@cosinus: Leider doch... :headbang: Was ist jetzt? Ne, Firefox hat da keine Meldung gebracht... Gut, aber dann mach ich mal FRST drauf.
@Darklord666: Betrugswarnung wurde nicht deaktiviert und ich lass regelmäßig Malwarebytes durchgehen. Aber das System setz ich sowieso bald neu auf, mach jetzt Win7 drauf (siehe auch http://www.trojaner-board.de/149492-...atet-mehr.html)
Was heißt alle Passwörter? Auch die von Seite xyz?
@Cimba: Hab keine Kreditkarte :)
Achso noch ein Nachtrag: Firefox ist aktuell (Version 27.0.1)! :)
FRST:
FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-02-2014
Ran by windows (administrator) on WINDOWS-PC on 19-02-2014 19:30:51
Running from C:\Users\windows\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Hewlett-Packard Company) C:\hp\support\hpsysdrv.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
() C:\Program Files\Browser Mouse\Mouse32V.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Apple Inc.) C:\Program Files\QuickTime\QTTask.exe
() C:\Program Files\Lexmark Pro200-S500 Series\lxebmon.exe
() C:\Program Files\Lexmark Pro200-S500 Series\ezprint.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Lexmark International, Inc.) C:\Windows\system32\spool\DRIVERS\W32X86\3\lxebserv.exe
( ) C:\Windows\system32\lxebcoms.exe
() C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
() C:\Users\windows\AppData\LocalLow\pdfEngine\IE\pdfEngineUpdater.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [hpsysdrv] - c:\hp\support\hpsysdrv.exe [65536 2007-04-18] (Hewlett-Packard Company)
HKLM\...\Run: [RtHDVCpl] - C:\Windows\RtHDVCpl.exe [4874240 2008-01-15] (Realtek Semiconductor)
HKLM\...\Run: [SunJavaUpdateReg] - C:\Windows\system32\jureg.exe [54936 2007-04-07] (Sun Microsystems, Inc.)
HKLM\...\Run: [FLMOFFICE4DMOUSE] - C:\Program Files\Browser Mouse\Mouse32V.exe [465920 2008-03-26] ()
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [178712 2008-06-02] (Intel Corporation)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2010-03-17] (Apple Inc.)
HKLM\...\Run: [lxebmon.exe] - C:\Program Files\Lexmark Pro200-S500 Series\lxebmon.exe [770728 2011-01-23] ()
HKLM\...\Run: [EzPrint] - C:\Program Files\Lexmark Pro200-S500 Series\ezprint.exe [148280 2011-01-23] ()
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2014-01-14] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKU\.DEFAULT\...\Run: [InfoCockpit] - C:\Program Files\T-Online\T-Online_Software_6\Info-Cockpit\IC_START.EXE [268800 2009-04-29] (Deutsche Telekom AG, T-Com)
HKU\S-1-5-21-3854617978-468262528-980198106-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-3854617978-468262528-980198106-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-3854617978-468262528-980198106-1000\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2008-05-04] (Google Inc.)
HKU\S-1-5-21-3854617978-468262528-980198106-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-3854617978-468262528-980198106-1000\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-3854617978-468262528-980198106-1000\...\Policies\Explorer: [NoLogoff] 0
Startup: C:\Users\windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Zahlungserinnerung.lnk
ShortcutTarget: Zahlungserinnerung.lnk -> C:\Profi cash\wzed.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF734C481A2C3CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://de.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_de&c=81&bd=Presario&pf=desktop
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {1550ED1C-EDB3-46D7-A209-652B2EFD66A9} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM - {312C3B88-6E86-4AFC-AEBD-14EFB011FC67} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcndtie7-de-de
SearchScopes: HKCU - {1550ED1C-EDB3-46D7-A209-652B2EFD66A9} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - {312C3B88-6E86-4AFC-AEBD-14EFB011FC67} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcndtie7-de-de
SearchScopes: HKCU - {B3D2E19F-A5B7-428A-99AE-4E8267852D6A} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=^U3&apn_dtid=^YYYYYY^YY^DE&apn_uid=34A23A28-A7B2-4722-9F53-6D999E352C07&apn_sauid=DAA97137-B3C9-4542-B403-64D0A496E2BC
BHO: Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
BHO: pdfEngine - {435405E9-1E2A-447F-9930-652D5700BD55} - C:\Users\windows\AppData\LocalLow\pdfEngine\IE\pdfEngine.dll (Adobe Systems Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
