FRST
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-06-2014 01
Ran by 0111 (administrator) on JASMIN2 on 02-06-2014 15:40:51
Running from C:\Users\0111\Desktop
Platform: Microsoft Windows 8 Pro (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x86__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Microsoft Corporation) C:\Users\0111\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472992 2013-03-21] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCEPServiceManager] => C:\Program Files\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKU\S-1-5-21-617663529-3829722477-1144160959-1001\...\Run: [SkyDrive] => C:\Users\0111\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257224 2014-05-15] (Microsoft Corporation)
HKU\S-1-5-21-617663529-3829722477-1144160959-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-617663529-3829722477-1144160959-1001\...\MountPoints2: {f9772b94-2cff-11e3-afaa-0013776486a0} - "D:\AutoRun.exe"
HKU\S-1-5-21-617663529-3829722477-1144160959-1001\...\MountPoints2: {f9772bdf-2cff-11e3-afaa-0013776486a0} - "D:\AutoRun.exe"
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2770DA30529CCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
Chrome:
=======
CHR HomePage: hxxp://samsung13.msn.com/
CHR StartupUrls: "hxxp://klangderbewegung.net/countdown.html"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\35.0.1916.114\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\35.0.1916.114\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Extension: (Google Drive) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-08]
CHR Extension: (YouTube) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-08]
CHR Extension: (Google-Suche) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-08]
CHR Extension: (AdBlock) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-12]
CHR Extension: (OneDrive) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\nffchahhjecejoiigmnhhicpoabngedk [2013-08-18]
CHR Extension: (Google Wallet) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-09]
CHR Extension: (Google Mail) - C:\Users\0111\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-08]
========================== Services (Whitelisted) =================
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [13864 2012-07-26] (Microsoft Corporation)
S2 Ati External Event Utility; %SystemRoot%\system32\Ati2evxx.exe [X]
==================== Drivers (Whitelisted) ====================
R3 athr; C:\Windows\system32\DRIVERS\athr.sys [2273280 2012-06-02] (Qualcomm Atheros Communications, Inc.)
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [243128 2014-01-26] (Disc Soft Ltd)
S3 L1C; C:\Windows\system32\DRIVERS\L1C63x86.sys [85504 2012-06-02] (Qualcomm Atheros Co., Ltd.)
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R3 teamviewervpn; C:\Windows\system32\DRIVERS\teamviewervpn.sys [25088 2013-10-17] (TeamViewer GmbH)
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)
S3 yukonw8; C:\Windows\system32\DRIVERS\yk63x86.sys [238080 2012-07-26] (Marvell)
S3 ew_hwusbdev; \SystemRoot\system32\DRIVERS\ew_hwusbdev.sys [X]
S3 huawei_cdcacm; \SystemRoot\system32\DRIVERS\ew_jucdcacm.sys [X]
S3 huawei_enumerator; \SystemRoot\System32\drivers\ew_jubusenum.sys [X]
U3 wampapache;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-02 15:40 - 2014-06-02 15:41 - 00007122 _____ () C:\Users\0111\Desktop\FRST.txt
2014-06-02 15:40 - 2014-06-02 15:40 - 00000000 ____D () C:\FRST
2014-06-02 15:39 - 2014-06-02 15:39 - 01058304 _____ (Farbar) C:\Users\0111\Desktop\FRST.exe
2014-06-02 12:26 - 2014-06-02 12:27 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-02 12:26 - 2014-06-02 12:26 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-02 12:26 - 2014-06-02 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-02 12:26 - 2014-06-02 12:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-02 12:26 - 2014-06-02 12:26 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-06-02 12:26 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-02 12:26 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-02 12:26 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-02 12:24 - 2014-06-02 12:25 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\0111\Downloads\mbam-setup-2.0.2.1012.exe
2014-05-29 22:10 - 2014-05-29 22:59 - 00000000 ____D () C:\Users\0111\Desktop\Max
2014-05-26 15:04 - 2014-05-26 15:04 - 00017408 _____ () C:\Users\0111\Desktop\Mappe1.xls
2014-05-22 15:37 - 2014-05-22 15:37 - 00012056 _____ () C:\Users\0111\Downloads\Mai3.xlsx
2014-05-22 02:14 - 2014-05-22 17:55 - 00000237 _____ () C:\Users\0111\Desktop\ausgabeneinnahmen.txt
2014-05-19 11:19 - 2014-05-19 11:19 - 00000000 ___HD () C:\OneDriveTemp
