FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by Rüdiger (administrator) on RÜDIGER-PC on 08-06-2014 10:12:28
Running from C:\Users\Rüdiger\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BISS GmbH) C:\Program Files (x86)\InterRisk\WinRiskXA\smart\client\bin\BWUpdater.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
==================== Registry (Whitelisted) ==================
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-1797235452-1067459272-352521478-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-04-18] (Google Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mail.real-euro.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xADA2E52795F8CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {41564952-412D-5637-4300-7A786E7484D7} - No File
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Rüdiger\AppData\Roaming\Mozilla\Firefox\Profiles\8vl67bo2.default
FF Homepage: www.kicker.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Rüdiger\AppData\Roaming\Mozilla\Firefox\Profiles\8vl67bo2.default\extensions\toolbar_AVIRA-V7C@apn.ask.com.xpi []
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR Extension: (Docs) - C:\Users\Rüdiger\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-15]
CHR Extension: (Google Drive) - C:\Users\Rüdiger\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-15]
CHR Extension: (YouTube) - C:\Users\Rüdiger\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-15]
CHR Extension: (Google-Suche) - C:\Users\Rüdiger\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-15]
CHR Extension: (Google Wallet) - C:\Users\Rüdiger\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-15]
CHR Extension: (Google Mail) - C:\Users\Rüdiger\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-15]
CHR HKLM-x32\...\Chrome\Extension: [jcnjehcdcnclkfpifbolobacakpopakd] - C:\ProgramData\SaveByclick\jcnjehcdcnclkfpifbolobacakpopakd.crx [2014-01-15]
==================== Services (Whitelisted) =================
R2 WinRiskXASmClSoftwareUpdate; C:\Program Files (x86)\InterRisk\WinRiskXA\smart\client\bin\BWUpdater.exe [24576 2013-12-11] (BISS GmbH)
==================== Drivers (Whitelisted) ====================
R3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [27648 2008-01-19] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-08 10:12 - 2014-06-08 10:13 - 00008052 _____ () C:\Users\Rüdiger\Downloads\FRST.txt
2014-06-08 10:12 - 2014-06-08 10:12 - 02072576 _____ (Farbar) C:\Users\Rüdiger\Downloads\FRST64.exe
2014-06-07 23:05 - 2014-06-07 23:18 - 00003217 _____ () C:\Users\Rüdiger\Desktop\Sophos Virus Removal Tool.lnk
2014-06-07 22:05 - 2014-06-07 22:05 - 00000000 ____D () C:\Users\Rüdiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-06-07 22:05 - 2014-06-07 22:05 - 00000000 ____D () C:\ProgramData\Sophos
2014-06-07 22:04 - 2014-06-07 22:04 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-06-07 21:38 - 2014-06-07 21:43 - 95573944 _____ (Sophos Limited) C:\Users\Rüdiger\Desktop\Sophos Virus Removal Tool.exe
2014-05-15 00:23 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-15 00:23 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-15 00:23 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-15 00:23 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-15 00:23 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-15 00:23 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 21:44 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 21:44 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 21:43 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 21:43 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 21:43 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 21:43 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 21:43 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 21:43 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 21:43 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 21:43 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 21:43 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 21:43 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 21:43 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 21:43 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 21:43 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 21:43 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 21:43 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 21:43 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 21:43 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 21:43 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 21:43 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 21:43 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 21:43 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 21:43 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 21:43 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 21:43 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 21:43 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 21:43 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-10 11:38 - 2014-05-10 11:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