BHO: Lexmark - {D2C5E510-BE6D-42CC-9F61-E4F939078474} - C:\Program Files\Lexmark Printable Web\bho.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKLM - Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU - Lexmark Symbolleiste - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} hxxp://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} hxxp://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default
FF NewTab: chrome://unitedtb/content/newtab/newtab-page.xhtml
FF SearchEngineOrder.1: Ask Search
FF Homepage: hxxp://www.handelsblatt.com
FF NetworkProxy: "no_proxies_on", "*.local"
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\ask-search.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\icqplugin-4.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\icqplugin-5.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\Extensions\nostmp [2011-08-16]
FF Extension: pdfEngine - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\Extensions\pdfengine@adobe.com [2011-12-26]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-07-17]
FF Extension: GMX MailCheck - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\Extensions\toolbar@gmx.net.xpi [2012-09-26]
FF Extension: Adobe DLM (powered by getPlus(R)) - C:\Users\windows\AppData\Roaming\Mozilla\Firefox\Profiles\7yxnk5jc.default\Extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}.xpi [2010-10-04]
FF Extension: ICQ Toolbar - C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2014-02-18]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-18]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-18]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-18]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0039-ABCDEFFEDCBA} [2014-02-18]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2014-01-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2014-01-14] (Avira Operations GmbH & Co. KG)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [65536 2007-09-19] (Hewlett-Packard)
R2 lxebCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxebserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxeb_device; C:\Windows\system32\lxebcoms.exe [598696 2010-04-14] ( )
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 OMSI download service; C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [90112 2009-04-30] ()
R2 pdfEngineUpdater; C:\Users\windows\AppData\LocalLow\pdfEngine\IE\pdfEngineUpdater.exe [18432 2011-12-15] ()
S3 wbengine; "%systemroot%\system32\wbengine.exe" [X]
==================== Drivers (Whitelisted) ====================
S3 a016bus; C:\Windows\System32\DRIVERS\a016bus.sys [83880 2008-01-18] (MCCI Corporation)
S3 a016mdfl; C:\Windows\System32\DRIVERS\a016mdfl.sys [15016 2008-01-18] (MCCI Corporation)
S3 a016mdm; C:\Windows\System32\DRIVERS\a016mdm.sys [110504 2008-01-18] (MCCI Corporation)
S3 a016mgmt; C:\Windows\System32\DRIVERS\a016mgmt.sys [104488 2008-01-18] (MCCI Corporation)
S3 a016obex; C:\Windows\System32\DRIVERS\a016obex.sys [100648 2008-01-18] (MCCI Corporation)
R2 acedrv11; C:\Windows\system32\drivers\acedrv11.sys [277544 2009-01-19] (Protect Software GmbH)
R0 AFS; C:\Windows\system32\Drivers\AFS.sys [77004 2011-01-20] (Oak Technology Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 MDC8021X; C:\Windows\System32\DRIVERS\mdc8021x.sys [15781 2008-03-28] (Meetinghouse Data Communications)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
S3 MTOnlPktAlyX; C:\Program Files\T-Online\T-Online_Software_6\Basis-Software\Basis1\MTOnlPktAlyx.sys [17536 2006-10-09] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
S3 s116bus; C:\Windows\System32\DRIVERS\s116bus.sys [83336 2007-04-03] (MCCI Corporation)
S3 s116mdfl; C:\Windows\System32\DRIVERS\s116mdfl.sys [15112 2007-04-03] (MCCI Corporation)
S3 s116mdm; C:\Windows\System32\DRIVERS\s116mdm.sys [108680 2007-04-03] (MCCI Corporation)
S3 s116mgmt; C:\Windows\System32\DRIVERS\s116mgmt.sys [100488 2007-04-03] (MCCI Corporation)
S3 s116nd5; C:\Windows\System32\DRIVERS\s116nd5.sys [23176 2007-04-03] (MCCI Corporation)
S3 s116obex; C:\Windows\System32\DRIVERS\s116obex.sys [98696 2007-04-03] (MCCI Corporation)
S3 s116unic; C:\Windows\System32\DRIVERS\s116unic.sys [99080 2007-04-03] (MCCI Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [721904 2009-10-08] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-03-17] (Avira GmbH)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-19] (Microsoft Corporation)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 catchme; \??\C:\Users\windows\AppData\Local\Temp\catchme.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCD5SRVC{BD6912E3-AC9D80E8-05040000}; \??\C:\PROGRA~1\PC-DOC~1\PCD5SRVC.pkms [X]
