 12:49 - 00000000 ____D () C:\AdwCleaner
2014-04-24 15:11 - 2008-07-10 15:01 - 00000000 ____D () C:\Users\Claus
2014-04-24 15:10 - 2014-04-24 15:10 - 00006023 _____ () C:\Users\Claus\Desktop\AdwCleaner[R37].txt
2014-04-24 14:55 - 2012-10-19 18:35 - 00000000 ____D () C:\Users\Claus\AppData\Roaming\KeePass
2014-04-24 14:48 - 2014-03-23 10:07 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-24 14:46 - 2013-01-02 15:12 - 00000000 ____D () C:\Users\Claus\AppData\Roaming\Skype
2014-04-24 14:39 - 2014-04-24 14:39 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-24 14:39 - 2014-04-24 14:39 - 00024184 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-24 14:39 - 2014-03-24 18:20 - 00180632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00067776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-24 14:39 - 2014-03-24 18:20 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-24 13:49 - 2012-10-19 18:08 - 00000000 ___RD () C:\Users\Claus\Ferienwohnung
2014-04-23 10:19 - 2012-10-20 14:11 - 00000000 ____D () C:\Users\Claus\AppData\Roaming\Canon
2014-04-23 09:12 - 2014-04-23 09:11 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-21 08:39 - 2013-10-06 14:32 - 02113250 _____ () C:\Windows\PFRO.log
2014-04-20 18:04 - 2014-04-20 18:04 - 00000983 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-04-20 17:56 - 2013-07-03 11:34 - 00000000 ____D () C:\Program Files\Java
2014-04-20 13:39 - 2014-04-20 13:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secure Banking
2014-04-20 13:39 - 2014-04-20 13:39 - 00000000 ____D () C:\Program Files\Secure Banking
2014-04-19 18:26 - 2012-10-19 18:12 - 00000000 ___RD () C:\Users\Claus\Computer
2014-04-17 09:38 - 2013-12-21 12:15 - 00000000 ____D () C:\Program Files\CyberGhost 5
2014-04-17 09:19 - 2012-10-19 18:13 - 00000000 ___RD () C:\Users\Claus\Elli
2014-04-17 08:44 - 2010-11-20 23:01 - 01628944 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-16 09:31 - 2014-04-20 17:57 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-16 09:31 - 2014-04-20 17:57 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-16 09:31 - 2014-04-20 17:57 - 00176040 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-16 09:31 - 2014-04-20 17:57 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-16 09:31 - 2014-04-16 09:31 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-16 09:30 - 2013-09-16 16:40 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-16 09:26 - 2013-06-13 15:36 - 00000000 ____D () C:\Users\Claus\AppData\Local\CrashDumps
2014-04-14 16:40 - 2013-10-14 19:11 - 00000000 ____D () C:\Program Files\SpywareBlaster
2014-04-14 14:40 - 2013-01-30 18:30 - 00000000 ___RD () C:\Users\Claus\Documents\Spaces
2014-04-14 14:40 - 2013-01-30 18:07 - 00000000 ____D () C:\Users\Claus\AppData\Roaming\TeamDrive3
2014-04-14 04:11 - 2014-04-23 09:11 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-14 04:07 - 2014-04-23 09:11 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-13 15:05 - 2012-10-19 18:12 - 00000000 ___RD () C:\Users\Claus\Claus
2014-04-11 09:27 - 2013-12-16 20:14 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-04-11 09:12 - 2013-12-16 20:13 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-10 17:30 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-04-10 15:22 - 2013-08-20 15:44 - 00000940 _____ () C:\Users\Public\Desktop\TeamDrive 3.lnk
2014-04-10 15:22 - 2013-01-30 18:07 - 00000000 ____D () C:\Program Files\TeamDrive 3
2014-04-09 19:01 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-04-09 16:46 - 2012-12-26 17:53 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-04-09 16:46 - 2012-12-26 17:53 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-04-09 08:38 - 2012-10-19 18:49 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-09 08:36 - 2013-08-14 16:14 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 08:33 - 2012-10-18 14:53 - 88028728 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-07 17:38 - 2014-04-07 17:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeyScrambler
2014-04-07 17:38 - 2014-04-07 17:38 - 00000000 ____D () C:\Program Files\KeyScrambler
2014-03-25 13:57 - 2014-03-19 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
Some content of TEMP:
====================
C:\Users\Claus\AppData\Local\temp\2036_alwa_driver.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni337637918664048555.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni3546504778801893836.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni377712893114484503.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni5403523924143083330.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni5730231987989354587.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni6957553296321818551.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni7549861949636468681.dll
C:\Users\Claus\AppData\Local\temp\cardreader_jni8781248823872255245.dll
C:\Users\Claus\AppData\Local\temp\Foxit Reader Updater.exe
C:\Users\Claus\AppData\Local\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-04-19 16:38
==================== End Of Log ============================
Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-04-2014
Ran by Claus at 2014-04-24 15:24:02
Running from C:\Users\Claus\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Acronis*True*Image*Home 2011 (HKLM\...\{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}) (Version: 14.0.6942 - Acronis)
Adobe Flash Player 13 ActiveX (HKLM\...\{8F9B1C8E-F50E-4139-8701-45016021E102}) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM\...\{28ADCCAD-3C23-44A1-A93F-47AA176F7AD7}) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Allgäu Walser Card 2013 (HKLM\...\Allgäu Walser Card 2013) (Version: - OberAllgäu Tourismus Service GmbH)
Android SDK Tools (HKLM\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
AOMEI Partition Assistant Home Edition 5.1 (HKLM\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - Aomei Technology Co., Ltd.)