2014-05-06 22:56 - 2014-05-06 22:59 - 14006049 _____ () C:\Users\0111\Desktop\WILLKOMMEN_Schild_1000x500.psd
2014-05-06 22:18 - 2014-05-06 22:19 - 13816674 _____ () C:\Users\0111\Desktop\IDENTITAET_Schild_1000x500.psd
2014-05-06 21:53 - 2014-05-06 21:53 - 00015735 _____ () C:\Users\0111\Downloads\Mai 2014.xlsx
==================== One Month Modified Files and Folders =======
2014-06-02 15:41 - 2014-06-02 15:40 - 00007122 _____ () C:\Users\0111\Desktop\FRST.txt
2014-06-02 15:41 - 2013-08-07 22:24 - 00000000 ____D () C:\Users\0111\AppData\Local\Temp
2014-06-02 15:40 - 2014-06-02 15:40 - 00000000 ____D () C:\FRST
2014-06-02 15:39 - 2014-06-02 15:39 - 01058304 _____ (Farbar) C:\Users\0111\Desktop\FRST.exe
2014-06-02 15:38 - 2013-08-18 22:26 - 00000000 ___RD () C:\Users\0111\SkyDrive
2014-06-02 15:16 - 2013-08-07 22:24 - 01994510 _____ () C:\Windows\WindowsUpdate.log
2014-06-02 15:06 - 2013-08-08 21:08 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-02 15:06 - 2012-07-26 08:04 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-02 15:05 - 2012-07-26 06:17 - 00524288 ___SH () C:\Windows\system32\config\BBI
2014-06-02 15:00 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\system32\sru
2014-06-02 14:42 - 2013-08-08 21:08 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-02 12:54 - 2012-07-26 08:53 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-06-02 12:27 - 2014-06-02 12:26 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-02 12:26 - 2014-06-02 12:26 - 00001020 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-06-02 12:26 - 2014-06-02 12:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-06-02 12:26 - 2014-06-02 12:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-02 12:26 - 2014-06-02 12:26 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-06-02 12:25 - 2014-06-02 12:24 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\0111\Downloads\mbam-setup-2.0.2.1012.exe
2014-06-02 12:12 - 2014-01-26 19:24 - 00000000 ____D () C:\Users\0111\AppData\Local\Adobe
2014-05-29 22:59 - 2014-05-29 22:10 - 00000000 ____D () C:\Users\0111\Desktop\Max
2014-05-28 01:25 - 2014-02-03 22:16 - 00000000 ____D () C:\Users\0111\AppData\Roaming\FileZilla
2014-05-26 15:04 - 2014-05-26 15:04 - 00017408 _____ () C:\Users\0111\Desktop\Mappe1.xls
2014-05-22 17:55 - 2014-05-22 02:14 - 00000237 _____ () C:\Users\0111\Desktop\ausgabeneinnahmen.txt
2014-05-22 15:37 - 2014-05-22 15:37 - 00012056 _____ () C:\Users\0111\Downloads\Mai3.xlsx
2014-05-22 02:15 - 2013-02-16 18:17 - 00005306 _____ () C:\Windows\PFRO.log
2014-05-19 11:19 - 2014-05-19 11:19 - 00000000 ___HD () C:\OneDriveTemp
2014-05-15 00:49 - 2014-02-19 22:47 - 00002254 _____ () C:\Users\0111\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2014-05-12 07:26 - 2014-06-02 12:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-06-02 12:26 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:25 - 2014-06-02 12:26 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-06 22:59 - 2014-05-06 22:56 - 14006049 _____ () C:\Users\0111\Desktop\WILLKOMMEN_Schild_1000x500.psd
2014-05-06 22:19 - 2014-05-06 22:18 - 13816674 _____ () C:\Users\0111\Desktop\IDENTITAET_Schild_1000x500.psd
2014-05-06 21:53 - 2014-05-06 21:53 - 00015735 _____ () C:\Users\0111\Downloads\Mai 2014.xlsx
2014-05-06 14:45 - 2013-08-22 14:37 - 00000000 ____D () C:\Users\0111\AppData\Roaming\vlc
2014-05-03 13:26 - 2014-05-02 22:17 - 00000000 ____D () C:\Users\0111\AppData\Roaming\REAPER
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-27 18:21
==================== End Of Log ============================
--- --- ---
Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version:01-06-2014 01
Ran by 0111 at 2014-06-02 15:41:32
Running from C:\Users\0111\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Dreamweaver CC (HKLM\...\{00E094E1-A852-11E2-803D-ACEA632352B4}) (Version: 13 - Adobe Systems Incorporated)
Canon MP510 (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP510) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
FileZilla Client 3.7.3 (HKLM\...\FileZilla Client) (Version: 3.7.3 - Tim Kosse)
FormsForWeb® Filler 3.2.4 (HKLM\...\{510E2ADB-37E1-4752-9D13-67077FC53D43}) (Version: 3.2.4 - Lucom GmbH)
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4041.0512 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
OpenOffice 4.0.1 (HKLM\...\{0AEC308E-7EB3-47F7-BB59-F2C9C6166B27}) (Version: 4.01.9714 - Apache Software Foundation)
REAPER (HKLM\...\REAPER) (Version: - )
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
VLC media player 2.0.8 (HKLM\...\VLC media player) (Version: 2.0.8 - VideoLAN)
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Restore Points =========================
Could not list Restore Points. Check "winmgmt" service or repair WMI.