S3 SymIMMP; system32\DRIVERS\SymIM.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-19 19:30 - 2014-02-19 19:31 - 00020222 _____ () C:\Users\windows\Downloads\FRST.txt
2014-02-19 19:30 - 2014-02-19 19:30 - 00000000 ____D () C:\FRST
2014-02-19 19:29 - 2014-02-19 19:29 - 01141248 _____ (Farbar) C:\Users\windows\Downloads\FRST.exe
2014-02-18 07:24 - 2014-02-18 07:25 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-12 16:16 - 2014-02-12 16:16 - 00002154 _____ () C:\Windows\epplauncher.mif
2014-02-12 16:16 - 2014-02-12 16:16 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-12 15:08 - 2014-02-12 15:08 - 00000000 ____D () C:\Windows\Profiles\Default
2014-02-11 18:54 - 2014-02-12 16:17 - 00043076 _____ () C:\Windows\wsusofflineupdate.log
2014-02-11 15:54 - 2014-02-12 18:43 - 00000000 ____D () C:\Users\windows\Downloads\wsusoffline89
2014-02-11 15:47 - 2014-02-11 15:47 - 02223602 _____ () C:\Users\windows\Downloads\wsusoffline89.zip
2014-02-08 09:50 - 2014-02-08 09:50 - 00141432 _____ () C:\Windows\Minidump\Mini020814-01.dmp
2014-01-28 17:11 - 2014-01-28 17:11 - 00000000 ____D () C:\Users\windows\AppData\Roaming\TeamViewer
2014-01-28 16:46 - 2014-01-28 16:46 - 00000000 ____D () C:\Users\windows\Documents\Forte
2014-01-28 16:46 - 2014-01-28 16:46 - 00000000 ____D () C:\Users\windows\AppData\Roaming\FORTE
2014-01-28 16:36 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-28 16:36 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-28 16:36 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-28 16:36 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-28 16:35 - 2014-01-28 16:45 - 00000000 ____D () C:\ProgramData\Package Cache
2014-01-28 16:34 - 2014-01-28 16:36 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-28 16:34 - 2008-12-11 16:15 - 00155648 _____ (Viscom Software www.viscomsoft.com) C:\Windows\system32\AudioCapture.ocx
2014-01-28 16:34 - 2008-12-08 00:19 - 00155648 _____ (Viscom Software www.viscomsoft.com) C:\Windows\system32\viscomwaveform.dll
2014-01-28 16:34 - 2004-08-04 07:00 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\msxml2.DLL
2014-01-28 16:34 - 2004-08-04 07:00 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\msxml.DLL
2014-01-28 16:34 - 2004-08-04 07:00 - 00037916 _____ (Microsoft Corporation) C:\Windows\system32\msxml2r.DLL
2014-01-28 16:34 - 2004-08-04 07:00 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\msxmlr.DLL
2014-01-28 16:34 - 2004-02-07 23:53 - 00856064 _____ (Essien Research & Development) C:\Windows\system32\mpgfiltr.ax
2014-01-28 16:34 - 2003-12-11 16:15 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\msxml4a.DLL
2014-01-28 16:34 - 2003-08-19 19:31 - 00081920 _____ (Viscom Software) C:\Windows\system32\viscomwave.dll
2014-01-24 18:18 - 2014-01-24 18:18 - 01069512 _____ (Solid State Networks) C:\Users\windows\Downloads\install_flashplayer12x32au_mssa_aaa_aih.exe
==================== One Month Modified Files and Folders =======
2014-02-19 19:31 - 2014-02-19 19:30 - 00020222 _____ () C:\Users\windows\Downloads\FRST.txt
2014-02-19 19:30 - 2014-02-19 19:30 - 00000000 ____D () C:\FRST
2014-02-19 19:29 - 2014-02-19 19:29 - 01141248 _____ (Farbar) C:\Users\windows\Downloads\FRST.exe
2014-02-19 19:29 - 2008-03-26 16:36 - 00000000 ____D () C:\Users\windows
2014-02-19 19:24 - 2009-12-25 20:26 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-19 19:24 - 2006-11-02 13:47 - 00003696 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-19 19:24 - 2006-11-02 13:47 - 00003696 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-19 19:21 - 2008-01-21 05:14 - 01809340 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 19:03 - 2011-02-12 10:57 - 00178721 _____ () C:\ProgramData\lxebscan.log
2014-02-19 19:03 - 2009-12-25 20:26 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-19 19:03 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 19:03 - 2006-11-02 13:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-02-19 18:40 - 2006-11-02 14:01 - 00032558 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-19 18:38 - 2011-02-12 12:09 - 00105391 _____ () C:\ProgramData\lxebJSW.log
2014-02-19 18:38 - 2011-02-12 11:28 - 00000000 ____D () C:\ProgramData\Lx_cats
2014-02-19 18:26 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-18 18:48 - 2012-04-24 15:59 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-18 07:25 - 2014-02-18 07:24 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-12 19:44 - 2008-03-26 16:42 - 00000910 _____ () C:\Users\windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-02-12 18:43 - 2014-02-11 15:54 - 00000000 ____D () C:\Users\windows\Downloads\wsusoffline89