Audials (HKLM\...\{DC8B9A86-0EB5-4178-BCC0-DBDF1F529378}) (Version: 10.0.46604.300 - Audials AG)
Auerswald ETS-4308 I 2.5 (HKLM\...\{17ABC860-66F2-44BC-9A64-237CD335A51E}) (Version: 2.5 - Auerswald GmbH & Co.KG)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2018 - Avast Software)
AVM FRITZ!DSL (HKLM\...\{74A929E2-FBD8-4736-A84E-2ABBB2ABADF2}) (Version: 2.04.03 - AVM Berlin)
Biet-O-Matic v2.14.8 (HKLM\...\Biet-O-Matic v2.14.8) (Version: 2.14.8 - BOM Development Team)
Canon iP4700 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4700_series) (Version: - Canon Inc.)
CanoScan Toolbox Ver4.1 (HKLM\...\{BCE46757-7674-4416-BEDB-68205A60409E}) (Version: - )
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4214 - CDBurnerXP)
CM Installer (HKLM\...\{681544C2-FFA2-4CFD-A9AD-2A3D25DF8D22}) (Version: 1.0.0.0 - Cyanogen Inc.)
C-Media Card Reader Driver USB2.0 (HKLM\...\C-Media Card Reader Driver USB2.0) (Version: - )
CrystalDiskInfo 5.0.5 Shizuku Edition (HKLM\...\CrystalDiskInfo_is1) (Version: 5.0.5 - Crystal Dew World)
CyberGhost 5 (HKLM\...\CyberGhost 5_is1) (Version: - CyberGhost S.R.L.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.16 - Piriform)
Deutsche Post E-Porto (HKLM\...\{5CCF8330-F742-411A-8A04-719806D168B5}) (Version: 2.3.0 - Deutsche Post AG)
Elevated Installer (Version: 2.3.14.0 - Garmin Ltd or its subsidiaries) Hidden
ERUNT 1.1j (HKLM\...\ERUNT_is1) (Version: - Lars Hederer)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.1.4.217 - Foxit Corporation)
Free Mp3 Wma Converter V 2.2 (HKLM\...\Free Mp3 Wma Converter_is1) (Version: 2.2.0.0 - Koyote Soft)
Garmin Express (HKLM\...\{9471d6bd-67a9-40f6-a420-2ae4f08ef003}) (Version: 2.3.14.0 - Garmin Ltd or its subsidiaries)
Garmin Express (Version: 2.3.14.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (Version: 2.3.14.0 - Garmin Ltd or its subsidiaries) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM\...\{6F545E5E-4595-11E2-93B6-B8AC6F97B88E}) (Version: 7.0.2.8415 - Google)
Google Earth (HKLM\...\{A2264E8F-1649-11E3-8BED-B8AC6F98CCE3}) (Version: 7.1.2.2019 - Google)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java 8 Update 5 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218005FF}) (Version: 8.0.50 - Oracle Corporation)
Java Auto Updater (Version: 2.8.05.13 - Oracle, Inc.) Hidden
Junk Mail filter update (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
KeePass Password Safe 2.25 (HKLM\...\KeePassPasswordSafe2_is1) (Version: 2.25 - Dominik Reichl)
KeyScrambler (HKLM\...\KeyScrambler) (Version: 2.8.0.1 - QFX Software Corporation)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 - German/Deutsch (HKLM\...\OMUI.de-de) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office O MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office SharePoint Designer MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2015.0811 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1 - Nokia) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
Mozilla Thunderbird 24.4.0 (x86 de) (HKLM\...\Mozilla Thunderbird 24.4.0 (x86 de)) (Version: 24.4.0 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (Version: 16.4.1108.0727 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM\...\MPE) (Version: 1.8.5 - F.J. Wechselberger)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5896 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.706 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
OpenOffice 4.0.0 (HKLM\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Opera 12.16 (HKLM\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF24 Creator 5.4.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFMate Free PDF Merger 1.0.4 (HKLM\...\PDFMate Free PDF Merger_is1) (Version: - pdfmate.com)
pdfsam (HKLM\...\pdfsam) (Version: 2.2.1 - )
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.210.0 - Tracker Software Products Ltd)
Photo Common (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.53.216.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{8FA53ACE-B718-4FAE-B7BF-95B0FCB320C8}) (Version: 1.3.800.0 - SAMSUNG Electronics CO., LTD.)
