Trojaner-Board - Spyware System Care Antivirus Infektion

Danke erstmal für deine Antwort / Hilfe. Der Pc ist immer noch super langsam. Merkt man besonders beim Laden von Seiten oder beim Abspielen von Videos.

Hier die FRST.txt

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-06-2013 01

Ran by Kristian (administrator) on 25-06-2013 21:48:00

Running from C:\Users\Kristian\Desktop

Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

() C:\Windows\SysWOW64\PnkBstrA.exe

(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe

(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe

(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

(ASUS) C:\Program Files\P4G\BatteryLife.exe

(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(syncables, LLC) C:\Program Files (x86)\syncables\syncables desktop\syncables.exe

() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe

(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_11_5_502_135_ActiveX.exe

(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe

(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe [2587944 2010-12-13] (ELAN Microelectronics Corp.)

HKLM\...\Run: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs" [4156 2010-04-17] ()

HKLM\...\Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [472992 2013-03-21] (Adobe Systems Incorporated)

HKCU\...\Run: [Syncables] C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [370480 2010-07-19] (syncables, LLC)

HKCU\...\Run: [AdobeBridge]  [x]

HKCR\...0c966feabec1\InprocServer32: [Default-shell32] C:\Users\Kristian\AppData\Local\{c9ca9eb3-6dd8-8597-d375-41171a9dd199}\n. ATTENTION! ====> ZeroAccess

HKLM-x32\...\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" [222504 2009-05-20] (CyberLink Corp.)

HKLM-x32\...\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini" [328992 2008-11-03] (Nuance Communications, Inc.)

HKLM-x32\...\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] ()

HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345312 2013-05-06] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin [1073312 2012-03-09] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [328064 2012-09-14] (ASUSTek Computer Inc.)

HKLM-x32\...\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [205184 2012-10-17] (ASUSTek Computer Inc.)

HKLM-x32\...\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)

HKU\UpdatusUser\...\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler [222496 2009-05-06] (Acresso Corporation)

HKU\UpdatusUser\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-01-12] (Google Inc.)

AppInit_DLLs: C:\Windows\system32\nvinitx.dll [226920 2011-02-21] (NVIDIA Corporation)

AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [192616 2011-02-21] (NVIDIA Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://facebook.de/

hxxp://bild.de/

hxxp://mopo.de/

hxxp://youtube.de/

hxxp://fotocommunity.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/

HKCU SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner64.dll (Google Inc.)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)

BHO: WEB.DE Toolbar BHO - {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} - C:\Program Files\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH)

BHO-x32: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll (Google Inc.)

BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)

BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

BHO-x32: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)

BHO-x32: WEB.DE Toolbar BHO - {BF42D4A8-016E-4fcd-B1EB-837659FD77C6} - C:\Program Files (x86)\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH)

BHO-x32: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)

BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

Toolbar: HKLM - WEB.DE Toolbar - {C424171E-592A-415a-9EB1-DFD6D95D3530} - C:\Program Files\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH)

Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll (Microsoft Corporation.)

Toolbar: HKLM-x32 - WEB.DE Toolbar - {C424171E-592A-415a-9EB1-DFD6D95D3530} - C:\Program Files (x86)\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH)

DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File

Handler: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH)

Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)

Handler-x32: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - C:\Program Files (x86)\WEB.DE Toolbar\IE\uitb.dll (1und1 Mail und Media GmbH)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 

FireFox:

========

FF ProfilePath: C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\sarg9j1n.default

FF NetworkProxy: "type", 0

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)

FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1165635.dll (Adobe Systems, Inc.)

FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)

FF Plugin-x32: ZEON/PDF,version=2.0 - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)

FF Extension: iMacros for Firefox - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\sarg9j1n.default\Extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}

FF Extension: No Name - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\sarg9j1n.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF Extension: Greasemonkey - C:\Users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\sarg9j1n.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752 2013-03-21] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816 2013-03-21] (Avira Operations GmbH & Co. KG)

S4 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2010-11-13] (CyberLink)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-01-30] ()
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-03-21] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-03-21] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-03-21] (Avira Operations GmbH & Co. KG)

R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()

S3 massfilter; system32\drivers\massfilter.sys [x]

S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [x]

S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [x]

S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-06-25 21:47 - 2013-06-25 21:47 - 01931854 ____A (Farbar) C:\Users\Kristian\Desktop\FRST64.exe

2013-06-25 21:47 - 2013-06-25 21:47 - 00000000 ____D C:\FRST

2013-06-25 19:15 - 2013-06-25 19:17 - 00002598 ____A C:\Users\Kristian\Desktop\Rkill.txt

2013-06-25 19:15 - 2013-06-25 19:15 - 01814144 ____A (Bleeping Computer, LLC) C:\Users\Kristian\Desktop\rkill.com

2013-06-25 19:15 - 2013-06-25 19:15 - 00991872 ____A (Bleeping Computer, LLC) C:\Users\Kristian\Desktop\rkill64.com

2013-06-25 19:15 - 2013-06-25 19:15 - 00000000 ____D C:\Users\Kristian\Desktop\rkill

2013-06-25 19:11 - 2013-06-25 19:11 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Malwarebytes

2013-06-25 19:10 - 2013-06-25 19:10 - 00001115 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-06-25 19:10 - 2013-06-25 19:10 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-06-25 19:10 - 2013-06-25 19:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-06-25 19:10 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys

2013-06-25 19:09 - 2013-06-25 19:09 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Kristian\Desktop\mbam-setup-1.75.0.1300.exe

2013-06-25 14:50 - 2013-06-25 14:57 - 00000000 ____D C:\ProgramData\3E273A657613182700003E26FC461FCD

2013-06-25 14:48 - 2013-06-25 14:48 - 00012615 ____A C:\Users\Kristian\Desktop\hs_err_pid5760.log

2013-06-16 22:06 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-06-16 22:06 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-06-16 22:06 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-06-16 22:06 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-06-16 22:06 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-06-16 22:06 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-06-16 22:06 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-06-16 22:06 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-06-16 22:06 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-06-16 22:06 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-06-16 22:06 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-06-16 22:06 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-06-15 21:18 - 2013-06-15 21:36 - 00000000 ____D C:\Users\Kristian\Desktop\me

2013-06-15 13:21 - 2012-04-26 11:24 - 02249352 ____A (Adobe Systems, Incorporated) C:\Users\Kristian\Desktop\amtlib.dll

2013-06-15 13:18 - 2013-06-15 13:18 - 00001077 ____A C:\Users\Kristian\Desktop\Adobe Photoshop CS6 (64 Bit).lnk

2013-06-15 13:15 - 2013-06-15 13:18 - 00000000 ____D C:\Program Files\Adobe

2013-06-15 13:10 - 2013-06-15 13:18 - 00000000 ____D C:\Program Files\Common Files\Adobe

2013-06-15 12:48 - 2013-06-15 12:48 - 01291498 ____A C:\Users\Kristian\Downloads\Secret File.rar