2014-02-12 16:31 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-12 16:27 - 2008-01-09 11:49 - 00000000 ____D () C:\Windows\system32\RTCOM
2014-02-12 16:26 - 2006-11-02 13:37 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-02-12 16:26 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-12 16:17 - 2014-02-11 18:54 - 00043076 _____ () C:\Windows\wsusofflineupdate.log
2014-02-12 16:16 - 2014-02-12 16:16 - 00002154 _____ () C:\Windows\epplauncher.mif
2014-02-12 16:16 - 2014-02-12 16:16 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-02-12 15:42 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Movie Maker
2014-02-12 15:25 - 2008-03-26 16:28 - 00360324 _____ () C:\Windows\PFRO.log
2014-02-12 15:24 - 2006-11-02 11:33 - 01569852 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-12 15:11 - 2011-05-07 19:42 - 00036865 _____ () C:\Windows\IE9_main.log
2014-02-12 15:10 - 2011-02-12 12:03 - 00000504 _____ () C:\ProgramData\FastPics.log
2014-02-12 15:08 - 2014-02-12 15:08 - 00000000 ____D () C:\Windows\Profiles\Default
2014-02-12 15:05 - 2008-01-09 19:54 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-11 19:11 - 2008-03-26 17:31 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-11 15:47 - 2014-02-11 15:47 - 02223602 _____ () C:\Users\windows\Downloads\wsusoffline89.zip
2014-02-09 10:11 - 2009-03-25 18:38 - 00001052 _____ () C:\Windows\Tasks\Google Software Updater.job
2014-02-08 10:48 - 2012-04-24 15:59 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-08 10:48 - 2011-10-01 09:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-08 10:05 - 2008-03-27 20:28 - 00002591 _____ () C:\Users\windows\Desktop\Microsoft Office Word 2007.lnk
2014-02-08 09:50 - 2014-02-08 09:50 - 00141432 _____ () C:\Windows\Minidump\Mini020814-01.dmp
2014-02-08 09:50 - 2008-05-26 17:56 - 00000000 ____D () C:\Windows\Minidump
2014-02-08 09:50 - 2008-05-26 17:55 - 201594099 _____ () C:\Windows\MEMORY.DMP
2014-02-01 09:44 - 2011-02-23 09:46 - 00000000 ____D () C:\Users\windows\Documents\PrivatBank
2014-02-01 08:30 - 2008-03-26 16:43 - 00074384 _____ () C:\Users\windows\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:24 - 2009-01-23 15:10 - 00000000 ____D () C:\Profi cash
2014-01-28 17:11 - 2014-01-28 17:11 - 00000000 ____D () C:\Users\windows\AppData\Roaming\TeamViewer
2014-01-28 16:46 - 2014-01-28 16:46 - 00000000 ____D () C:\Users\windows\Documents\Forte
2014-01-28 16:46 - 2014-01-28 16:46 - 00000000 ____D () C:\Users\windows\AppData\Roaming\FORTE
2014-01-28 16:45 - 2014-01-28 16:35 - 00000000 ____D () C:\ProgramData\Package Cache
2014-01-28 16:41 - 2006-11-02 13:47 - 00309672 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-28 16:36 - 2014-01-28 16:34 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-28 16:36 - 2008-01-09 12:05 - 00000000 ____D () C:\Program Files\Java
2014-01-24 18:18 - 2014-01-24 18:18 - 01069512 _____ (Solid State Networks) C:\Users\windows\Downloads\install_flashplayer12x32au_mssa_aaa_aih.exe
2014-01-23 18:38 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\nap
Some content of TEMP:
====================
C:\Users\windows\AppData\Local\temp\APNSetup.exe
C:\Users\windows\AppData\Local\temp\AskSLib.dll
C:\Users\windows\AppData\Local\temp\avgnt.exe
C:\Users\windows\AppData\Local\temp\ForteDependencies.exe
C:\Users\windows\AppData\Local\temp\jre-7u21-windows-i586-iftw.exe
C:\Users\windows\AppData\Local\temp\jre-7u25-windows-i586-iftw.exe
C:\Users\windows\AppData\Local\temp\jre-7u51-windows-i586-iftw.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-19 19:09
==================== End Of Log ============================ --- --- ---
--- --- ---
--- --- ---
Addition: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-02-2014
Ran by windows at 2014-02-19 19:32:24
Running from C:\Users\windows\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (Version: - Microsoft)
7-Zip 9.20 (Version: - )
ABBYY FineReader 6.0 Sprint (Version: 6.00.2146.41621 - ABBYY Software House)
AbiWord 2.8.6 (Version: 2.8.6 - AbiSource Developers)
Activation Assistant for the 2007 Microsoft Office suites (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0.1 - Microsoft Corporation) Hidden
Adobe Flash Player 12 ActiveX (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (Version: 10.1.9 - Adobe Systems Incorporated)
Apple Application Support (Version: 1.2.1 - Apple Inc.)
ATI Catalyst Install Manager (Version: 3.0.664.0 - ATI Technologies, Inc.)