==================== One Month Modified Files and Folders =======
2014-06-08 10:13 - 2014-06-08 10:12 - 00008052 _____ () C:\Users\Rüdiger\Downloads\FRST.txt
2014-06-08 10:13 - 2012-01-12 17:14 - 00000000 ____D () C:\Users\Rüdiger\AppData\Local\Temp
2014-06-08 10:12 - 2014-06-08 10:12 - 02072576 _____ (Farbar) C:\Users\Rüdiger\Downloads\FRST64.exe
2014-06-08 10:12 - 2014-04-25 10:42 - 00000000 ____D () C:\FRST
2014-06-08 10:12 - 2012-01-12 16:03 - 02046066 _____ () C:\Windows\WindowsUpdate.log
2014-06-08 10:07 - 2012-01-13 09:32 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-08 09:44 - 2012-03-29 15:43 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-07 23:19 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-07 23:19 - 2009-07-14 06:45 - 00021664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-07 23:18 - 2014-06-07 23:05 - 00003217 _____ () C:\Users\Rüdiger\Desktop\Sophos Virus Removal Tool.lnk
2014-06-07 23:13 - 2012-01-13 09:32 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-07 23:11 - 2010-11-21 05:47 - 00281180 _____ () C:\Windows\PFRO.log
2014-06-07 23:11 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-07 23:11 - 2009-07-14 06:51 - 00066309 _____ () C:\Windows\setupact.log
2014-06-07 23:10 - 2012-01-12 22:57 - 00000000 ____D () C:\ProgramData\Avira
2014-06-07 22:05 - 2014-06-07 22:05 - 00000000 ____D () C:\Users\Rüdiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-06-07 22:05 - 2014-06-07 22:05 - 00000000 ____D () C:\ProgramData\Sophos
2014-06-07 22:04 - 2014-06-07 22:04 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-06-07 21:43 - 2014-06-07 21:38 - 95573944 _____ (Sophos Limited) C:\Users\Rüdiger\Desktop\Sophos Virus Removal Tool.exe
2014-06-07 21:37 - 2013-04-18 00:34 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{745DB775-DA25-49C6-8CD7-784E54E45E9E}
2014-06-06 00:10 - 2014-02-12 06:33 - 00163840 _____ () C:\Users\Rüdiger\Desktop\Einnahmen gesamt.xls
2014-06-04 23:50 - 2012-01-13 13:03 - 00920576 _____ () C:\Users\Rüdiger\Desktop\Rechnungen.ppt
2014-05-31 22:37 - 2014-03-24 07:49 - 00000000 ____D () C:\Users\Rüdiger\Desktop\DFB Stützpunkttraining
2014-05-31 14:55 - 2014-04-15 15:08 - 00021504 _____ () C:\Users\Rüdiger\Desktop\EÜR Honorartrainer.xls
2014-05-30 22:19 - 2013-11-14 19:11 - 00000000 ____D () C:\Windows\rescache
2014-05-29 13:26 - 2014-02-02 00:48 - 00039424 _____ () C:\Users\Rüdiger\Desktop\Haushaltskalkulation Dörfleins 20140201.xls
2014-05-27 15:06 - 2014-01-15 23:26 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-16 20:47 - 2012-03-29 15:43 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-16 20:46 - 2012-03-29 15:43 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-16 20:46 - 2012-01-17 10:00 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-15 06:26 - 2012-01-12 17:14 - 00000000 ___RD () C:\Users\Rüdiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-15 06:26 - 2012-01-12 17:14 - 00000000 ___RD () C:\Users\Rüdiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-15 06:20 - 2014-05-06 17:57 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-15 00:23 - 2012-01-13 10:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-15 00:22 - 2013-08-17 03:06 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-15 00:20 - 2012-01-18 20:10 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-12 06:19 - 2012-05-08 10:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 21:00 - 2012-01-13 09:32 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-10 20:59 - 2012-01-13 09:32 - 00003856 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-10 11:38 - 2014-05-10 11:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-09 08:14 - 2014-05-14 21:43 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-14 21:43 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
Files to move or delete:
====================
C:\Users\Rüdiger\adwcleaner_3.017.exe
C:\Users\Rüdiger\mbam-setup-1.75.0.1300.exe
Some content of TEMP:
====================
C:\Users\Rüdiger\AppData\Local\Temp\AskSLib.dll
C:\Users\Rüdiger\AppData\Local\Temp\avgnt.exe
C:\Users\Rüdiger\AppData\Local\Temp\avguidx.dll
C:\Users\Rüdiger\AppData\Local\Temp\CommonInstaller.exe
C:\Users\Rüdiger\AppData\Local\Temp\contentDATs.exe
C:\Users\Rüdiger\AppData\Local\Temp\install_flashplayer12x32_mssd_aaa_aih.exe
C:\Users\Rüdiger\AppData\Local\Temp\Install_HOSTS_Anti-Adware.exe
C:\Users\Rüdiger\AppData\Local\Temp\MachineIdCreator.exe
C:\Users\Rüdiger\AppData\Local\Temp\oi_{FA7F318C-DF20-42EB-A86A-92E7E5ED7C7D}.exe
C:\Users\Rüdiger\AppData\Local\Temp\Quarantine.exe
C:\Users\Rüdiger\AppData\Local\Temp\SecurityScan_Release.exe
C:\Users\Rüdiger\AppData\Local\Temp\setup.exe