2013-06-15 12:48 - 2013-06-15 12:48 - 00000649 ____A C:\Users\Kristian\Desktop\Secret File.lnk

2013-06-15 12:45 - 2013-06-15 12:45 - 00001524 ____A C:\Users\Public\Desktop\Adobe Application Manager.lnk

2013-06-15 12:36 - 2013-06-15 12:36 - 02101632 ____A (Adobe Systems Incorporated) C:\Users\Kristian\Desktop\AdobeApplicationManager.exe

2013-06-15 01:58 - 2013-06-15 02:00 - 00000000 ____D C:\Users\Kristian\Desktop\Musikalben

2013-06-14 22:58 - 2013-06-15 21:35 - 00001456 ____A C:\Users\Kristian\AppData\Local\Adobe Für Web speichern 13.0 Prefs

2013-06-14 21:48 - 2013-06-16 23:21 - 00000000 ____D C:\Users\Kristian\Desktop\Bilder in Bearbeitung

2013-06-13 14:07 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-06-13 14:07 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-06-13 14:07 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2013-06-13 14:07 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe

2013-06-13 14:07 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2013-06-13 14:07 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-06-13 14:07 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll

2013-06-13 14:07 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll

2013-06-13 14:07 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll

2013-06-13 14:07 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2013-06-13 14:07 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll

2013-06-13 14:07 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe

2013-06-13 14:07 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-06-12 14:27 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2013-06-12 14:27 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll

2013-06-12 14:27 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2013-06-12 14:26 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll

2013-06-12 14:26 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll

2013-06-12 14:26 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll

2013-06-12 14:26 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll

2013-06-12 14:26 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-06-12 14:26 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2013-06-12 14:26 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2013-06-12 14:26 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe

2013-06-12 14:26 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe

2013-06-12 14:26 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll

2013-06-12 14:26 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll

2013-06-12 14:26 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll

2013-06-12 14:26 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2013-06-12 14:26 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2013-06-12 14:26 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll

2013-06-12 14:26 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
 

==================== One Month Modified Files and Folders =======
 

2013-06-25 21:48 - 2011-01-12 17:50 - 00001124 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-06-25 21:47 - 2013-06-25 21:47 - 01931854 ____A (Farbar) C:\Users\Kristian\Desktop\FRST64.exe

2013-06-25 21:47 - 2013-06-25 21:47 - 00000000 ____D C:\FRST

2013-06-25 21:40 - 2012-08-07 22:10 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-06-25 21:38 - 2012-12-12 22:06 - 00018555 ____A C:\Windows\setupact.log

2013-06-25 21:21 - 2009-07-14 06:45 - 00009696 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-06-25 21:21 - 2009-07-14 06:45 - 00009696 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-06-25 21:15 - 2012-05-27 23:58 - 00000000 ____D C:\Users\Kristian\AppData\Local\Adobe

2013-06-25 21:13 - 2012-07-15 17:03 - 00000332 ____A C:\Windows\Tasks\GlaryInitialize.job

2013-06-25 21:13 - 2011-01-12 17:50 - 00001120 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-06-25 21:13 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-06-25 21:12 - 2013-01-24 16:53 - 00008718 ____A C:\Windows\PFRO.log

2013-06-25 19:17 - 2013-06-25 19:15 - 00002598 ____A C:\Users\Kristian\Desktop\Rkill.txt

2013-06-25 19:15 - 2013-06-25 19:15 - 01814144 ____A (Bleeping Computer, LLC) C:\Users\Kristian\Desktop\rkill.com

2013-06-25 19:15 - 2013-06-25 19:15 - 00991872 ____A (Bleeping Computer, LLC) C:\Users\Kristian\Desktop\rkill64.com

2013-06-25 19:15 - 2013-06-25 19:15 - 00000000 ____D C:\Users\Kristian\Desktop\rkill

2013-06-25 19:11 - 2013-06-25 19:11 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Malwarebytes

2013-06-25 19:10 - 2013-06-25 19:10 - 00001115 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-06-25 19:10 - 2013-06-25 19:10 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-06-25 19:10 - 2013-06-25 19:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-06-25 19:09 - 2013-06-25 19:09 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\Kristian\Desktop\mbam-setup-1.75.0.1300.exe

2013-06-25 18:56 - 2011-05-09 12:58 - 01292762 ____A C:\Windows\WindowsUpdate.log

2013-06-25 18:09 - 2011-09-17 16:22 - 00001150 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002UA.job

2013-06-25 18:09 - 2011-09-17 16:22 - 00001128 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002Core.job

2013-06-25 14:57 - 2013-06-25 14:50 - 00000000 ____D C:\ProgramData\3E273A657613182700003E26FC461FCD

2013-06-25 14:57 - 2013-05-20 14:30 - 00215128 ____A C:\Windows\SysWOW64\PnkBstrB.exe

2013-06-25 14:57 - 2012-01-18 22:24 - 00215128 ____A C:\Windows\SysWOW64\PnkBstrB.xtr

2013-06-25 14:48 - 2013-06-25 14:48 - 00012615 ____A C:\Users\Kristian\Desktop\hs_err_pid5760.log

2013-06-23 23:41 - 2011-06-18 16:45 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\Skype

2013-06-23 23:03 - 2012-01-18 19:26 - 00215128 ____A C:\Windows\SysWOW64\PnkBstrB.ex0

2013-06-19 22:18 - 2012-09-24 23:30 - 00000000 ____D C:\Users\Kristian\Documents\DVDVideoSoft

2013-06-19 17:20 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache

2013-06-17 19:44 - 2012-03-17 17:23 - 00000000 ____D C:\Users\Kristian\AppData\Local\Windows Live

2013-06-17 19:42 - 2012-07-10 13:39 - 00000020 ____H C:\ProgramData\PKP_DLev.DAT

2013-06-16 23:21 - 2013-06-14 21:48 - 00000000 ____D C:\Users\Kristian\Desktop\Bilder in Bearbeitung

2013-06-15 21:36 - 2013-06-15 21:18 - 00000000 ____D C:\Users\Kristian\Desktop\me

2013-06-15 21:35 - 2013-06-14 22:58 - 00001456 ____A C:\Users\Kristian\AppData\Local\Adobe Für Web speichern 13.0 Prefs

2013-06-15 21:32 - 2012-12-30 17:31 - 00000000 ___AH C:\Users\Kristian\Desktop\.BridgeLabelsAndRatings

2013-06-15 21:13 - 2012-02-26 16:03 - 00000000 ____D C:\Users\Kristian\Desktop\Fotos

2013-06-15 20:14 - 2011-06-04 11:35 - 00000000 ____D C:\ProgramData\ASUS

2013-06-15 20:14 - 2011-01-12 18:01 - 00000000 ____D C:\Program Files (x86)\ASUS

2013-06-15 20:08 - 2009-07-14 06:45 - 04918656 ____A C:\Windows\System32\FNTCACHE.DAT