Avira Free Antivirus (Version: 14.0.2.344 - Avira)
Browser Mouse (Version: - )
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI)
Catalyst Control Center Core Implementation (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Chinese Standard (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Czech (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Danish (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Dutch (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Finnish (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization French (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization German (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Greek (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Hungarian (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Italian (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Japanese (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Korean (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Norwegian (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Polish (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Portuguese (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Russian (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Spanish (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Swedish (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Thai (Version: 2008.0225.2153.39091 - ATI) Hidden
Catalyst Control Center Localization Turkish (Version: 2008.0225.2153.39091 - ATI) Hidden
CCC Help Chinese Standard (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Czech (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Danish (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Dutch (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help English (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Finnish (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help French (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help German (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Greek (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Hungarian (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Italian (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Japanese (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Korean (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Norwegian (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Polish (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Portuguese (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Russian (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Spanish (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Swedish (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Thai (Version: 2008.0225.2152.39091 - ATI) Hidden
CCC Help Turkish (Version: 2008.0225.2152.39091 - ATI) Hidden
ccc-Branding (Version: 1.00.0000 - ATI)
ccc-core-static (Version: 2008.0225.2153.39091 - Ihr Firmenname) Hidden
ccc-utility (Version: 2008.0225.2153.39091 - ATI) Hidden
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000 - Microsoft Corporation)
Copy (Version: 5.31.0.150 - Hewlett-Packard) Hidden
CreativeProjects (Version: 5.31.0.150 - Hewlett-Packard) Hidden
CyberLink DVD Suite Deluxe (Version: 5.5.1019 - CyberLink Corp.)
DHTML Editing Component (Version: 6.02.0001 - Microsoft Corporation)
Director (Version: 5.31.0.154 - Hewlett-Packard) Hidden
DocProc (Version: 3.1.0.0 - Hewlett-Packard) Hidden
ElsterFormular 2007/2008 (Version: 9.2.0.0 - Steuerverwaltung des Bundes und der Länder)
ElsterFormular für Unternehmer (Version: 12.1.0.6164u - Landesfinanzdirektion Thüringen)
ElsterFormular-Upgrade (Version: 14.1.11318 - Landesfinanzdirektion Thüringen)
Google Earth (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden
Google Updater (Version: 2.4.2432.1652 - Google Inc.)
Hewlett-Packard Active Check (Version: 1.1.11.0 - Hewlett-Packard) Hidden
Hewlett-Packard Asset Agent for Health Check (Version: 2.0.62.5 - HP) Hidden
HP Active Support Library (Version: 2.3.0.2 - Hewlett-Packard)
HP Customer Feedback (Version: 1.0.0 - Hewlett-Packard) Hidden
HP Photo & Imaging 3.1 (Version: 3.1 - HP)
HP Photosmart Essential 2.5 (Version: 1.02.0000 - Hewlett-Packard) Hidden
HP Photosmart Essential 2.5 (Version: 2.5 - HP)
hpmdtab (Version: 2.0.470.1598 - Hewlett-Packard) Hidden
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000 - Hewlett-Packard) Hidden
HPpromotions (Version: 1.00.0000 - Hewlett-Packard) Hidden
HPSystemDiagnostics (Version: 1.5.0.0 - Your Company Name) Hidden
InstantShare (Version: 3.1.0.13 - Hewlett-Packard) Hidden
Intel(R) Matrix Storage Manager (Version: - )
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
LabelPrint (Version: 2.2.2209 - CyberLink Corp.)
Lexmark (Version: 1.0.0.0 - )
Lexmark Pro200-S500 Series (Version: - Lexmark International, Inc.)
Lexmark Symbolleiste (Version: 4.63.37.0 - )
Lexmark Tools for Office (Version: 1.29.0.0 - )
LightScribe System Software (Version: 1.18.3.2 - LightScribe)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
Memories Disc Creator 2.0 (Version: 2.0.470.1598 - Memories Disc Creator 2.0)
Microsoft .NET Framework 1.1 (Version: - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 German Language Pack (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2572067) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2656370) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (Version: - )
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2000 Professional (Version: 9.00.2816 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 4.0.60831.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual J# .NET Redistributable Package 1.1 (Version: 1.1.4322 - Microsoft)
Microsoft Works (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (Version: 19.0.2 - Mozilla)
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
PhotoGallery (Version: 5.31.0.158 - Hewlett-Packard) Hidden
Power2Go (Version: 5.6.3417 - CyberLink Corp.)
PowerDirector (Version: 6.5.2209 - CyberLink Corp.)
PowerDirector (Version: 6.5.2209 - CyberLink Corp.) Hidden
Profi cash (Version: - )
ProtectDisc Driver, Version 11 (Version: 11.0.0.12 - ProtectDisc Software GmbH)
pro-WINNER Vereinsverwaltung V7 (Version: 7.0 - pro-WINNER GmbH)
PSSWCORE (Version: 2.02.0000 - Hewlett-Packard) Hidden
Python 2.5 (Version: 2.5.150 - Martin v. Löwis)
QFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
QuickProjects (Version: 5.31.0.147 - Hewlett-Packard) Hidden
QuickTime (Version: 7.66.71.0 - Apple Inc.)
QuickVerein (Version: 9.00.0000 - Lexware)
QuickVerein 2011 (Version: - )
QuickVerein 2012 (Version: - )
Realtek High Definition Audio Driver (Version: 6.0.1.5548 - Realtek Semiconductor Corp.)