C:\Users\Rüdiger\AppData\Local\Temp\ToolbarInstaller.exe
C:\Users\Rüdiger no admin\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-06-08 00:30
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2014
Ran by Rüdiger at 2014-06-08 10:13:21
Running from C:\Users\Rüdiger\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{A922C4B7-50E0-4787-A94C-59DBF3C65DBE}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
BB-Euro-Rahmenvertrags-Tarifrechner (HKLM-x32\...\{1FEFDC73-5CD7-461D-AD92-5BB03BF1D357}) (Version: 1.0 - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Business plus+ (HKCU\...\d7d997e86766123f) (Version: 1.1.0.126 - BCA)
Fotobuchexpress24 Bestellsoftware (HKLM-x32\...\Fotobuchexpress24) (Version: 3.2.24 - SSW Software GmbH)
Fotobuchexpress24 Bestellsoftware (x32 Version: 3.2.24 - SSW Software GmbH) Hidden
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
HP Officejet Pro 8500 A910 - Grundlegende Software für das Gerät (HKLM\...\{E0FE1E14-3A7A-4DB0-9FFA-0DD945AE84DB}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
InterRisk WinRisk Smart-Client 7.0.0 (HKLM-x32\...\{7AECF644-9AEE-4FBD-85C1-E83C1AB3BD11}) (Version: 7.0.117.0 - InterRisk Versicherungs-AG Vienna Insurance Group, InterRisk Lebensversicherungs-AG Vienna Insurance Group)
iTunes (HKLM\...\{0D924CB2-2EA4-4044-BAF7-770202D6BD0D}) (Version: 11.1.4.62 - Apple Inc.)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Communicator 2007 (HKLM-x32\...\{0FCA0973-24C0-48EA-8CF6-71B53C135C09}) (Version: 2.0.6362.0 - Microsoft Corporation)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUSR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XML Parser (HKLM-x32\...\{C8320AEC-2E97-4C78-81EC-43CF6D248B01}) (Version: 1.00.0000 - )
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NotenManager Heimversion 3.2 (HKLM-x32\...\NotenManager Heimversion) (Version: 3.2 - beSoft)
PDF24 Creator 6.0.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.4 - Sophos Limited)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_PROPLUSR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUSR_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2880505) 32-Bit Edition (HKLM-x32\...\{91120000-0011-0000-0000-0000000FF1CE}_PROPLUSR_{2720451F-5D04-43EC-AB1F-26D948FD971B}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_PROPLUSR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUSR_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_PROPLUSR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_PROPLUSR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
==================== Restore Points =========================
04-06-2014 21:00:22 Windows Update
07-06-2014 20:04:10 Installed Sophos Virus Removal Tool.
==================== Hosts content: ==========================
2009-07-14 04:34 - 2014-02-09 10:43 - 02696232 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 08sr.combineads.info # hosts anti-adware / pups
127.0.0.1 08srvr.combineads.info # hosts anti-adware / pups
127.0.0.1 12srvr.combineads.info # hosts anti-adware / pups
127.0.0.1 2010-fr.com # hosts anti-adware / pups
127.0.0.1 2012-new.biz # hosts anti-adware / pups
127.0.0.1 212link.com # hosts anti-adware / pups
127.0.0.1 2319825.ourtoolbar.com # hosts anti-adware / pups
127.0.0.1 24h00business.com # hosts anti-adware / pups
127.0.0.1 a.adorika.net # hosts anti-adware / pups
127.0.0.1 a.ad-sys.com # hosts anti-adware / pups
127.0.0.1 a.daasafterdusk.com # hosts anti-adware / pups
127.0.0.1 ad.adn360.com # hosts anti-adware / pups
127.0.0.1 adeartss.eu # hosts anti-adware / pups
127.0.0.1 adesoeasy.eu # hosts anti-adware / pups
127.0.0.1 adf.girldatesforfree.net # hosts anti-adware / pups
127.0.0.1 adm.soft365.com # hosts anti-adware / pups
127.0.0.1 adomicileavail.googlepages.com # hosts anti-adware / pups
127.0.0.1 ads7.complexadveising.com # hosts anti-adware / pups
127.0.0.1 ads.adplxmd.com # hosts anti-adware / pups
127.0.0.1 ads.aff.co # hosts anti-adware / pups
127.0.0.1 ads.alpha00001.com # hosts anti-adware / pups
127.0.0.1 ads.cloud4ads.com # hosts anti-adware / pups
127.0.0.1 ads.egdating.net # hosts anti-adware / pups
127.0.0.1 ads.eorezo.com # hosts anti-adware / pups
127.0.0.1 ads.hooqy.com # hosts anti-adware / pups
127.0.0.1 ads.pornerbros.com # hosts anti-adware / pups
127.0.0.1 ads.realken.com # hosts anti-adware / pups
127.0.0.1 ads.regiedepub.com # hosts anti-adware / pups
127.0.0.1 ads.sucomspot.com # hosts anti-adware / pups
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {1B5EFCC0-EA44-4F42-ABF9-9C17449D7490} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {3C545E6D-DDCE-4C77-A15A-5B3321F8A5DD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-13] (Google Inc.)
Task: {8F889D15-7DBE-4128-A284-6C699AA854CC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-16] (Adobe Systems Incorporated)
Task: {A48ABCF6-5995-4936-809C-92655D7E16F6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-01-13] (Google Inc.)