2013-06-15 14:17 - 2012-05-28 00:16 - 00000000 ____D C:\ProgramData\Adobe

2013-06-15 13:21 - 2012-11-02 14:04 - 00000000 ____D C:\Users\Kristian\Desktop\PS 6

2013-06-15 13:20 - 2011-06-04 11:26 - 00064528 ____A C:\Users\Kristian\AppData\Local\GDIPFONTCACHEV1.DAT

2013-06-15 13:18 - 2013-06-15 13:18 - 00001077 ____A C:\Users\Kristian\Desktop\Adobe Photoshop CS6 (64 Bit).lnk

2013-06-15 13:18 - 2013-06-15 13:15 - 00000000 ____D C:\Program Files\Adobe

2013-06-15 13:18 - 2013-06-15 13:10 - 00000000 ____D C:\Program Files\Common Files\Adobe

2013-06-15 13:14 - 2012-05-28 00:16 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-06-15 12:48 - 2013-06-15 12:48 - 01291498 ____A C:\Users\Kristian\Downloads\Secret File.rar

2013-06-15 12:48 - 2013-06-15 12:48 - 00000649 ____A C:\Users\Kristian\Desktop\Secret File.lnk

2013-06-15 12:45 - 2013-06-15 12:45 - 00001524 ____A C:\Users\Public\Desktop\Adobe Application Manager.lnk

2013-06-15 12:36 - 2013-06-15 12:36 - 02101632 ____A (Adobe Systems Incorporated) C:\Users\Kristian\Desktop\AdobeApplicationManager.exe

2013-06-15 02:08 - 2011-12-02 14:08 - 00000000 ____D C:\Users\Kristian\AppData\Roaming\SoftGrid Client

2013-06-15 02:07 - 2012-05-28 13:07 - 00000000 ____D C:\Users\Kristian\Desktop\Fotoprogramme

2013-06-15 02:04 - 2012-07-14 18:56 - 00000000 ____D C:\Program Files\Common Files\Nikon

2013-06-15 02:04 - 2012-07-14 18:55 - 00000020 ____H C:\ProgramData\PKP_DLbx.DAT

2013-06-15 02:03 - 2012-07-10 13:39 - 00000020 ____H C:\ProgramData\PKP_DLet.DAT

2013-06-15 02:02 - 2011-06-04 11:24 - 00000000 ____D C:\Users\Kristian\AppData\Local\VirtualStore

2013-06-15 02:02 - 2011-06-04 11:23 - 00000000 ____D C:\users\Kristian

2013-06-15 02:00 - 2013-06-15 01:58 - 00000000 ____D C:\Users\Kristian\Desktop\Musikalben

2013-06-14 21:46 - 2009-08-04 11:51 - 00666256 ____A C:\Windows\System32\perfh007.dat

2013-06-14 21:46 - 2009-08-04 11:51 - 00134178 ____A C:\Windows\System32\perfc007.dat

2013-06-14 21:46 - 2009-07-14 07:13 - 01531014 ____A C:\Windows\System32\PerfStringBackup.INI

2013-06-13 14:08 - 2011-06-09 18:46 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2013-06-10 12:48 - 2009-07-14 07:08 - 00032632 ____A C:\Windows\Tasks\SCHEDLGU.TXT

2013-06-08 16:08 - 2013-06-16 22:06 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll

2013-06-08 16:07 - 2013-06-16 22:06 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-06-08 16:06 - 2013-06-16 22:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-06-08 16:06 - 2013-06-16 22:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-06-08 16:06 - 2013-06-16 22:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-06-08 14:28 - 2013-06-16 22:06 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-06-08 13:42 - 2013-06-16 22:06 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-06-08 13:40 - 2013-06-16 22:06 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-06-08 13:40 - 2013-06-16 22:06 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-06-08 13:40 - 2013-06-16 22:06 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-06-08 13:40 - 2013-06-16 22:06 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-06-08 13:13 - 2013-06-16 22:06 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-05-30 22:22 - 2012-12-07 16:52 - 00010805 ____A C:\Users\Kristian\Desktop\Fotolocations.odt
 

ZeroAccess:

C:\Users\Kristian\AppData\Local\{c9ca9eb3-6dd8-8597-d375-41171a9dd199}

C:\Users\Kristian\AppData\Local\{c9ca9eb3-6dd8-8597-d375-41171a9dd199}\@

C:\Users\Kristian\AppData\Local\{c9ca9eb3-6dd8-8597-d375-41171a9dd199}\L

C:\Users\Kristian\AppData\Local\{c9ca9eb3-6dd8-8597-d375-41171a9dd199}\U
 

Files to move or delete:

====================

C:\ProgramData\FullRemove.exe

C:\Users\Kristian\AppData\Roaming\skype.ini

C:\ProgramData\cstsm.pad

C:\ProgramData\reweivmaet.pad
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-06-19 17:13
 

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

Hier die Addition

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-06-2013 01

Ran by Kristian at 2013-06-25 21:49:14

Running from C:\Users\Kristian\Desktop

Boot Mode: Normal

==========================================================
 
 

==================== Installed Programs =======================
 

??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (x32 Version: 15.4.5722.2)

????? Messenger (x32 Version: 15.4.3502.0922)

?????? ??????? ?? Windows Live (x32 Version: 15.4.3502.0922)

??????? Windows Live Mesh ActiveX ??? (x32 Version: 15.4.5722.2)

Adobe AIR (x32 Version: 3.4.0.2540)

Adobe Download Assistant (x32 Version: 1.2.3)

Adobe Flash Player 11 ActiveX (x32 Version: 11.5.502.135)

Adobe Photoshop CS6 (x32 Version: 13.0)

Adobe Shockwave Player 11.6 (x32 Version: 11.6.5.635)

Advanced Fix 2012 version 2.0.1.100 (x32 Version: 2.0.1.100)

Apple Application Support (x32 Version: 1.4.1)

ASUS AI Recovery (x32 Version: 1.0.13)

ASUS FancyStart (x32 Version: 1.0.8)

ASUS K3 Series ScreenSaver (x32 Version: 1.0.0002)

ASUS LifeFrame3 (x32 Version: 3.0.20)

ASUS Live Update (x32 Version: 3.0.6)

ASUS Power4Gear Hybrid (Version: 1.1.43)

ASUS SmartLogon (x32 Version: 1.0.0011)

ASUS Splendid Video Enhancement Technology (x32 Version: 1.02.0030)

ASUS Virtual Camera (x32 Version: 1.0.21)

ASUS WebStorage (x32 Version: 2.0.46.1429)

AsusVibe2.0 (x32 Version: 2.0.3.585)

ATK Package (x32 Version: 1.0.0025)

Avira Free Antivirus (x32 Version: 13.0.0.3640)