Skins (Version: 2008.0225.2153.39091 - ATI) Hidden
SkinsHP1 (Version: 5.31.0.147 - Hewlett-Packard) Hidden
SkinsHP2 (Version: 5.31.0.147 - Hewlett-Packard) Hidden
Skype™ 6.0 (Version: 6.0.126 - Skype Technologies S.A.)
Sony Ericsson PC Suite (Version: 4.010.00 - )
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0 - Adobe Systems Incorporated)
T-Online 6.0 (Version: - )
T-Online WLAN-Access Finder (Version: - )
TrayApp (Version: 5.31.0.147 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1 - Microsoft Corporation)
Update für Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft)
Update Installer for WildTangent Games App (Version: - WildTangent) Hidden
Update QuickVerein 2011 (Version: - )
Update QuickVerein 2012 (Version: - )
VideoToolkit01 (Version: 100.0.128.000 - Hewlett-Packard) Hidden
WebReg (Version: 5.31.0.147 - Hewlett-Packard) Hidden
WildTangent Games App (HP Games) (Version: 4.0.4.15 - WildTangent)
Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sync (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live-Uploadtool (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR 4.20 (32-Bit) (Version: 4.20.0 - win.rar GmbH)
Yahoo! Detect (Version: - )
==================== Restore Points =========================
23-11-2013 08:41:04 Geplanter Prüfpunkt
30-11-2013 09:01:20 Geplanter Prüfpunkt
01-12-2013 08:41:38 Geplanter Prüfpunkt
07-12-2013 09:10:25 Geplanter Prüfpunkt
27-12-2013 09:31:47 Geplanter Prüfpunkt
31-12-2013 09:41:09 Geplanter Prüfpunkt
05-01-2014 08:53:34 Geplanter Prüfpunkt
11-01-2014 09:34:56 Geplanter Prüfpunkt
17-01-2014 15:45:59 Geplanter Prüfpunkt
23-01-2014 17:22:32 Geplanter Prüfpunkt
28-01-2014 15:33:45 Installed Java 7 Update 51
28-01-2014 15:44:03 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
30-01-2014 17:01:35 Geplanter Prüfpunkt
04-02-2014 17:25:42 Geplanter Prüfpunkt
09-02-2014 08:34:14 Windows-Sicherung
09-02-2014 08:37:56 Windows-Sicherung
11-02-2014 18:36:30 Wiederherstellungspunkt vor Fehlerhafte Patchregistrierungsschlüssel
12-02-2014 14:01:05 Windows Update
12-02-2014 14:03:07 Windows Update
12-02-2014 14:29:01 Windows Update
12-02-2014 14:41:32 Windows-Modulinstallation
12-02-2014 14:42:25 Windows-Modulinstallation
12-02-2014 15:15:12 Windows Update
12-02-2014 15:29:37 Windows Update
13-02-2014 17:55:59 Windows Update
16-02-2014 12:25:41 Windows Update
18-02-2014 06:17:30 Windows Update
19-02-2014 18:14:56 Windows Update
==================== Hosts content: ==========================
2006-11-02 11:23 - 2013-04-04 15:00 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {1ACD1D10-959B-4832-ADE9-EC305C4E198F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-25] (Google Inc.)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {20D980FC-5F69-4BBB-BA48-777A123CBB4D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-25] (Google Inc.)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {3C5BE1B4-465F-4F3C-9970-D966437D81D2} - System32\Tasks\JavaUpdateAdministrator => C:\Windows\system32\jusched.exe
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {4C90D241-EC9E-45BD-87D5-831A8858910B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-08] (Adobe Systems Incorporated)
Task: {7BCE9ADF-37AE-4201-BF9A-0FF985F073F2} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {89B6AB16-0873-4A5C-8C36-6545358433D5} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {8E8DF0D4-07A5-4D42-B634-5A5CD342ABCA} - System32\Tasks\{9C21070F-04C6-4D52-A623-29B3036EF840} => C:\Program Files\Skype\Phone\Skype.exe [2012-11-09] (Skype Technologies S.A.)