==================== Hosts content: ==========================
2012-07-26 06:17 - 2014-01-26 20:08 - 00001159 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1E84DCB8-8C84-4436-A108-209A65086823} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {38370F03-B90E-4106-B5E8-6F5F56E993E5} - System32\Tasks\Windows Defender Update => C:\Program Files\Windows Defender\MpCmdRun.exe [2012-07-26] (Microsoft Corporation)
Task: {545C008C-4471-44F8-AD15-96CB8BB2BB0C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {56F59500-C4D1-4720-859F-13B4998AA792} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {5D4222D3-F8F9-4EB1-BF15-5D3245620E3E} - System32\Tasks\Auto Re-Aktivierung => C:\Windows\TriggerKMS.exe [2013-08-07] ()
Task: {7913B19F-C62C-4943-BAD4-95F650CCA627} - System32\Tasks\AdobeAAMUpdater-1.0-Jasmin2-0111 => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-03-21] (Adobe Systems Incorporated)
Task: {99768757-32DC-4E02-BE1E-2FE4783695EE} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {B9ADA005-AEF4-4108-9ACA-64287AE0ED57} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\system32\dism.exe [2012-07-26] (Microsoft Corporation)
Task: {C567011E-C6B5-4A7F-95C0-C5025DDDE3A8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-08-08] (Google Inc.)
Task: {D506BC73-D23E-4FDE-88CD-1AF9D2D60ECE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-08-08] (Google Inc.)
Task: {EF9592CE-7796-47A6-9CD5-8630640D45BB} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-08-07 21:25 - 2013-08-07 21:25 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2014-05-20 22:57 - 2014-05-14 01:40 - 04217672 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\pdf.dll
2014-05-20 22:57 - 2014-05-14 01:40 - 00414536 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\ppGoogleNaClPluginChrome.dll
2014-05-20 22:57 - 2014-05-14 01:40 - 01732424 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.114\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== Disabled items from MSCONFIG ==============
MSCONFIG\Services: TeamViewer9 => 2
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/02/2014 03:37:18 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 03:06:43 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (06/02/2014 00:56:48 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (06/02/2014 00:56:46 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (06/02/2014 00:54:01 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Ungültige XML-Syntax.
Error: (06/02/2014 00:22:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 00:14:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 00:14:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (06/02/2014 00:10:16 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 00:09:10 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode:
hr=0xC004F074
Befehlszeilenargumente:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
System errors:
=============
Error: (06/02/2014 03:06:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Ati External Event Utility" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (06/02/2014 00:13:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Ati External Event Utility" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (05/29/2014 07:40:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Ati External Event Utility" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (05/22/2014 02:16:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Ati External Event Utility" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (05/15/2014 10:45:40 PM) (Source: DCOM) (EventID: 10010) (User: Jasmin2)
Description: {D63B10C5-BB46-4990-A94F-E40B9D520160}
Error: (05/15/2014 10:45:39 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (05/15/2014 10:45:37 PM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (05/14/2014 01:30:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Defender-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (05/13/2014 03:37:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1
Error: (05/05/2014 02:41:46 PM) (Source: DCOM) (EventID: 10010) (User: Jasmin2)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Microsoft Office Sessions:
=========================
Error: (06/02/2014 03:37:18 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 03:06:43 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (06/02/2014 00:56:48 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Common Files\Adobe\OOBE\PDApp\DECore\DE6\resources\libraries\Adobe_Helperx64.exe
Error: (06/02/2014 00:56:46 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Common Files\Adobe\OOBE\PDApp\DECore\DE5\resources\libraries\Adobe_Helperx64.exe
Error: (06/02/2014 00:54:01 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: C:\Program Files\Lucom\FormsForWeb\Filler3.2.4\xerces-c_2_8.dll.ManifestC:\Program Files\Lucom\FormsForWeb\Filler3.2.4\xerces-c_2_8.dll.Manifest6
Error: (06/02/2014 00:22:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 00:14:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 00:14:40 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (06/02/2014 00:10:16 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (06/02/2014 00:09:10 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=a98bcd6d-5343-4603-8afe-5908e4611112;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
==================== Memory info ===========================
Percentage of memory in use: 40%
Total physical RAM: 1790.17 MB
Available physical RAM: 1070.54 MB
Total Pagefile: 2494.17 MB
Available Pagefile: 1675.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1856.5 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.45 GB) (Free:90.88 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: CCE881D1)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Thx für die schnelle Antwort! |
FRST 32-Bit | FRST 64-Bit