Battlefield: Bad Company™ 2 (x32 Version: 1.0.0.0)

Bing Bar (x32 Version: 7.1.361.0)

Bing Rewards Client Installer (x32 Version: 16.0.345.0)

CCleaner (Version: 3.25)

Complément Messenger (x32 Version: 15.4.3502.0922)

Complemento Messenger (x32 Version: 15.4.3502.0922)

Contenta Converter PREMIUM (x32)

Control ActiveX de Windows Live Mesh para conexiones remotas (x32 Version: 15.4.5722.2)

Contrôle ActiveX Windows Live Mesh pour connexions à distance (x32 Version: 15.4.5722.2)

Controlo ActiveX do Windows Live Mesh para Ligações Remotas (x32 Version: 15.4.5722.2)

Cooking Dash (x32)

CyberLink LabelPrint (x32 Version: 2.5.1908)

CyberLink Power2Go (x32 Version: 6.1.3602c)

CyberLink PowerDVD 10 (x32 Version: 10.0.2312.52)

D3DX10 (x32 Version: 15.4.2368.0902)

ElsterFormular (x32 Version: 13.1.1.8531p)

ETDWare PS/2-X64 8.0.5.0_WHQL (Version: 8.0.5.0)

Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)

Fast Boot (Version: 1.0.10)

Free Video to MP3 Converter version 5.0.15.706 (x32 Version: 5.0.15.706)

Free YouTube to MP3 Converter version 3.11.32.918 (x32 Version: 3.11.32.918)

Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922)

Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922)

Galerie de photos Windows Live (x32 Version: 15.4.3502.0922)

Game Park Console (x32 Version: 6.2.1.1)

Glary Utilities 2.47.0.1539 (x32 Version: 2.47.0.1539)

Google Chrome (x32 Version: 27.0.1453.116)

Google Toolbar for Internet Explorer (x32 Version: 1.0.0)

Google Toolbar for Internet Explorer (x32)

Google Update Helper (x32 Version: 1.3.21.145)

Governor of Poker (x32)

Hotel Dash Suite Success (x32)

Intel(R) Control Center (x32 Version: 1.2.1.1007)

Intel(R) Processor Graphics (x32 Version: 8.15.10.2291)

Intel(R) Turbo Boost Technology Monitor (Version: 1.0.400.4)

Java Auto Updater (x32 Version: 2.0.5.1)

Java(TM) 6 Update 26 (x32 Version: 6.0.260)

Jewel Quest 3 (x32)

Junk Mail filter update (x32 Version: 15.4.3502.0922)

Luxor 3 (x32)

Mahjongg dimensions (x32)

Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)

Mesh Runtime (x32 Version: 15.4.5722.2)

Messenger ???? (x32 Version: 15.4.3502.0922)

Messenger Companion (x32 Version: 15.4.3502.0922)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)

Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Office 2010 (x32 Version: 14.0.4763.1000)

Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)

Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)

Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)

Microsoft Silverlight (Version: 5.1.20125.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)

Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)

Mozilla Firefox 5.0.1 (x86 de) (x32 Version: 5.0.1)

MSVCRT (x32 Version: 15.4.2862.0708)

MSVCRT_amd64 (x32 Version: 15.4.2862.0708)

MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)

MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)

MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0)

Nikon Message Center 2 (x32 Version: 2.1.0)

Nuance PDF Reader (x32 Version: 6.00.0041)

NVIDIA Control Panel 267.21 (Version: 267.21)

NVIDIA Graphics Driver 267.21 (Version: 267.21)

NVIDIA Install Application (Version: 2.265.39.0)

NVIDIA Optimus 1.0.21 (Version: 1.0.21)

NVIDIA Update Components (Version: 1.0.21)

OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)

PDF Settings CS6 (x32 Version: 11.0)

Photomatix Pro version 4.1.4 (x32 Version: 4.1.4)

PhotoScape (x32)

Picture Control Utility (x32 Version: 1.4.3)

Picture Control Utility x64 (Version: 1.4.0)

Plants vs Zombies (x32)

PTLens (x32 Version: 1.0.544)

PunkBuster Services (x32 Version: 0.988)

QuickTime (x32 Version: 7.69.80.9)

Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922)

Realtek Ethernet Controller Driver (x32 Version: 7.38.113.2011)

Realtek High Definition Audio Driver (x32 Version: 6.0.1.6294)

Realtek USB 2.0 Reader Driver (x32 Version: 6.1.7600.10001)

S?????? f?t???af??? t?? Windows Live (x32 Version: 15.4.3502.0922)

Skype Click to Call (x32 Version: 5.10.9560)

Skype™ 5.10 (x32 Version: 5.10.116)

Sonic Focus (x32 Version: 1.00.0000)

St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (x32 Version: 15.4.5722.2)

Steam (x32 Version: 1.0.0.0)

Stronghold (x32 Version: 1.20.0000)

swMSM (x32 Version: 12.0.0.1)

syncables desktop SE (x32 Version: 5.5.746.11492)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)

ViewNX 2 (x32 Version: 2.3.1)

WEB.DE Softwareaktualisierung (x32 Version: 2.0.1.9)

WEB.DE Toolbar für Internet Explorer (x32 Version: 1.7.2.0)

WEB.DE Toolbar MSVC100 CRT x64 (Version: 1.0.0)

WEB.DE Toolbar MSVC100 CRT x86 (x32 Version: 1.0.0)

Windows Live ??? (x32 Version: 15.4.3502.0922)

Windows Live ???? (x32 Version: 15.4.3502.0922)

Windows Live Communications Platform (x32 Version: 15.4.3502.0922)

Windows Live Essentials (x32 Version: 15.4.3502.0922)

Windows Live Essentials (x32 Version: 15.4.3555.0308)

Windows Live Family Safety (Version: 15.4.3555.0308)

Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)

Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)

Windows Live Installer (x32 Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3555.0308)

Windows Live Mail (x32 Version: 15.4.3502.0922)

Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (x32 Version: 15.4.5722.2)

Windows Live Mesh (x32 Version: 15.4.3502.0922)

Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)

Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)

Windows Live Messenger (x32 Version: 15.4.3538.0513)

Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (x32 Version: 15.4.3502.0922)

Windows Live Photo Common (x32 Version: 15.4.3502.0922)

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)

Windows Live Remote Client (Version: 15.4.5722.2)

Windows Live Remote Client Resources (Version: 15.4.5722.2)

Windows Live Remote Service (Version: 15.4.5722.2)

Windows Live Remote Service Resources (Version: 15.4.5722.2)

Windows Live SOXE (x32 Version: 15.4.3502.0922)

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)

Windows Live UX Platform (x32 Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)

Windows Live Writer (x32 Version: 15.4.3502.0922)

Windows Live Writer Resources (x32 Version: 15.4.3502.0922)

WinFlash (x32 Version: 2.31.0)

WinRAR 4.20 (64-Bit) (Version: 4.20.0)

Wireless Console 3 (x32 Version: 3.0.19)

World of Goo (x32)

XnView 1.98.8 (x32 Version: 1.98.8)
 

==================== Restore Points  =========================
 

15-06-2013 18:06:30 Removed ATK Package

15-06-2013 18:13:03 Installed ATK Package

16-06-2013 20:05:15 Windows Modules Installer

19-06-2013 10:23:34 Windows Update

25-06-2013 12:41:19 Windows Update
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {081888B8-4E5D-41B6-9543-DF2AB4534045} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-11-24] (Piriform Ltd)

Task: {0B916175-16F7-4DA3-A776-F1A638927ADD} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-09-14] (ASUSTek Computer Inc.)