Task: {DBF03317-E5C2-44FD-9C86-1848686411DE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: ROC_roc_ssl_v12 => "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/08/2014 10:07:41 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 14.5.2014.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: b74
Startzeit: 01cf82f096670a2b
Endzeit: 16
Anwendungspfad: C:\Users\Rüdiger\Dateien Desktop PC 311211\Programme\FRST64.exe
Berichts-ID: f47f8867-eee3-11e3-be83-00196693c3ef
Error: (06/08/2014 10:03:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm FRST64.exe, Version 14.5.2014.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 8a0
Startzeit: 01cf82efd4f75a11
Endzeit: 15
Anwendungspfad: C:\Users\Rüdiger\Dateien Desktop PC 311211\Programme\FRST64.exe
Berichts-ID: 57d49c45-eee3-11e3-be83-00196693c3ef
Error: (06/07/2014 11:15:45 PM) (Source: MsiInstaller) (EventID: 11606) (User: Rüdiger-PC)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.
Error: (06/07/2014 11:13:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/07/2014 11:07:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Toolbar.exe, Version: 21.5.0.2560, Zeitstempel: 0x5272f72c
Name des fehlerhaften Moduls: so.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5272f720
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6b5579ef
ID des fehlerhaften Prozesses: 0x1008
Startzeit der fehlerhaften Anwendung: 0xToolbar.exe0
Pfad der fehlerhaften Anwendung: Toolbar.exe1
Pfad des fehlerhaften Moduls: Toolbar.exe2
Berichtskennung: Toolbar.exe3
Error: (06/07/2014 10:59:02 PM) (Source: MsiInstaller) (EventID: 11606) (User: Rüdiger-PC)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.
Error: (06/07/2014 10:59:01 PM) (Source: MsiInstaller) (EventID: 11606) (User: Rüdiger-PC)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.
Error: (06/07/2014 10:58:39 PM) (Source: MsiInstaller) (EventID: 11606) (User: Rüdiger-PC)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.
Error: (06/07/2014 10:32:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (06/07/2014 10:29:53 PM) (Source: MsiInstaller) (EventID: 11606) (User: Rüdiger-PC)
Description: Product: Sophos Virus Removal Tool -- Error 1606.Could not access network location data.
System errors:
=============
Error: (06/08/2014 10:05:15 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/08/2014 10:04:38 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/08/2014 10:04:08 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/08/2014 10:03:38 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/08/2014 10:01:22 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/08/2014 09:58:47 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/08/2014 09:58:17 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/07/2014 11:13:25 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/07/2014 11:12:38 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht.
Error: (06/07/2014 11:11:46 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT-AUTORITÄT)
Description: Einige Funktionen zur Energieverwaltung im Leistungsstatus wurden im Prozessor aufgrund eines bekannten Firmwareproblems deaktiviert. Wenden Sie sich an den Computerhersteller, um aktualisierte Firmware zu erhalten.
Microsoft Office Sessions:
=========================
Error: (02/08/2014 10:48:56 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 40992 seconds with 7620 seconds of active time. This session ended with a crash.
Error: (02/06/2014 07:03:41 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 612 seconds with 420 seconds of active time. This session ended with a crash.
Error: (12/10/2013 01:12:35 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 1437 seconds with 780 seconds of active time. This session ended with a crash.
Error: (10/17/2013 09:57:40 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 9626 seconds with 240 seconds of active time. This session ended with a crash.
Error: (09/29/2013 11:33:59 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 167 seconds with 60 seconds of active time. This session ended with a crash.
Error: (05/28/2013 00:46:41 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 348 seconds with 240 seconds of active time. This session ended with a crash.
Error: (05/28/2013 00:38:27 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 93 seconds with 0 seconds of active time. This session ended with a crash.
Error: (05/28/2013 00:34:30 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 8856 seconds with 5520 seconds of active time. This session ended with a crash.
Error: (04/19/2012 09:39:31 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/20/2012 00:19:04 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 1639 seconds with 960 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Percentage of memory in use: 56%
Total physical RAM: 1789.29 MB
Available physical RAM: 781.81 MB
Total Pagefile: 4513.29 MB
Available Pagefile: 3490.76 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:97.56 GB) (Free:30.29 GB) NTFS
Drive d: () (Fixed) (Total:368.1 GB) (Free:366.65 GB) NTFS
Drive e: (Disc) (CDROM) (Total:0.53 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 2541D9E8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=98 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=368 GB) - (Type=07 NTFS)
==================== End Of Log ============================
und hier nochmals aktuelle andere Scans: Code:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Datenbank Version: v2014.06.07.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17107
Rüdiger :: RÜDIGER-PC [Administrator]
07.06.2014 16:52:49
mbam-log-2014-06-07 (16-52-49).txt
Art des Suchlaufs: Vollständiger Suchlauf (A:\|C:\|D:\|E:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 415789
Laufzeit: 3 Stunde(n), 9 Minute(n), 5 Sekunde(n)
Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)
(Ende)
Code:
2014-06-07 22:05:09 Sophos Virus Removal Tool version 2.5
2014-06-07 22:05:09 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 22:05:09 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 22:05:09 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 22:05:09 Checking for updates...
2014-06-07 22:05:35 Option all = no
2014-06-07 22:05:35 Option recurse = yes
2014-06-07 22:05:35 Option archive = no
2014-06-07 22:05:35 Option service = yes
2014-06-07 22:05:35 Option confirm = yes
2014-06-07 22:05:35 Option sxl = yes
2014-06-07 22:05:35 Option max-data-age = 35
2014-06-07 22:05:35 Option EnableSafeClean = yes
2014-06-07 22:05:37 Component SVRTcli.exe version 2.5
2014-06-07 22:05:37 Component control.dll version 2.5
2014-06-07 22:05:37 Component SVRTservice.exe version 2.5
2014-06-07 22:05:37 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 22:05:37 Component engine\veex.dll version 3.52.0.2151
2014-06-07 22:05:37 Component engine\savi.dll version 8.1.0.2151
2014-06-07 22:05:37 Component rkdisk.dll version 1.5.30.0
2014-06-07 22:05:37 Version info: Product version 2.5
2014-06-07 22:05:37 Version info: Detection engine 3.52.0
2014-06-07 22:05:37 Version info: Detection data 4.99
2014-06-07 22:05:37 Version info: Build date 12.03.2014
2014-06-07 22:05:37 Version info: Data files added 994
2014-06-07 22:05:37 Version info: Last successful update (not yet updated)
2014-06-07 22:07:04 Update progress: proxy server not available
2014-06-07 22:07:05 Update error: failed to read remote metadata (error 4)
Cannot locate server for hxxp://dci.sophosupd.com/update/8/88/888c2c22f42b98235fc94517e2970497.xml
2014-06-07 22:09:08 Scan completed.
2014-06-07 22:09:08
------------------------------------------------------------
2014-06-07 22:11:15 Sophos Virus Removal Tool version 2.5
2014-06-07 22:11:15 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 22:11:15 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 22:11:15 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 22:11:15 Checking for updates...
2014-06-07 22:11:46 Option all = no
2014-06-07 22:11:46 Option recurse = yes
2014-06-07 22:11:46 Option archive = no
2014-06-07 22:11:46 Option service = yes
2014-06-07 22:11:46 Option confirm = yes
2014-06-07 22:11:46 Option sxl = yes
2014-06-07 22:11:46 Option max-data-age = 35
2014-06-07 22:11:46 Option EnableSafeClean = yes
2014-06-07 22:11:46 Component SVRTcli.exe version 2.5
2014-06-07 22:11:46 Component control.dll version 2.5
2014-06-07 22:11:46 Component SVRTservice.exe version 2.5
2014-06-07 22:11:46 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 22:11:46 Component engine\veex.dll version 3.52.0.2151
2014-06-07 22:11:46 Component engine\savi.dll version 8.1.0.2151
2014-06-07 22:11:46 Component rkdisk.dll version 1.5.30.0
2014-06-07 22:11:46 Version info: Product version 2.5
2014-06-07 22:11:46 Version info: Detection engine 3.52.0
2014-06-07 22:11:46 Version info: Detection data 4.99
2014-06-07 22:11:46 Version info: Build date 12.03.2014
2014-06-07 22:11:46 Version info: Data files added 994
2014-06-07 22:11:46 Version info: Last successful update (not yet updated)
2014-06-07 22:16:52 Update progress: proxy server not available
2014-06-07 22:18:44 Update error: failed to read remote metadata (error 4)
Cannot locate server for hxxp://dci.sophosupd.com/update/8/88/888c2c22f42b98235fc94517e2970497.xml
2014-06-07 22:29:56 Scan completed.
2014-06-07 22:29:56
------------------------------------------------------------
2014-06-07 22:33:32 Sophos Virus Removal Tool version 2.5
2014-06-07 22:33:32 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 22:33:32 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 22:33:32 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 22:33:32 Checking for updates...
2014-06-07 22:34:18 Option all = no
2014-06-07 22:34:18 Option recurse = yes
2014-06-07 22:34:18 Option archive = no
2014-06-07 22:34:18 Option service = yes
2014-06-07 22:34:18 Option confirm = yes
2014-06-07 22:34:18 Option sxl = yes
2014-06-07 22:34:18 Option max-data-age = 35
2014-06-07 22:34:18 Option EnableSafeClean = yes
2014-06-07 22:34:18 Component SVRTcli.exe version 2.5
2014-06-07 22:34:18 Component control.dll version 2.5
2014-06-07 22:34:18 Component SVRTservice.exe version 2.5
2014-06-07 22:34:18 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 22:34:18 Component engine\veex.dll version 3.52.0.2151
2014-06-07 22:34:18 Component engine\savi.dll version 8.1.0.2151
2014-06-07 22:34:18 Component rkdisk.dll version 1.5.30.0
2014-06-07 22:34:18 Version info: Product version 2.5
2014-06-07 22:34:18 Version info: Detection engine 3.52.0
2014-06-07 22:34:18 Version info: Detection data 4.99
2014-06-07 22:34:18 Version info: Build date 12.03.2014
2014-06-07 22:34:18 Version info: Data files added 994
2014-06-07 22:34:18 Version info: Last successful update (not yet updated)
2014-06-07 22:37:57 Update progress: proxy server not available
2014-06-07 22:37:57 Update error: failed to read remote metadata (error 4)
Cannot create stream hxxp://d1.sophosupd.com/update/catalogue/sdds.svrt_10.xml
2014-06-07 22:38:08 Scan completed.
2014-06-07 22:38:08
------------------------------------------------------------
2014-06-07 22:38:12 Sophos Virus Removal Tool version 2.5
2014-06-07 22:38:12 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 22:38:12 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 22:38:12 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 22:38:12 Checking for updates...
2014-06-07 22:38:17 Update progress: proxy server not available
2014-06-07 22:38:19 Update error: failed to read remote metadata (error 4)
Cannot create stream hxxp://d1.sophosupd.com/update/catalogue/sdds.svrt_10.xml
2014-06-07 22:38:23 Option all = no
2014-06-07 22:38:23 Option recurse = yes
2014-06-07 22:38:23 Option archive = no
2014-06-07 22:38:23 Option service = yes
2014-06-07 22:38:23 Option confirm = yes
2014-06-07 22:38:23 Option sxl = yes
2014-06-07 22:38:23 Option max-data-age = 35
2014-06-07 22:38:23 Option EnableSafeClean = yes
2014-06-07 22:38:23 Component SVRTcli.exe version 2.5
2014-06-07 22:38:23 Component control.dll version 2.5
2014-06-07 22:38:23 Component SVRTservice.exe version 2.5
2014-06-07 22:38:23 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 22:38:23 Component engine\veex.dll version 3.52.0.2151
2014-06-07 22:38:23 Component engine\savi.dll version 8.1.0.2151
2014-06-07 22:38:23 Component rkdisk.dll version 1.5.30.0
2014-06-07 22:38:23 Version info: Product version 2.5
2014-06-07 22:38:23 Version info: Detection engine 3.52.0
2014-06-07 22:38:23 Version info: Detection data 4.99
2014-06-07 22:38:23 Version info: Build date 12.03.2014
2014-06-07 22:38:23 Version info: Data files added 994
2014-06-07 22:38:23 Version info: Last successful update (not yet updated)
2014-06-07 22:42:12 Scan completed.
2014-06-07 22:42:12
------------------------------------------------------------
2014-06-07 22:43:01 Sophos Virus Removal Tool version 2.5
2014-06-07 22:43:01 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 22:43:01 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 22:43:01 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 22:43:01 Checking for updates...
2014-06-07 22:43:12 Option all = no
2014-06-07 22:43:12 Option recurse = yes
2014-06-07 22:43:12 Option archive = no
2014-06-07 22:43:12 Option service = yes
2014-06-07 22:43:12 Option confirm = yes
2014-06-07 22:43:12 Option sxl = yes
2014-06-07 22:43:12 Option max-data-age = 35
2014-06-07 22:43:12 Option EnableSafeClean = yes
2014-06-07 22:43:12 Component SVRTcli.exe version 2.5
2014-06-07 22:43:12 Component control.dll version 2.5
2014-06-07 22:43:12 Component SVRTservice.exe version 2.5
2014-06-07 22:43:12 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 22:43:12 Component engine\veex.dll version 3.52.0.2151
2014-06-07 22:43:12 Component engine\savi.dll version 8.1.0.2151
2014-06-07 22:43:12 Component rkdisk.dll version 1.5.30.0
2014-06-07 22:43:12 Version info: Product version 2.5
2014-06-07 22:43:12 Version info: Detection engine 3.52.0
2014-06-07 22:43:12 Version info: Detection data 4.99
2014-06-07 22:43:12 Version info: Build date 12.03.2014
2014-06-07 22:43:12 Version info: Data files added 994
2014-06-07 22:43:12 Version info: Last successful update (not yet updated)
2014-06-07 22:43:13 Update progress: proxy server not available
2014-06-07 22:43:14 Update error: failed to read remote metadata (error 4)
Cannot create stream hxxp://d1.sophosupd.com/update/catalogue/sdds.svrt_10.xml
2014-06-07 22:48:50 Scan completed.
2014-06-07 22:48:50
------------------------------------------------------------
2014-06-07 23:05:58 Sophos Virus Removal Tool version 2.5
2014-06-07 23:05:58 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 23:05:58 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 23:05:58 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 23:05:58 Checking for updates...
2014-06-07 23:05:58 Update progress: proxy server not available
2014-06-07 23:05:58 Update error: failed to read remote metadata (error 4)
Cannot locate server for hxxp://dci.sophosupd.com/update/8/88/888c2c22f42b98235fc94517e2970497.xml
2014-06-07 23:06:18 Option all = no
2014-06-07 23:06:18 Option recurse = yes
2014-06-07 23:06:18 Option archive = no
2014-06-07 23:06:18 Option service = yes
2014-06-07 23:06:18 Option confirm = yes
2014-06-07 23:06:18 Option sxl = yes
2014-06-07 23:06:18 Option max-data-age = 35
2014-06-07 23:06:18 Option EnableSafeClean = yes
2014-06-07 23:06:18 Component SVRTcli.exe version 2.5
2014-06-07 23:06:18 Component control.dll version 2.5
2014-06-07 23:06:18 Component SVRTservice.exe version 2.5
2014-06-07 23:06:18 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 23:06:18 Component engine\veex.dll version 3.52.0.2151
2014-06-07 23:06:18 Component engine\savi.dll version 8.1.0.2151
2014-06-07 23:06:18 Component rkdisk.dll version 1.5.30.0
2014-06-07 23:06:18 Version info: Product version 2.5
2014-06-07 23:06:18 Version info: Detection engine 3.52.0
2014-06-07 23:06:18 Version info: Detection data 4.99
2014-06-07 23:06:18 Version info: Build date 12.03.2014
2014-06-07 23:06:18 Version info: Data files added 994
2014-06-07 23:06:18 Version info: Last successful update (not yet updated)
2014-06-07 23:06:34 Couldn't apply option 'SXLLiveProtection' to the detection engine.
2014-06-07 23:07:31 SafeClean bin directory is empty.
2014-06-07 23:07:35 Scan cancelled by user.
2014-06-07 23:07:35
------------------------------------------------------------
2014-06-07 23:19:08 Sophos Virus Removal Tool version 2.5
2014-06-07 23:19:08 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-07 23:19:08 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-07 23:19:08 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-07 23:19:08 Checking for updates...
2014-06-07 23:19:08 Update progress: proxy server not available
2014-06-07 23:19:08 Update error: failed to read remote metadata (error 4)
Cannot locate server for hxxp://dci.sophosupd.com/update/8/88/888c2c22f42b98235fc94517e2970497.xml
2014-06-07 23:19:20 Option all = no
2014-06-07 23:19:20 Option recurse = yes
2014-06-07 23:19:20 Option archive = no
2014-06-07 23:19:20 Option service = yes
2014-06-07 23:19:20 Option confirm = yes
2014-06-07 23:19:20 Option sxl = yes
2014-06-07 23:19:20 Option max-data-age = 35
2014-06-07 23:19:20 Option EnableSafeClean = yes
2014-06-07 23:19:20 Component SVRTcli.exe version 2.5
2014-06-07 23:19:20 Component control.dll version 2.5
2014-06-07 23:19:20 Component SVRTservice.exe version 2.5
2014-06-07 23:19:20 Component engine\osdp.dll version 1.44.1.2151
2014-06-07 23:19:20 Component engine\veex.dll version 3.52.0.2151
2014-06-07 23:19:20 Component engine\savi.dll version 8.1.0.2151
2014-06-07 23:19:20 Component rkdisk.dll version 1.5.30.0
2014-06-07 23:19:20 Version info: Product version 2.5
2014-06-07 23:19:20 Version info: Detection engine 3.52.0
2014-06-07 23:19:20 Version info: Detection data 4.99
2014-06-07 23:19:20 Version info: Build date 12.03.2014
2014-06-07 23:19:20 Version info: Data files added 994
2014-06-07 23:19:20 Version info: Last successful update (not yet updated)
2014-06-07 23:19:51 Couldn't apply option 'SXLLiveProtection' to the detection engine.
2014-06-07 23:23:07 Could not open C:\hiberfil.sys
2014-06-07 23:26:07 Could not open C:\System Volume Information\{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-06-07 23:26:07 Could not open C:\System Volume Information\{727f1873-ee7e-11e3-95bb-00196693c3ef}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-06-07 23:26:07 Could not open C:\System Volume Information\{f0ec0686-ec28-11e3-a920-00196693c3ef}{3808876b-c176-4e48-b7ae-04046e6cc752}
2014-06-07 23:29:01 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Desktop\Stick backup 190710\WW\8 WiR\PLP2\KINGSTON\stick Bröckel\Filme.doc (corrupt)
2014-06-07 23:29:01 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Desktop\Stick backup 190710\WW\8 WiR\PLP2\KINGSTON\stick Bröckel\Stunde Prozentrechnen\Unterrichtsskizze.doc (corrupt)
2014-06-07 23:29:01 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Desktop\Stick backup 190710\WW\8 WiR\PLP2\KINGSTON\stick Bröckel\Überlegungen zur Planung von Lehrversuchen.doc (corrupt)
2014-06-07 23:30:20 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Desktop Dateien\Stick backup 190710\WW\8 WiR\PLP2\KINGSTON\stick Bröckel\Filme.doc (corrupt)
2014-06-07 23:30:20 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Desktop Dateien\Stick backup 190710\WW\8 WiR\PLP2\KINGSTON\stick Bröckel\Stunde Prozentrechnen\Unterrichtsskizze.doc (corrupt)
2014-06-07 23:30:20 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Desktop Dateien\Stick backup 190710\WW\8 WiR\PLP2\KINGSTON\stick Bröckel\Überlegungen zur Planung von Lehrversuchen.doc (corrupt)
2014-06-07 23:31:34 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\grauer Stick\Schule\Regeltest Handball.docx (corrupt)
2014-06-07 23:33:01 Password protected file C:\Users\Rüdiger\Dateien Desktop PC 311211\Partner\lignum\Verkaufs-Software 2009-3 Folz.xlsm
2014-06-07 23:34:11 Could not check C:\Users\Rüdiger\Dateien Desktop PC 311211\Stadtrallye\Karlsruhe\Loesung2006.pps (corrupt)
2014-06-07 23:38:19 Could not open C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
2014-06-07 23:38:19 Could not open C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
2014-06-07 23:51:10 SafeClean bin directory is empty.
2014-06-08 08:50:56 Scan completed.
2014-06-08 08:50:56
------------------------------------------------------------
2014-06-08 10:46:19 Sophos Virus Removal Tool version 2.5
2014-06-08 10:46:19 Copyright (c) 2009-2014 Sophos Limited. All rights reserved.
2014-06-08 10:46:19 This tool will scan your computer for viruses and other threats. If it finds any, it will give you the option to remove them.
2014-06-08 10:46:19 Windows version 6.1 SP 1.0 Service Pack 1 build 7601 SM=0x300 PT=0x1 WOW64
2014-06-08 10:46:19 Checking for updates...
2014-06-08 10:46:35 Update progress: proxy server not available
2014-06-08 10:46:36 Update error: failed to read remote metadata (error 4)
Cannot create stream hxxp://d1.sophosupd.com/update/catalogue/sdds.svrt_10.xml
2014-06-08 10:46:45 Option all = no
2014-06-08 10:46:45 Option recurse = yes
2014-06-08 10:46:45 Option archive = no
2014-06-08 10:46:45 Option service = yes
2014-06-08 10:46:45 Option confirm = yes
2014-06-08 10:46:45 Option sxl = yes
2014-06-08 10:46:45 Option max-data-age = 35
2014-06-08 10:46:45 Option EnableSafeClean = yes
2014-06-08 10:46:45 Component SVRTcli.exe version 2.5
2014-06-08 10:46:45 Component control.dll version 2.5
2014-06-08 10:46:45 Component SVRTservice.exe version 2.5
2014-06-08 10:46:45 Component engine\osdp.dll version 1.44.1.2151
2014-06-08 10:46:45 Component engine\veex.dll version 3.52.0.2151
2014-06-08 10:46:45 Component engine\savi.dll version 8.1.0.2151
2014-06-08 10:46:45 Component rkdisk.dll version 1.5.30.0
2014-06-08 10:46:45 Version info: Product version 2.5
2014-06-08 10:46:45 Version info: Detection engine 3.52.0
2014-06-08 10:46:45 Version info: Detection data 4.99
2014-06-08 10:46:45 Version info: Build date 12.03.2014
2014-06-08 10:46:45 Version info: Data files added 994
2014-06-08 10:46:45 Version info: Last successful update (not yet updated)
2014-06-08 10:47:29 Scan completed.
2014-06-08 10:47:29
------------------------------------------------------------
wobei dieses problem seitdem nicht mehr auftrat, nur das internet ist dauernd langsam. diese langsamkeit fängt ca 1 minute nach dem ich den Wlan knopf an der boy gedrückt habe an und es dann diese minute super und schnell funktioniert. |