Sarbyx TrayClock v1.1 (HKLM\...\Sarbyx TrayClock_is1) (Version: 1.1 - SarbyxLabs)
Secunia PSI (3.0.0.9016) (HKLM\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Secure Banking Version 1.5.2 (HKLM\...\{0BEE0AF9-79F3-4C4F-B374-90C0A16BF294}_is1) (Version: 1.5.2 - Hopfgartner Niklas)
SIW 2011 Home Edition (HKLM\...\{AB67580-257C-45FF-B8F4-C8C30682091A}_is1) (Version: 2011.10.29 - Topala Software Solutions)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SmartTools Publishing • Word Adressfenster-Assistent (HKLM\...\SmartToolsAdressfenster-Assistentv3.00) (Version: v3.00 - SmartTools Publishing)
SmartTools Publishing • Word AutoBackup (HKLM\...\SmartToolsAutoBackupv2.01) (Version: v2.01 - SmartTools Publishing)
SmartTools Publishing • Word Falz & Lochmarken-Assistent (HKLM\...\SmartToolsFalz & Lochmarken-Assistentv6.50) (Version: v6.50 - SmartTools Publishing)
SpywareBlaster 5.0 (HKLM\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
SRWare Iron Version SRWare Iron 27.0.1500.0 (HKLM\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 27.0.1500.0 - SRWare)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 2.4 - Krzysztof Kowalczyk)
Sweet Home 3D version 4.1 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamDrive 3 (HKLM\...\TeamDrive 3) (Version: 3.2.0.721 - TeamDrive Systems GmbH)
TeamViewer 8 (HKLM\...\TeamViewer 8) (Version: 8.0.19045 - TeamViewer)
TomTom HOME (HKLM\...\{99072AB4-D795-44D5-9D65-E3C9F8322C97}) (Version: 2.9.7 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
TreeSize Professional V5.5.5 (HKLM\...\TreeSize Professional_is1) (Version: 5.5.5 - JAM Software)
TrueCrypt (HKLM\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{9B1DEEA3-B4ED-49F0-9EF7-4A820EEEA7F1}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_OMUI.de-de_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_OMUI.de-de_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_OMUI.de-de_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Windows Live Communications Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows-Treiberpaket - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinPatrol (HKLM\...\{84481A87-2316-4923-8FAB-3BA8CA29323D}) (Version: 30.1.2014 - BillP Studios)
Zoner Photo Studio 13 (HKLM\...\ZonerPhotoStudio13_DE_is1) (Version: 13.0.1.7 - ZONER software)
==================== Restore Points =========================
11-04-2014 16:28:02 Geplanter Prüfpunkt
16-04-2014 06:31:19 Installed Java 7 Update 55
16-04-2014 06:38:40 Installed Java 7 Update 55
16-04-2014 06:48:50 Removed Java 8
16-04-2014 06:56:58 Installed Java 7 Update 55
16-04-2014 07:00:25 Installed Java 8
16-04-2014 07:03:52 Installed Java 8
16-04-2014 07:30:32 Installed Java 8 Update 5
23-04-2014 07:11:20 Windows Update
24-04-2014 12:38:04 avast! antivirus system restore point
==================== Hosts content: ==========================
2009-07-14 04:04 - 2013-12-12 15:39 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {096ED5CC-DCF4-4484-829F-C958E27E7B9E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-09] (Adobe Systems Incorporated)
Task: {1B6C04C3-9F8C-47E9-AE30-A0E3FA25D392} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {AFC899FC-06FE-4863-BDB1-0CCC8BC561C3} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {AFF62D9D-FF49-4557-87CB-02EEB968FD08} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-24] (AVAST Software)
Task: {BCC79ACA-79BA-4B39-B866-D5E9ABA71900} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2014-04-24 10:36 - 2014-04-24 10:36 - 02215936 _____ () C:\Program Files\AVAST Software\Avast\defs\14042400\algo.dll
2014-03-24 18:20 - 2014-03-24 18:20 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-12-14 12:21 - 2014-02-18 05:46 - 00643948 ____N () C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
2013-10-11 16:24 - 2014-03-18 17:48 - 03018864 _____ () C:\Program Files\Mozilla Thunderbird\mozjs.dll
2013-10-11 16:24 - 2014-03-18 17:48 - 00158832 _____ () C:\Program Files\Mozilla Thunderbird\NSLDAP32V60.dll
2013-10-11 16:24 - 2014-03-18 17:48 - 00023152 _____ () C:\Program Files\Mozilla Thunderbird\NSLDAPPR32V60.dll
2014-04-20 13:39 - 2012-09-07 17:30 - 00002560 _____ () C:\Program Files\Secure Banking\sbservice.exe
2014-04-20 13:39 - 2013-06-30 17:01 - 00017920 _____ () C:\Program Files\Secure Banking\SecureBanking.dll
2014-04-20 13:39 - 2013-05-26 13:13 - 00008704 _____ () C:\Program Files\Secure Banking\funcs.dll
2013-10-09 18:39 - 2014-03-19 10:53 - 03642480 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: AcrSch2Svc => 2
MSCONFIG\Services: Adobe LM Service => 3
MSCONFIG\Services: afcdpsrv => 3
MSCONFIG\Services: AtomicAlarmClock => 2
MSCONFIG\Services: Garmin Core Update Service => 3