Task: {1B972605-4A89-4E99-A17C-8C244D75E8B8} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS)

Task: {207C3945-C598-48AA-B56A-605327AA156C} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.)

Task: {34AA5525-052D-449C-98F2-6B23D5E5C510} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)

Task: {58FCBE81-684A-48C7-BE96-650FAF8469AD} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002Core => C:\Users\Kristian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)

Task: {6454799E-A467-4F70-881E-4C5B66B78103} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12] (Google Inc.)

Task: {881FEAEB-AA48-4B32-947A-FE4B8F3C4153} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task

Task: {9036CD20-042A-4DCC-8C7D-1F24FDB7613D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12] (Adobe Systems Incorporated)

Task: {9F3A55FE-D0C5-4ED5-869D-72D34541AE8D} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2012-07-05] (Glarysoft Ltd)

Task: {A9036BB1-56DB-4E5C-96D8-6D69EFCBA529} - System32\Tasks\{971524CF-E732-4418-B412-7F0ED679DB1D} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2012-07-13] (Skype Technologies S.A.)

Task: {BBABD92B-71A8-4B2E-B90F-2E27957DC3A4} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)

Task: {BC92B8E5-14E1-4C2D-AF7F-1A461873190B} - System32\Tasks\Registration 1und1 Task => C:\Program Files (x86)\1und1Softwareaktualisierung\cdsupdclient.exe [2011-07-28] (1&1 Mail & Media GmbH)

Task: {C12012C5-397F-4104-98C2-396321DCF603} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12] (Google Inc.)

Task: {C21903C1-D9BD-46E4-8728-59E6ADA4D904} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation)

Task: {E22ACE9B-5A06-443F-A58F-C23DB0581088} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)

Task: {E3D47E01-1181-4D4B-9266-FDC21CB2505C} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe No File

Task: {E4A0C340-67D6-4091-B331-E54CA72075E3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002UA => C:\Users\Kristian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-13] (Facebook Inc.)

Task: {EFC1CFAC-D15E-4F48-A77C-669B10937433} - System32\Tasks\WPD\SqmUpload_S-1-5-21-1227631337-3969582454-1875141718-1002 => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002Core.job => C:\Users\Kristian\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002UA.job => C:\Users\Kristian\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (06/25/2013 09:14:47 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
 

Error: (06/25/2013 07:02:39 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
 

Error: (06/25/2013 06:57:30 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
 

Error: (06/25/2013 06:25:15 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: wmpnetwk.exe, Version: 12.0.7601.17514, Zeitstempel: 0x4ce7ae7f

Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b8479b

Ausnahmecode: 0x0000046b

Fehleroffset: 0x0000000000009e5d

ID des fehlerhaften Prozesses: 0xcc4

Startzeit der fehlerhaften Anwendung: 0xwmpnetwk.exe0

Pfad der fehlerhaften Anwendung: wmpnetwk.exe1

Pfad des fehlerhaften Moduls: wmpnetwk.exe2

Berichtskennung: wmpnetwk.exe3
 

Error: (06/24/2013 05:32:55 PM) (Source: Application Hang) (User: )

Description: Programm wmplayer.exe, Version 12.0.7601.17514 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
 

Prozess-ID: 2470
 

Startzeit: 01ce70f0110e98d0
 

Endzeit: 10
 

Anwendungspfad: C:\Program Files (x86)\Windows Media Player\wmplayer.exe
 

Berichts-ID: 546440de-dce3-11e2-95c1-f936426de08b
 

Error: (06/20/2013 06:05:32 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: syncables.exe, Version: 5.5.746.11492, Zeitstempel: 0x4c4538b1

Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000

Ausnahmecode: 0xc0000005

Fehleroffset: 0x00000000

ID des fehlerhaften Prozesses: 0x448

Startzeit der fehlerhaften Anwendung: 0xsyncables.exe0

Pfad der fehlerhaften Anwendung: syncables.exe1

Pfad des fehlerhaften Moduls: syncables.exe2

Berichtskennung: syncables.exe3
 

Error: (06/19/2013 05:17:36 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
 

Error: (06/17/2013 01:03:15 AM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16611, Zeitstempel: 0x5191e7aa

Name des fehlerhaften Moduls: IEPDFPlus.ocx, Version: 1.0.0.1, Zeitstempel: 0x4b5a5a9b

Ausnahmecode: 0xc0000005

Fehleroffset: 0x00003490

ID des fehlerhaften Prozesses: 0x16b8

Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0

Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1

Pfad des fehlerhaften Moduls: IEXPLORE.EXE2

Berichtskennung: IEXPLORE.EXE3
 

Error: (06/17/2013 01:03:14 AM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16611, Zeitstempel: 0x5191e7aa

Name des fehlerhaften Moduls: IEPDFPlus.ocx, Version: 1.0.0.1, Zeitstempel: 0x4b5a5a9b

Ausnahmecode: 0xc0000005

Fehleroffset: 0x00003490

ID des fehlerhaften Prozesses: 0xce4

Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0

Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1

Pfad des fehlerhaften Moduls: IEXPLORE.EXE2

Berichtskennung: IEXPLORE.EXE3
 

Error: (06/16/2013 10:03:09 PM) (Source: System Restore) (User: )

Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Fehler = 0x81000101).
 
 

System errors:

=============

Error: (06/25/2013 09:11:58 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:11:58 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:11:58 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:09:52 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:09:52 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:09:52 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:04:52 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:04:52 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:04:52 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 

Error: (06/25/2013 09:02:44 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1068
 
 

Microsoft Office Sessions:

=========================

Error: (06/25/2013 09:14:47 PM) (Source: SideBySide)(User: )

Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Kristian\Desktop\SoftonicDownloader_fuer_photoscape.exe
 

Error: (06/25/2013 07:02:39 PM) (Source: SideBySide)(User: )

Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Kristian\Desktop\SoftonicDownloader_fuer_photoscape.exe
 

Error: (06/25/2013 06:57:30 PM) (Source: SideBySide)(User: )

Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Users\Kristian\Desktop\SoftonicDownloader_fuer_photoscape.exe
 

Error: (06/25/2013 06:25:15 PM) (Source: Application Error)(User: )

Description: wmpnetwk.exe12.0.7601.175144ce7ae7fKERNELBASE.dll6.1.7601.1801550b8479b0000046b0000000000009e5dcc401ce713f5a95090fC:\Program Files\Windows Media Player\wmpnetwk.exeC:\Windows\system32\KERNELBASE.dlld0ae6461-ddb3-11e2-a0b0-f46d04350e62
 

Error: (06/24/2013 05:32:55 PM) (Source: Application Hang)(User: )

Description: wmplayer.exe12.0.7601.17514247001ce70f0110e98d010C:\Program Files (x86)\Windows Media Player\wmplayer.exe546440de-dce3-11e2-95c1-f936426de08b
 

Error: (06/20/2013 06:05:32 PM) (Source: Application Error)(User: )

Description: syncables.exe5.5.746.114924c4538b1unknown0.0.0.000000000c00000050000000044801ce6acdc94b0ac6C:\Program Files (x86)\syncables\syncables desktop\syncables.exeunknown3b7a72c6-d9c3-11e2-9347-b79aec02ad86
 

Error: (06/19/2013 05:17:36 PM) (Source: SideBySide)(User: )

Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\Users\Kristian\Desktop\SoftonicDownloader_fuer_photoscape.exe
 

Error: (06/17/2013 01:03:15 AM) (Source: Application Error)(User: )

Description: IEXPLORE.EXE10.0.9200.166115191e7aaIEPDFPlus.ocx1.0.0.14b5a5a9bc00000050000349016b801ce6ae5af0e97adC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\Nuance\PDF Reader\bin\IEPDFPlus.ocxece06d71-d6d8-11e2-9347-b79aec02ad86
 

Error: (06/17/2013 01:03:14 AM) (Source: Application Error)(User: )

Description: IEXPLORE.EXE10.0.9200.166115191e7aaIEPDFPlus.ocx1.0.0.14b5a5a9bc000000500003490ce401ce6ae5aaeba18cC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\Nuance\PDF Reader\bin\IEPDFPlus.ocxebe19afa-d6d8-11e2-9347-b79aec02ad86
 

Error: (06/16/2013 10:03:09 PM) (Source: System Restore)(User: )

Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x81000101
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 34%

Total physical RAM: 6825.77 MB

Available physical RAM: 4474.49 MB

Total Pagefile: 13649.72 MB

Available Pagefile: 10939.4 MB

Total Virtual: 8192 MB

Available Virtual: 8191.82 MB
 

==================== Drives ================================
 

Drive c: (OS) (Fixed) (Total:238.47 GB) (Free:146.13 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]

Drive d: (DATA) (Fixed) (Total:332.7 GB) (Free:332.6 GB) NTFS (Disk=0 Partition=3)
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: FD65E542)

Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)

Partition 2: (Active) - (Size=238 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=333 GB) - (Type=OF Extended)
 

==================== End Of Log ============================

Hier nun das gewünschte Logfile.

Code:

ComboFix 13-06-26.01 - Kristian 26.06.2013  20:52:19.1.8 - x64

Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.6826.4456 [GMT 2:00]

ausgeführt von:: c:\users\Kristian\Desktop\ComboFix.exe

AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\programdata\cstsm.pad

c:\programdata\FullRemove.exe

c:\programdata\reweivmaet.pad

c:\programdata\Services

c:\users\Kristian\4.0

c:\users\Kristian\AppData\Roaming\skype.ini

c:\windows\msvcr71.dll

.

.

(((((((((((((((((((((((   Dateien erstellt von 2013-05-26 bis 2013-06-26  ))))))))))))))))))))))))))))))

.

.

2013-06-26 18:58 . 2013-06-26 18:58        --------        d-----w-        c:\users\Default\AppData\Local\temp

2013-06-26 18:58 . 2013-06-26 18:58        --------        d-----w-        c:\users\UpdatusUser\AppData\Local\temp

2013-06-25 19:47 . 2013-06-25 19:47        --------        d-----w-        C:\FRST

2013-06-25 19:17 . 2013-06-25 19:17        76232        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{B8CCC1E7-F777-4006-AF6D-A8A25D6BB96B}\offreg.dll

2013-06-25 17:11 . 2013-06-25 17:11        --------        d-----w-        c:\users\Kristian\AppData\Roaming\Malwarebytes

2013-06-25 17:10 . 2013-06-25 17:10        --------        d-----w-        c:\programdata\Malwarebytes

2013-06-25 17:10 . 2013-06-25 17:10        --------        d-----w-        c:\program files (x86)\Malwarebytes' Anti-Malware

2013-06-25 17:10 . 2013-04-04 12:50        25928        ----a-w-        c:\windows\system32\drivers\mbam.sys

2013-06-25 17:09 . 2013-06-25 17:09        --------        d-----w-        c:\users\Kristian\AppData\Local\Programs

2013-06-25 16:58 . 2013-06-25 18:25        --------        d-----w-        c:\users\Kristian\AppData\Local\ElevatedDiagnostics

2013-06-25 12:50 . 2013-06-25 12:57        --------        d-----w-        c:\programdata\3E273A657613182700003E26FC461FCD

2013-06-25 12:41 . 2013-06-12 03:08        9552976        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{B8CCC1E7-F777-4006-AF6D-A8A25D6BB96B}\mpengine.dll

2013-06-15 11:15 . 2013-06-15 11:18        --------        d-----w-        c:\program files\Adobe

2013-06-15 11:10 . 2013-06-15 11:18        --------        d-----w-        c:\program files\Common Files\Adobe

2013-06-12 12:27 . 2013-05-08 06:39        1910632        ----a-w-        c:\windows\system32\drivers\tcpip.sys

2013-06-12 12:27 . 2013-04-26 05:51        751104        ----a-w-        c:\windows\system32\win32spl.dll

2013-06-12 12:27 . 2013-04-26 04:55        492544        ----a-w-        c:\windows\SysWow64\win32spl.dll

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-06-26 10:56 . 2013-05-06 10:12        83672        ----a-w-        c:\windows\system32\drivers\avnetflt.sys

2013-06-25 20:27 . 2013-05-20 12:30        215128        ----a-w-        c:\windows\SysWow64\PnkBstrB.exe

2013-06-25 20:27 . 2012-01-18 20:24        215128        ----a-w-        c:\windows\SysWow64\PnkBstrB.xtr

2013-06-25 12:57 . 2012-01-18 17:26        215128        ----a-w-        c:\windows\SysWow64\PnkBstrB.ex0

2013-06-13 12:08 . 2011-06-09 16:46        75825640        ----a-w-        c:\windows\system32\MRT.exe

2013-05-17 07:13 . 2012-07-15 11:48        22240        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-05-02 00:06 . 2011-06-09 17:49        278800        ------w-        c:\windows\system32\MpSigStub.exe

2013-04-13 05:49 . 2013-05-15 15:57        135168        ----a-w-        c:\windows\apppatch\AppPatch64\AcXtrnal.dll

2013-04-13 05:49 . 2013-05-15 15:57        350208        ----a-w-        c:\windows\apppatch\AppPatch64\AcLayers.dll

2013-04-13 05:49 . 2013-05-15 15:57        308736        ----a-w-        c:\windows\apppatch\AppPatch64\AcGenral.dll

2013-04-13 05:49 . 2013-05-15 15:57        111104        ----a-w-        c:\windows\apppatch\AppPatch64\acspecfc.dll

2013-04-13 04:45 . 2013-05-15 15:57        474624        ----a-w-        c:\windows\apppatch\AcSpecfc.dll

2013-04-13 04:45 . 2013-05-15 15:57        2176512        ----a-w-        c:\windows\apppatch\AcGenral.dll

2013-04-12 14:45 . 2013-04-24 11:22        1656680        ----a-w-        c:\windows\system32\drivers\ntfs.sys

2013-04-10 06:01 . 2013-05-15 15:57        265064        ----a-w-        c:\windows\system32\drivers\dxgmms1.sys

2013-04-10 06:01 . 2013-05-15 15:57        983400        ----a-w-        c:\windows\system32\drivers\dxgkrnl.sys

2013-04-10 03:30 . 2013-05-15 15:57        3153920        ----a-w-        c:\windows\system32\win32k.sys

2013-04-05 20:38 . 2013-04-05 20:38        1054720        ----a-w-        c:\windows\system32\MsSpellCheckingFacility.exe

2013-04-05 20:38 . 2013-04-05 20:38        73728        ----a-w-        c:\windows\SysWow64\SetIEInstalledDate.exe

2013-04-05 20:38 . 2013-04-05 20:38        719360        ----a-w-        c:\windows\SysWow64\mshtmlmedia.dll

2013-04-05 20:38 . 2013-04-05 20:38        523264        ----a-w-        c:\windows\SysWow64\vbscript.dll

2013-04-05 20:38 . 2013-04-05 20:38        48640        ----a-w-        c:\windows\SysWow64\mshtmler.dll

2013-04-05 20:38 . 2013-04-05 20:38        38400        ----a-w-        c:\windows\SysWow64\imgutil.dll

2013-04-05 20:38 . 2013-04-05 20:38        226304        ----a-w-        c:\windows\system32\elshyph.dll

2013-04-05 20:38 . 2013-04-05 20:38        185344        ----a-w-        c:\windows\SysWow64\elshyph.dll

2013-04-05 20:38 . 2013-04-05 20:38        158720        ----a-w-        c:\windows\SysWow64\msls31.dll

2013-04-05 20:38 . 2013-04-05 20:38        150528        ----a-w-        c:\windows\SysWow64\iexpress.exe

2013-04-05 20:38 . 2013-04-05 20:38        138752        ----a-w-        c:\windows\SysWow64\wextract.exe

2013-04-05 20:38 . 2013-04-05 20:38        137216        ----a-w-        c:\windows\SysWow64\ieUnatt.exe

2013-04-05 20:38 . 2013-04-05 20:38        12800        ----a-w-        c:\windows\SysWow64\mshta.exe

2013-04-05 20:38 . 2013-04-05 20:38        110592        ----a-w-        c:\windows\SysWow64\IEAdvpack.dll

2013-04-05 20:38 . 2013-04-05 20:38        97280        ----a-w-        c:\windows\system32\mshtmled.dll

2013-04-05 20:38 . 2013-04-05 20:38        92160        ----a-w-        c:\windows\system32\SetIEInstalledDate.exe

2013-04-05 20:38 . 2013-04-05 20:38        905728        ----a-w-        c:\windows\system32\mshtmlmedia.dll

2013-04-05 20:38 . 2013-04-05 20:38        81408        ----a-w-        c:\windows\system32\icardie.dll

2013-04-05 20:38 . 2013-04-05 20:38        77312        ----a-w-        c:\windows\system32\tdc.ocx

2013-04-05 20:38 . 2013-04-05 20:38        762368        ----a-w-        c:\windows\system32\ieapfltr.dll

2013-04-05 20:38 . 2013-04-05 20:38        62976        ----a-w-        c:\windows\system32\pngfilt.dll

2013-04-05 20:38 . 2013-04-05 20:38        61952        ----a-w-        c:\windows\SysWow64\tdc.ocx

2013-04-05 20:38 . 2013-04-05 20:38        599552        ----a-w-        c:\windows\system32\vbscript.dll

2013-04-05 20:38 . 2013-04-05 20:38        52224        ----a-w-        c:\windows\system32\msfeedsbs.dll

2013-04-05 20:38 . 2013-04-05 20:38        51200        ----a-w-        c:\windows\system32\imgutil.dll

2013-04-05 20:38 . 2013-04-05 20:38        48640        ----a-w-        c:\windows\system32\mshtmler.dll

2013-04-05 20:38 . 2013-04-05 20:38        452096        ----a-w-        c:\windows\system32\dxtmsft.dll

2013-04-05 20:38 . 2013-04-05 20:38        441856        ----a-w-        c:\windows\system32\html.iec

2013-04-05 20:38 . 2013-04-05 20:38        361984        ----a-w-        c:\windows\SysWow64\html.iec

2013-04-05 20:38 . 2013-04-05 20:38        281600        ----a-w-        c:\windows\system32\dxtrans.dll

2013-04-05 20:38 . 2013-04-05 20:38        27648        ----a-w-        c:\windows\system32\licmgr10.dll

2013-04-05 20:38 . 2013-04-05 20:38        270848        ----a-w-        c:\windows\system32\iedkcs32.dll

2013-04-05 20:38 . 2013-04-05 20:38        247296        ----a-w-        c:\windows\system32\webcheck.dll

2013-04-05 20:38 . 2013-04-05 20:38        235008        ----a-w-        c:\windows\system32\url.dll

2013-04-05 20:38 . 2013-04-05 20:38        23040        ----a-w-        c:\windows\SysWow64\licmgr10.dll

2013-04-05 20:38 . 2013-04-05 20:38        216064        ----a-w-        c:\windows\system32\msls31.dll

2013-04-05 20:38 . 2013-04-05 20:38        197120        ----a-w-        c:\windows\system32\msrating.dll

2013-04-05 20:38 . 2013-04-05 20:38        173568        ----a-w-        c:\windows\system32\ieUnatt.exe

2013-04-05 20:38 . 2013-04-05 20:38        167424        ----a-w-        c:\windows\system32\iexpress.exe

2013-04-05 20:38 . 2013-04-05 20:38        1509376        ----a-w-        c:\windows\system32\inetcpl.cpl

2013-04-05 20:38 . 2013-04-05 20:38        149504        ----a-w-        c:\windows\system32\occache.dll

2013-04-05 20:38 . 2013-04-05 20:38        144896        ----a-w-        c:\windows\system32\wextract.exe

2013-04-05 20:38 . 2013-04-05 20:38        1441280        ----a-w-        c:\windows\SysWow64\inetcpl.cpl

2013-04-05 20:38 . 2013-04-05 20:38        1400416        ----a-w-        c:\windows\system32\ieapfltr.dat

2013-04-05 20:38 . 2013-04-05 20:38        13824        ----a-w-        c:\windows\system32\mshta.exe

2013-04-05 20:38 . 2013-04-05 20:38        136192        ----a-w-        c:\windows\system32\iepeers.dll

2013-04-05 20:38 . 2013-04-05 20:38        135680        ----a-w-        c:\windows\system32\IEAdvpack.dll

2013-04-05 20:38 . 2013-04-05 20:38        12800        ----a-w-        c:\windows\system32\msfeedssync.exe

2013-04-05 20:38 . 2013-04-05 20:38        102912        ----a-w-        c:\windows\system32\inseng.dll

2013-04-05 20:37 . 2013-04-05 20:37        9728        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        9728        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        648192        ----a-w-        c:\windows\system32\d3d10level9.dll

2013-04-05 20:37 . 2013-04-05 20:37        604160        ----a-w-        c:\windows\SysWow64\d3d10level9.dll

2013-04-05 20:37 . 2013-04-05 20:37        5632        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        5632        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        5632        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        5632        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        522752        ----a-w-        c:\windows\system32\XpsGdiConverter.dll

2013-04-05 20:37 . 2013-04-05 20:37        465920        ----a-w-        c:\windows\system32\WMPhoto.dll

2013-04-05 20:37 . 2013-04-05 20:37        417792        ----a-w-        c:\windows\SysWow64\WMPhoto.dll

2013-04-05 20:37 . 2013-04-05 20:37        4096        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        4096        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        3928064        ----a-w-        c:\windows\system32\d2d1.dll

2013-04-05 20:37 . 2013-04-05 20:37        364544        ----a-w-        c:\windows\SysWow64\XpsGdiConverter.dll

2013-04-05 20:37 . 2013-04-05 20:37        363008        ----a-w-        c:\windows\system32\dxgi.dll

2013-04-05 20:37 . 2013-04-05 20:37        3584        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        3584        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        3419136        ----a-w-        c:\windows\SysWow64\d2d1.dll

2013-04-05 20:37 . 2013-04-05 20:37        333312        ----a-w-        c:\windows\system32\d3d10_1core.dll

2013-04-05 20:37 . 2013-04-05 20:37        3072        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        3072        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        3072        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        3072        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        296960        ----a-w-        c:\windows\system32\d3d10core.dll

2013-04-05 20:37 . 2013-04-05 20:37        293376        ----a-w-        c:\windows\SysWow64\dxgi.dll

2013-04-05 20:37 . 2013-04-05 20:37        2776576        ----a-w-        c:\windows\system32\msmpeg2vdec.dll

2013-04-05 20:37 . 2013-04-05 20:37        2565120        ----a-w-        c:\windows\system32\d3d10warp.dll

2013-04-05 20:37 . 2013-04-05 20:37        2560        ---ha-w-        c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        2560        ---ha-w-        c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-04-05 20:37 . 2013-04-05 20:37        249856        ----a-w-        c:\windows\SysWow64\d3d10_1core.dll

2013-04-05 20:37 . 2013-04-05 20:37        245248        ----a-w-        c:\windows\system32\WindowsCodecsExt.dll

2013-04-05 20:37 . 2013-04-05 20:37        2284544        ----a-w-        c:\windows\SysWow64\msmpeg2vdec.dll

2013-04-05 20:37 . 2013-04-05 20:37        221184        ----a-w-        c:\windows\system32\UIAnimation.dll

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]

2011-01-12 15:50        433648        ----a-w-        c:\programdata\Partner\Partner.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Syncables"="c:\program files (x86)\syncables\syncables desktop\Syncables.exe" [2010-07-19 370480]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]

"Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]

"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]

"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-06-26 345144]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]

"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2012-09-14 328064]

"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2012-10-17 205184]

"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll

.

R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe [x]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys;c:\windows\SYSNATIVE\drivers\massfilter.sys [x]

R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]

R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R4 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe;c:\windows\SYSNATIVE\FBAgent.exe [x]

R4 CLKMSVC10_38F51D56;CyberLink Product - 2011/05/09 04:39;c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe;c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [x]

R4 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe;c:\programdata\Partner\Partner.exe [x]

R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]

S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]

S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [x]

S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]

S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]

S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [x]

S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]

S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]

S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [x]

S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]

S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe [x]

S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]

S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]

S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftfslh.sys [x]

S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftplaylh.sys [x]

S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftredirlh.sys [x]

S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys;c:\windows\SYSNATIVE\DRIVERS\Sftvollh.sys [x]

S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [x]

.

.

--- Andere Dienste/Treiber im Speicher ---

.

*NewlyCreated* - MBAMPROTECTOR

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2013-06-19 20:48        1165776        ----a-w-        c:\program files (x86)\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe

.

Inhalt des "geplante Tasks" Ordners

.

2013-06-26 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-06 11:40]

.

2013-06-26 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002Core.job

- c:\users\Kristian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-17 14:27]

.

2013-06-26 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1227631337-3969582454-1875141718-1002UA.job

- c:\users\Kristian\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-17 14:27]

.

2013-06-25 c:\windows\Tasks\GlaryInitialize.job

- c:\program files (x86)\Glary Utilities\initialize.exe [2012-07-15 20:16]

.

2013-06-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12 15:50]

.

2013-06-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-12 15:50]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]

2011-01-12 15:50        750064        ----a-w-        c:\programdata\Partner\Partner64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]

@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"

[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]

2009-11-26 05:49        70656        ----a-w-        c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]

@="{64174815-8D98-4CE6-8646-4C039977D808}"

[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]

2009-11-26 05:49        70656        ----a-w-        c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-10 167960]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-10 391704]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-10 418328]

"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-03-21 472992]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=c:\windows\System32\nvinitx.dll

.

------- Zusätzlicher Suchlauf -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://google.de/

mLocal Page = c:\windows\SysWOW64\blank.htm

TCP: DhcpNameServer = 192.168.1.1

Handler: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - c:\program files (x86)\WEB.DE Toolbar\IE\uitb.dll

FF - ProfilePath - c:\users\Kristian\AppData\Roaming\Mozilla\Firefox\Profiles\sarg9j1n.default\

FF - prefs.js: network.proxy.type - 0

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-AdobeBridge - (no file)

Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe

AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Zeit der Fertigstellung: 2013-06-26  21:02:03

ComboFix-quarantined-files.txt  2013-06-26 19:02

.

Vor Suchlauf: 13 Verzeichnis(se), 155.924.951.040 Bytes frei

Nach Suchlauf: 19 Verzeichnis(se), 155.924.037.632 Bytes frei

.

- - End Of File - - DA35A36B51F3DE696510196791D47473

D41D8CD98F00B204E9800998ECF8427E

Danke schonmal

Gruß

Mo7o