Task: {A57CA0FE-8BF5-48AA-BB5F-EBA1ADC0FF2E} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - windows => C:\Program Files\Windows Calendar\wincal.exe [2009-04-11] (Microsoft Corporation)
Task: {B1421341-0426-4CE5-A0A7-2F9AF31C7191} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {E3EDA540-A220-47EA-B2FD-5E0A51473F38} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-04] (Google)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2008-05-22 03:27 - 2011-08-19 02:09 - 00528384 _____ () C:\Program Files\Lexmark Toolbar\toolband.dll
2008-05-22 03:28 - 2011-08-19 02:25 - 00471040 _____ () C:\Program Files\Lexmark Toolbar\resource.dll
2008-01-09 11:46 - 2008-02-25 21:10 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2008-03-26 18:00 - 2008-03-26 18:00 - 00465920 _____ () C:\Program Files\Browser Mouse\Mouse32V.exe
2008-03-26 18:00 - 2008-03-26 18:00 - 00037376 _____ () C:\Program Files\Browser Mouse\MOUDL32V.DLL
2011-02-12 10:52 - 2011-01-23 19:00 - 00770728 _____ () C:\Program Files\Lexmark Pro200-S500 Series\lxebmon.exe
2011-02-12 10:52 - 2010-04-01 18:23 - 00389120 _____ () C:\Program Files\Lexmark Pro200-S500 Series\lxebscw.dll
2011-02-12 10:57 - 2009-05-27 13:16 - 00192512 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxebdatr.dll
2011-02-12 10:52 - 2010-04-01 18:24 - 01159168 _____ () C:\Program Files\Lexmark Pro200-S500 Series\lxebDRS.dll
2011-02-12 10:52 - 2009-03-10 06:43 - 00155648 _____ () C:\Program Files\Lexmark Pro200-S500 Series\lxebcaps.dll
2011-02-12 10:51 - 2009-02-20 09:48 - 00299008 _____ () C:\Windows\system32\lxebsm.dll
2011-02-12 10:51 - 2009-04-28 08:56 - 00024064 _____ () C:\Windows\system32\lxebsmr.dll
2011-02-12 10:52 - 2011-01-23 19:00 - 00148280 _____ () C:\Program Files\Lexmark Pro200-S500 Series\ezprint.exe
2011-02-12 10:52 - 2010-04-05 11:56 - 00716954 _____ () C:\Program Files\Lexmark Pro200-S500 Series\Epwizard.DLL
2011-02-12 10:52 - 2010-04-05 11:55 - 00159890 _____ () C:\Program Files\Lexmark Pro200-S500 Series\customui.dll
2011-02-12 10:52 - 2010-04-05 11:54 - 00123033 _____ () C:\Program Files\Lexmark Pro200-S500 Series\Eputil.DLL
2011-02-12 10:52 - 2010-04-05 11:54 - 00143502 _____ () C:\Program Files\Lexmark Pro200-S500 Series\Imagutil.DLL
2011-02-12 10:52 - 2010-04-05 11:55 - 00061604 _____ () C:\Program Files\Lexmark Pro200-S500 Series\Epfunct.DLL
2011-02-12 10:52 - 2009-06-23 12:09 - 02203648 _____ () C:\Program Files\Lexmark Pro200-S500 Series\EPWizRes.dll
2011-02-12 10:52 - 2009-06-23 12:10 - 00045056 _____ () C:\Program Files\Lexmark Pro200-S500 Series\epstring.dll
2011-02-12 10:52 - 2009-06-23 12:11 - 00102400 _____ () C:\Program Files\Lexmark Pro200-S500 Series\EPOEMDll.dll
2011-02-12 10:52 - 2009-04-07 20:25 - 00409600 _____ () C:\Program Files\Lexmark Pro200-S500 Series\iptk.dll
2011-02-12 10:52 - 2009-03-02 15:25 - 00151552 _____ () C:\Program Files\Lexmark Pro200-S500 Series\lxebptp.dll
2014-02-18 07:25 - 2014-02-18 07:25 - 03578992 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: Microsoft-6zu4-Adapter #9
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
Name: Microsoft-6zu4-Adapter #12
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Event log errors: =========================
Application errors:
==================
Error: (02/19/2014 07:15:16 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service wbengine since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (02/19/2014 07:08:34 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (1220) SUS20ClientDataStore: Der Versionsspeicher für Instanz 0 hat seine maximale Größe von 8 MB erreicht. Wahrscheinlich verhindert eine lange andauernde Transaktion die Bereinigung des Versionsspeichers und vergrößert ihn. Aktualisierungen werden zurückgewiesen, bis für die betreffende Transaktion ein vollständiger Commit- oder Rollbackvorgang durchgeführt wurde.
Mögliche lange andauernde Transaktion:
Sitzungs-ID: 0x01B20320
Sitzungskontext: 0x00000000
Thread-ID des Sitzungskontextes: 0x00000BC8
Cleanup: 1
Error: (02/19/2014 07:03:37 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (02/19/2014 06:24:44 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (1240) SUS20ClientDataStore: Der Versionsspeicher für Instanz 0 hat seine maximale Größe von 8 MB erreicht. Wahrscheinlich verhindert eine lange andauernde Transaktion die Bereinigung des Versionsspeichers und vergrößert ihn. Aktualisierungen werden zurückgewiesen, bis für die betreffende Transaktion ein vollständiger Commit- oder Rollbackvorgang durchgeführt wurde.
Mögliche lange andauernde Transaktion:
Sitzungs-ID: 0x01F40320
Sitzungskontext: 0x00000000
Thread-ID des Sitzungskontextes: 0x00000C28
Cleanup: 1
Error: (02/19/2014 06:19:14 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (02/18/2014 07:44:59 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}
Error: (02/18/2014 06:40:12 PM) (Source: ESENT) (User: )
Description: wuaueng.dll (1228) SUS20ClientDataStore: Der Versionsspeicher für Instanz 0 hat seine maximale Größe von 8 MB erreicht. Wahrscheinlich verhindert eine lange andauernde Transaktion die Bereinigung des Versionsspeichers und vergrößert ihn. Aktualisierungen werden zurückgewiesen, bis für die betreffende Transaktion ein vollständiger Commit- oder Rollbackvorgang durchgeführt wurde.