MSCONFIG\Services: gupdate => 3
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IGDCTRL => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: nvsvc => 2
MSCONFIG\Services: nvUpdatusService => 2
MSCONFIG\Services: O&O Defrag => 2
MSCONFIG\Services: SDScannerService => 2
MSCONFIG\Services: SDUpdateService => 2
MSCONFIG\Services: SDWSCService => 2
MSCONFIG\Services: Secunia PSI Agent => 3
MSCONFIG\Services: Secunia Update Agent => 2
MSCONFIG\Services: ServiceLayer => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: TDslMgrService => 3
MSCONFIG\Services: TeamViewer8 => 3
MSCONFIG\Services: TomTomHOMEService => 2
MSCONFIG\Services: vToolbarUpdater14.0.1 => 2
MSCONFIG\Services: WO_LiveService => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FRITZ!DSL Protect.lnk => C:\Windows\pss\FRITZ!DSL Protect.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk => C:\Windows\pss\Secunia PSI Tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk => C:\Windows\pss\Adobe Gamma.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^DSL-Manager.lnk => C:\Windows\pss\DSL-Manager.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ERUNT AutoBackup.lnk => C:\Windows\pss\ERUNT AutoBackup.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^FRITZ!DSL Startcenter.lnk => C:\Windows\pss\FRITZ!DSL Startcenter.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^KeePass.config.xml => C:\Windows\pss\KeePass.config.xml.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^KeePass.lnk => C:\Windows\pss\KeePass.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mediencenter.lnk => C:\Windows\pss\Mediencenter.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mozilla Firefox.lnk => C:\Windows\pss\Mozilla Firefox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^NeueDatenbank.kdbx => C:\Windows\pss\NeueDatenbank.kdbx.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^NeueDatenbank.kdbx.tmp => C:\Windows\pss\NeueDatenbank.kdbx.tmp.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk => C:\Windows\pss\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Persbackup.lnk => C:\Windows\pss\Persbackup.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Claus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^TeamDrive starten.lnk => C:\Windows\pss\TeamDrive starten.lnk.Startup
MSCONFIG\startupreg: !AVG Anti-Spyware => "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
MSCONFIG\startupreg: 072E250AAD35E440664F23F909A8496BD7E0BAA1._service_run => "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: Cmiboot => C:\Windows\cmiboot.exe
MSCONFIG\startupreg: FixCamera => C:\Windows\FixCamera.exe
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: KeePass 2 PreLoad => "C:\Program Files\KeePass Password Safe 2\KeePass.exe" --preload
MSCONFIG\startupreg: NeueDatenbank.kdbx => C:\Users\Claus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NeueDatenbank.kdbx
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: PC Suite Tray => "C:\Program Files\Nokia PC Suite 7\PCSuite.exe" -onlytray
MSCONFIG\startupreg: PDFPrint => C:\Program Files\PDF24\pdf24.exe
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
MSCONFIG\startupreg: SAOB Monitor => C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
MSCONFIG\startupreg: SarbyxTrayClock => C:\Program Files\SarbyxTrayClock\trayclock.exe
MSCONFIG\startupreg: SecureBanking => C:\Program Files\Secure Banking\SecureBanking.exe
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: SkyDrive => "C:\Users\Claus\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" -s
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe"
MSCONFIG\startupreg: tsnp2std => C:\Windows\tsnp2std.exe
MSCONFIG\startupreg: UnlockerAssistant => "C:\Program Files\Unlocker\UnlockerAssistant.exe"
MSCONFIG\startupreg: WinPatrol => C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
MSCONFIG\startupreg: WinPatrol [FREE Edition] => C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/24/2014 02:38:01 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {4498b188-f703-443d-be17-893e1cb33eb9}
Error: (04/24/2014 00:53:01 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (04/24/2014 00:53:01 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (04/24/2014 00:53:00 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (04/24/2014 00:50:28 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (04/24/2014 00:50:04 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (04/24/2014 00:48:41 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (04/24/2014 00:17:44 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (04/24/2014 00:17:44 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.
Error: (04/24/2014 00:17:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Das Stammelement der Manifestdatei muss assembliert sein.
System errors:
=============
Error: (04/23/2014 08:09:36 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Diagnosediensthost" wurde nicht richtig gestartet.
Error: (04/17/2014 08:38:45 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Diagnosediensthost" wurde nicht richtig gestartet.
Error: (04/11/2014 04:33:18 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (04/11/2014 08:41:06 AM) (Source: Ntfs) (User: )
Description: Auf dem Volume "Z:" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten.
Error: (04/09/2014 08:17:43 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Diagnosediensthost" wurde nicht richtig gestartet.
Error: (04/08/2014 08:27:51 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error: (04/07/2014 04:56:42 PM) (Source: Ntfs) (User: )
Description: Auf dem Volume "Z:" konnte der Transaktionsressourcen-Manager aufgrund eines nicht wiederholbaren Fehlers nicht gestartet werden. Der Fehlercode ist in den Daten enthalten.
Error: (04/07/2014 10:34:45 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Diagnosediensthost" wurde nicht richtig gestartet.
Microsoft Office Sessions:
=========================
Error: (12/11/2013 01:27:25 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 6520 seconds with 1020 seconds of active time. This session ended with a crash.
Error: (04/28/2013 01:44:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/28/2013 01:42:11 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 41 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/28/2013 01:39:16 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 18 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/28/2013 01:38:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 18 seconds with 0 seconds of active time. This session ended with a crash.
Error: (01/04/2013 11:47:14 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 27 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/21/2012 06:43:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 31 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/21/2012 06:42:02 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 82 seconds with 60 seconds of active time. This session ended with a crash.
Error: (12/11/2012 03:25:34 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 486 seconds with 360 seconds of active time. This session ended with a crash.
Error: (12/11/2012 03:17:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2013-12-17 09:28:13.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-17 09:28:13.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-17 09:28:13.492
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-17 09:03:05.933
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-17 09:03:05.933
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-12-17 09:03:05.933
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-03 18:34:14.123
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\ThreatFire\TFWAH.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-03 17:23:35.312
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\ThreatFire\TFWAH.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-03 17:06:58.013
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\ThreatFire\TFWAH.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-12-03 16:35:40.923
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\ThreatFire\TFWAH.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 66%
Total physical RAM: 2047.37 MB
Available physical RAM: 683.46 MB
Total Pagefile: 6547.37 MB
Available Pagefile: 4848.88 MB
Total Virtual: 2047.88 MB
Available Virtual: 1911.44 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:174.18 GB) NTFS
Drive f: (INTENSO) (Fixed) (Total:931.51 GB) (Free:554.06 GB) NTFS
Drive l: (USB 7,5 GB) (Removable) (Total:7.46 GB) (Free:2.91 GB) NTFS
Drive m: (USB 1,9 GB) (Removable) (Total:1.87 GB) (Free:0.88 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 233 GB) (Disk ID: 65E74B2B)
Partition 1: (Not Active) - (Size=233 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7 GB) (Disk ID: 6CB64341)
Partition 1: (Not Active) - (Size=7 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 932 GB) (Disk ID: 519B0ECF)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)
========================================================
Disk: 6 (Size: 2 GB) (Disk ID: 7E9A7B95)
Partition 1: (Active) - (Size=2 GB) - (Type=06)
==================== End Of Log ============================
|