Mögliche lange andauernde Transaktion:
Sitzungs-ID: 0x01F80320
Sitzungskontext: 0x00000000
Thread-ID des Sitzungskontextes: 0x00000938
Cleanup: 1
Error: (02/18/2014 06:34:32 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
Error: (02/18/2014 07:17:51 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service wbengine since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (02/18/2014 07:12:13 AM) (Source: ESENT) (User: )
Description: wuaueng.dll (1232) SUS20ClientDataStore: Der Versionsspeicher für Instanz 0 hat seine maximale Größe von 8 MB erreicht. Wahrscheinlich verhindert eine lange andauernde Transaktion die Bereinigung des Versionsspeichers und vergrößert ihn. Aktualisierungen werden zurückgewiesen, bis für die betreffende Transaktion ein vollständiger Commit- oder Rollbackvorgang durchgeführt wurde.
Mögliche lange andauernde Transaktion:
Sitzungs-ID: 0x01E50320
Sitzungskontext: 0x00000000
Thread-ID des Sitzungskontextes: 0x000007A0
Cleanup: 1
System errors:
=============
Error: (02/19/2014 07:21:53 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: 0x80070643Definitionsupdate für Microsoft Security Essentials – KB2310138 (Definition 1.167.191.0){6A3A9E01-360C-4546-8274-74F96707D8ED}201
Error: (02/19/2014 07:21:48 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.167.191.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.4.0304.00
Quellpfad: 4.4.0304.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (02/19/2014 07:21:44 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren des Moduls wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Modulversion:
Vorherige Modulversion: 2.1.10003.0
Modultyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Fehlercode: %NT-AUTORITÄT601
Fehlerbeschreibung: %NT-AUTORITÄT602
Error: (02/19/2014 07:21:44 PM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 109.107.0.0
Aktualisierungsquelle: %NT-AUTORITÄT15
Aktualisierungsphase: 4.4.0304.00
Quellpfad: 4.4.0304.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (02/19/2014 07:21:44 PM) (Source: Microsoft Antimalware) (User: )
Description: Vom Echtzeitschutz-Feature von %%860 wurde ein Fehler festgestellt
Feature: %%886
Fehlercode: 0x8007042c
Fehlerbeschreibung: Der Abhängigkeitsdienst oder die Abhängigkeitsgruppe konnte nicht gestartet werden.
Grund: %%892
Error: (02/19/2014 07:03:35 PM) (Source: Service Control Manager) (User: )
Description: Net.Tcp-ListeneradapterNet.Tcp-Portfreigabedienst%%1058
Error: (02/19/2014 07:03:35 PM) (Source: Service Control Manager) (User: )
Description: Net.Pipe-Listeneradapterwas
Error: (02/19/2014 07:03:35 PM) (Source: Service Control Manager) (User: )
Description: Net.Msmq-Listeneradaptermsmq
Error: (02/19/2014 07:03:33 PM) (Source: Microsoft Antimalware) (User: )
Description: Vom Echtzeitschutz-Feature von %%860 wurde ein Fehler festgestellt
Feature: %%886
Fehlercode: 0x8007042c
Fehlerbeschreibung: Der Abhängigkeitsdienst oder die Abhängigkeitsgruppe konnte nicht gestartet werden.
Grund: %%892
Error: (02/19/2014 07:03:33 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D215781D-019E-4FA0-903D-0CDCDE13A4F5}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Microsoft Office Sessions:
=========================
Error: (06/03/2011 08:07:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 19 seconds with 0 seconds of active time. This session ended with a crash.
Error: (06/02/2011 07:53:54 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 28 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/22/2011 02:49:13 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/19/2011 02:55:44 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/06/2011 04:45:16 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.
Error: (11/10/2010 04:26:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.
Error: (08/28/2010 10:31:30 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.
Error: (10/26/2009 10:55:19 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1717 seconds with 840 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2013-09-29 09:37:42.756
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:42.579
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:42.401
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:41.687
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:41.517
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:41.342
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:41.171
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:40.995
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-29 09:37:40.824
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-09-21 19:47:22.915
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\atipdlxx.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 57%
Total physical RAM: 2046.58 MB
Available physical RAM: 864.02 MB
Total Pagefile: 4338.17 MB
Available Pagefile: 2885.69 MB
Total Virtual: 2047.88 MB
Available Virtual: 1890.67 MB
==================== Drives ================================
Drive c: (COMPAQ) (Fixed) (Total:325.11 GB) (Free:215.48 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (FACTORY_IMAGE) (Fixed) (Total:10.23 GB) (Free:1.08 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 335 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=325 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |