Fehlermeldung bei Windowsstart RegSvr32.exe

sondaro · 01.06.2014, 12:23

Hallo Matthias,

danke für die rasche Antwort. Vorab, das ist das Netbook einer Bekannten um das ich mich kümmern soll. Ist dieser mal für ein paar Tage vergriffen, gebe ich Bescheid.

FRST:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-06-2014
Ran by Alexandra (administrator) on ALEXANDRA-PC on 01-06-2014 13:03:57
Running from C:\Users\Alexandra\Desktop
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [7144960 2013-01-02] (Broadcom Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452456 2012-02-22] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2909968 2013-01-03] (Synaptics Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3888648 2014-05-30] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3486488955-2479430902-3047591147-1000\...\Run: [cisczhl] => regsvr32.exe "C:\ProgramData\cisczhl.dat"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-01] (AVAST Software)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2140984 2014-04-15] (TuneUp Software)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5836800 2013-01-02] (Broadcom Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [76960 2012-02-27] (Atheros)

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-01] ()
R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [22600 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-17] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-17] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-01] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2014-03-26] (TuneUp Software)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-01 13:03 - 2014-06-01 13:04 - 00006000 _____ () C:\Users\Alexandra\Desktop\FRST.txt
2014-06-01 13:03 - 2014-06-01 13:03 - 00000000 ____D () C:\FRST
2014-06-01 13:02 - 2014-06-01 13:02 - 02067456 _____ (Farbar) C:\Users\Alexandra\Desktop\FRST64.exe
2014-05-31 20:32 - 2014-05-31 20:32 - 00008765 _____ () C:\Users\Alexandra\Desktop\dds.txt
2014-05-31 20:32 - 2014-05-31 20:32 - 00002415 _____ () C:\Users\Alexandra\Desktop\attach.txt
2014-05-31 20:09 - 2014-05-31 20:09 - 00700783 ____R (Swearware) C:\Users\Alexandra\Desktop\dds+.exe
2014-05-31 18:29 - 2014-05-31 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unknown Device Identifier 8.00
2014-05-31 18:29 - 2014-05-31 18:29 - 00000000 ____D () C:\Program Files\Unknown Device Identifier
2014-05-31 18:28 - 2014-05-31 18:28 - 01087058 _____ (Huntersoft ) C:\Users\Alexandra\Downloads\Unknown80DeviceIdentifier.exe
2014-05-31 18:03 - 2014-05-31 18:03 - 00003544 ____N () C:\bootsqm.dat
2014-05-31 16:41 - 2014-05-31 16:41 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-05-31 16:41 - 2014-05-31 16:41 - 00002205 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\Users\Alexandra\AppData\Roaming\TuneUp Software
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\Users\Alexandra\AppData\Local\TuneUp Software
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-05-31 16:41 - 2014-04-15 15:59 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-05-31 16:41 - 2014-04-15 15:59 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-05-31 16:41 - 2014-04-15 15:59 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-05-31 16:39 - 2014-05-31 16:42 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-31 16:38 - 2014-05-31 16:46 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-31 16:38 - 2014-05-31 16:38 - 27883432 _____ (TuneUp Software) C:\Users\Alexandra\Downloads\TuneUpUtilities2014_de-DE.exe
2014-05-29 18:36 - 2014-05-29 20:13 - 00012849 _____ () C:\Users\Alexandra\Desktop\Neues Textdokument.txt
2014-05-27 12:21 - 2014-05-27 12:21 - 00233737 _____ () C:\Users\Alexandra\Downloads\Vieles in der Bibel ist nicht Gottes Wort_ Fälschungen und Widersprüche in der Bibel.mht
2014-05-19 12:29 - 2014-05-19 12:29 - 00295907 _____ () C:\Users\Alexandra\Downloads\Elberfelder Bibel – Wikipedia.mht
2014-05-19 12:06 - 2014-05-19 12:06 - 00317967 _____ () C:\Users\Alexandra\Downloads\El (Gott) – Wikipedia.mht
2014-05-19 11:56 - 2014-05-19 11:56 - 00305376 _____ () C:\Users\Alexandra\Downloads\Biblia Hebraica – Wikipedia.mht
2014-05-19 11:53 - 2014-05-19 11:53 - 00630962 _____ () C:\Users\Alexandra\Downloads\JHWH – Wikipedia.mht
2014-05-18 15:24 - 2014-05-18 15:24 - 01587123 _____ () C:\Users\Alexandra\Downloads\Bibelkunde __ bibelwissenschaft.de.mht
2014-05-18 15:16 - 2014-05-18 15:16 - 00973641 _____ () C:\Users\Alexandra\Downloads\„Der Tag des Herrn“ im Buch des Propheten Amos _ Wissenschaftlich-Theologisches Portal Bogoslov.Ru.mht
2014-05-18 15:08 - 2014-05-18 15:08 - 00469106 _____ () C:\Users\Alexandra\Downloads\Gilgamesch-Epos – Wikipedia.mht
2014-05-18 15:06 - 2014-05-18 15:06 - 00328323 _____ () C:\Users\Alexandra\Downloads\Theophanie – Wikipedia.mht
2014-05-18 14:26 - 2014-05-18 14:26 - 00310463 _____ () C:\Users\Alexandra\Downloads\Buch Esra – Wikipedia.mht
2014-05-18 14:25 - 2014-05-18 14:25 - 00346628 _____ () C:\Users\Alexandra\Downloads\Esra (Person) – Wikipedia.mht
2014-05-18 14:24 - 2014-05-18 14:24 - 00407106 _____ () C:\Users\Alexandra\Downloads\Maleachi – Wikipedia.mht
2014-05-18 14:19 - 2014-05-18 14:19 - 00319703 _____ () C:\Users\Alexandra\Downloads\Tag des Herrn – Wikipedia.mht
2014-05-18 14:05 - 2014-05-18 14:05 - 00000000 ____D () C:\Users\Alexandra\Documents\Neuer Ordner (2)
2014-05-18 14:00 - 2014-05-18 14:00 - 00662437 _____ () C:\Users\Alexandra\Downloads\1. Buch Mose – Wikipedia.mht
2014-05-18 13:58 - 2014-05-18 13:58 - 00292457 _____ () C:\Users\Alexandra\Downloads\Eisegese – Wikipedia.mht
2014-05-18 13:54 - 2014-05-18 13:54 - 00423769 _____ () C:\Users\Alexandra\Downloads\Biblische Exegese – Wikipedia.mht
2014-05-18 13:52 - 2014-05-18 13:52 - 00477781 _____ () C:\Users\Alexandra\Downloads\Evangelium nach Matthäus – Wikipedia.mht
2014-05-18 13:52 - 2014-05-18 13:52 - 00296522 _____ () C:\Users\Alexandra\Downloads\Das Matthäus-Evangelium – Wikipedia.mht
2014-05-18 13:39 - 2014-05-18 13:39 - 00818595 _____ () C:\Users\Alexandra\Downloads\Evangelium nach Johannes – Wikipedia.mht
2014-05-18 13:39 - 2014-05-18 13:39 - 00337492 _____ () C:\Users\Alexandra\Downloads\Sacharja – Wikipedia.mht
2014-05-18 13:38 - 2014-05-18 13:38 - 00789547 _____ () C:\Users\Alexandra\Downloads\Zeugen Jehovas – Wikipedia.mht
2014-05-18 13:38 - 2014-05-18 13:38 - 00506443 _____ () C:\Users\Alexandra\Downloads\Jesaja – Wikipedia.mht
2014-05-18 13:38 - 2014-05-18 13:38 - 00334722 _____ () C:\Users\Alexandra\Downloads\Eschatologie – Wikipedia.mht
2014-05-18 13:37 - 2014-05-18 13:37 - 00519500 _____ () C:\Users\Alexandra\Downloads\Jüngstes Gericht – Wikipedia.mht
2014-05-18 13:37 - 2014-05-18 13:37 - 00457709 _____ () C:\Users\Alexandra\Downloads\Finsternis bei der Kreuzigung Jesu – Wikipedia.mht
2014-05-18 13:37 - 2014-05-18 13:37 - 00336333 _____ () C:\Users\Alexandra\Downloads\Buch Amos – Wikipedia.mht

==================== One Month Modified Files and Folders =======

2014-06-01 13:04 - 2014-06-01 13:03 - 00006000 _____ () C:\Users\Alexandra\Desktop\FRST.txt
2014-06-01 13:04 - 2013-01-02 17:50 - 00000000 ____D () C:\Users\Alexandra\AppData\Local\Temp
2014-06-01 13:03 - 2014-06-01 13:03 - 00000000 ____D () C:\FRST
2014-06-01 13:02 - 2014-06-01 13:02 - 02067456 _____ (Farbar) C:\Users\Alexandra\Desktop\FRST64.exe
2014-06-01 13:01 - 2009-07-14 06:45 - 00021248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-01 13:01 - 2009-07-14 06:45 - 00021248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-01 12:53 - 2013-01-03 00:41 - 01607147 _____ () C:\Windows\WindowsUpdate.log
2014-06-01 12:50 - 2013-01-07 00:57 - 00058288 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll
2014-06-01 12:50 - 2013-01-07 00:53 - 00017920 _____ () C:\Windows\system32\rpcnetp.exe
2014-06-01 12:50 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-01 12:50 - 2009-07-14 06:51 - 00080412 _____ () C:\Windows\setupact.log
2014-06-01 11:37 - 2013-05-24 23:46 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-01 11:24 - 2013-01-04 02:17 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-05-31 20:32 - 2014-05-31 20:32 - 00008765 _____ () C:\Users\Alexandra\Desktop\dds.txt
2014-05-31 20:32 - 2014-05-31 20:32 - 00002415 _____ () C:\Users\Alexandra\Desktop\attach.txt
2014-05-31 20:09 - 2014-05-31 20:09 - 00700783 ____R (Swearware) C:\Users\Alexandra\Desktop\dds+.exe
2014-05-31 18:29 - 2014-05-31 18:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unknown Device Identifier 8.00
2014-05-31 18:29 - 2014-05-31 18:29 - 00000000 ____D () C:\Program Files\Unknown Device Identifier
2014-05-31 18:28 - 2014-05-31 18:28 - 01087058 _____ (Huntersoft ) C:\Users\Alexandra\Downloads\Unknown80DeviceIdentifier.exe
2014-05-31 18:04 - 2013-01-07 00:54 - 00017920 _____ () C:\Windows\SysWOW64\rpcnetp.dll
2014-05-31 18:04 - 2013-01-07 00:53 - 00017920 _____ () C:\Windows\SysWOW64\rpcnetp.exe
2014-05-31 18:04 - 2010-11-21 05:47 - 00518412 _____ () C:\Windows\PFRO.log
2014-05-31 18:03 - 2014-05-31 18:03 - 00003544 ____N () C:\bootsqm.dat
2014-05-31 16:46 - 2014-05-31 16:38 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-05-31 16:46 - 2013-06-04 19:46 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-05-31 16:46 - 2013-06-04 19:40 - 00000000 __SHD () C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
2014-05-31 16:42 - 2014-05-31 16:39 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-05-31 16:41 - 2014-05-31 16:41 - 00002213 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-05-31 16:41 - 2014-05-31 16:41 - 00002205 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\Users\Alexandra\AppData\Roaming\TuneUp Software
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\Users\Alexandra\AppData\Local\TuneUp Software
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-05-31 16:41 - 2014-05-31 16:41 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-05-31 16:38 - 2014-05-31 16:38 - 27883432 _____ (TuneUp Software) C:\Users\Alexandra\Downloads\TuneUpUtilities2014_de-DE.exe
2014-05-31 16:19 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-29 20:13 - 2014-05-29 18:36 - 00012849 _____ () C:\Users\Alexandra\Desktop\Neues Textdokument.txt
2014-05-27 12:21 - 2014-05-27 12:21 - 00233737 _____ () C:\Users\Alexandra\Downloads\Vieles in der Bibel ist nicht Gottes Wort_ Fälschungen und Widersprüche in der Bibel.mht
2014-05-19 12:29 - 2014-05-19 12:29 - 00295907 _____ () C:\Users\Alexandra\Downloads\Elberfelder Bibel – Wikipedia.mht
2014-05-19 12:06 - 2014-05-19 12:06 - 00317967 _____ () C:\Users\Alexandra\Downloads\El (Gott) – Wikipedia.mht
2014-05-19 11:56 - 2014-05-19 11:56 - 00305376 _____ () C:\Users\Alexandra\Downloads\Biblia Hebraica – Wikipedia.mht
2014-05-19 11:53 - 2014-05-19 11:53 - 00630962 _____ () C:\Users\Alexandra\Downloads\JHWH – Wikipedia.mht
2014-05-18 20:10 - 2011-04-12 09:43 - 00643866 _____ () C:\Windows\system32\perfh007.dat
2014-05-18 20:10 - 2011-04-12 09:43 - 00126394 _____ () C:\Windows\system32\perfc007.dat
2014-05-18 20:10 - 2009-07-14 07:13 - 01472002 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-18 15:24 - 2014-05-18 15:24 - 01587123 _____ () C:\Users\Alexandra\Downloads\Bibelkunde __ bibelwissenschaft.de.mht
2014-05-18 15:16 - 2014-05-18 15:16 - 00973641 _____ () C:\Users\Alexandra\Downloads\„Der Tag des Herrn“ im Buch des Propheten Amos _ Wissenschaftlich-Theologisches Portal Bogoslov.Ru.mht
2014-05-18 15:08 - 2014-05-18 15:08 - 00469106 _____ () C:\Users\Alexandra\Downloads\Gilgamesch-Epos – Wikipedia.mht
2014-05-18 15:06 - 2014-05-18 15:06 - 00328323 _____ () C:\Users\Alexandra\Downloads\Theophanie – Wikipedia.mht
2014-05-18 14:26 - 2014-05-18 14:26 - 00310463 _____ () C:\Users\Alexandra\Downloads\Buch Esra – Wikipedia.mht
2014-05-18 14:25 - 2014-05-18 14:25 - 00346628 _____ () C:\Users\Alexandra\Downloads\Esra (Person) – Wikipedia.mht
2014-05-18 14:24 - 2014-05-18 14:24 - 00407106 _____ () C:\Users\Alexandra\Downloads\Maleachi – Wikipedia.mht
2014-05-18 14:19 - 2014-05-18 14:19 - 00319703 _____ () C:\Users\Alexandra\Downloads\Tag des Herrn – Wikipedia.mht
2014-05-18 14:05 - 2014-05-18 14:05 - 00000000 ____D () C:\Users\Alexandra\Documents\Neuer Ordner (2)
2014-05-18 14:00 - 2014-05-18 14:00 - 00662437 _____ () C:\Users\Alexandra\Downloads\1. Buch Mose – Wikipedia.mht
2014-05-18 13:58 - 2014-05-18 13:58 - 00292457 _____ () C:\Users\Alexandra\Downloads\Eisegese – Wikipedia.mht
2014-05-18 13:54 - 2014-05-18 13:54 - 00423769 _____ () C:\Users\Alexandra\Downloads\Biblische Exegese – Wikipedia.mht
2014-05-18 13:52 - 2014-05-18 13:52 - 00477781 _____ () C:\Users\Alexandra\Downloads\Evangelium nach Matthäus – Wikipedia.mht
2014-05-18 13:52 - 2014-05-18 13:52 - 00296522 _____ () C:\Users\Alexandra\Downloads\Das Matthäus-Evangelium – Wikipedia.mht
2014-05-18 13:39 - 2014-05-18 13:39 - 00818595 _____ () C:\Users\Alexandra\Downloads\Evangelium nach Johannes – Wikipedia.mht
2014-05-18 13:39 - 2014-05-18 13:39 - 00337492 _____ () C:\Users\Alexandra\Downloads\Sacharja – Wikipedia.mht
2014-05-18 13:38 - 2014-05-18 13:38 - 00789547 _____ () C:\Users\Alexandra\Downloads\Zeugen Jehovas – Wikipedia.mht
2014-05-18 13:38 - 2014-05-18 13:38 - 00506443 _____ () C:\Users\Alexandra\Downloads\Jesaja – Wikipedia.mht
2014-05-18 13:38 - 2014-05-18 13:38 - 00334722 _____ () C:\Users\Alexandra\Downloads\Eschatologie – Wikipedia.mht
2014-05-18 13:37 - 2014-05-18 13:37 - 00519500 _____ () C:\Users\Alexandra\Downloads\Jüngstes Gericht – Wikipedia.mht
2014-05-18 13:37 - 2014-05-18 13:37 - 00457709 _____ () C:\Users\Alexandra\Downloads\Finsternis bei der Kreuzigung Jesu – Wikipedia.mht
2014-05-18 13:37 - 2014-05-18 13:37 - 00336333 _____ () C:\Users\Alexandra\Downloads\Buch Amos – Wikipedia.mht
2014-05-17 20:48 - 2014-01-18 16:52 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-05-17 20:48 - 2013-01-04 02:17 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-05-17 20:48 - 2013-01-04 02:17 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-05-16 21:02 - 2013-05-20 19:04 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-14 11:38 - 2013-05-24 23:46 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-14 11:38 - 2013-04-19 21:16 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 11:38 - 2013-04-19 21:16 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-11 22:25 - 2013-08-19 13:31 - 00028856 _____ () C:\Users\Alexandra\Documents\Ilie.odt
2014-05-06 23:24 - 2014-04-12 21:25 - 00000000 ____D () C:\Users\Alexandra\AppData\Local\Google
2014-05-06 23:24 - 2013-11-28 13:50 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-02 23:04 - 2013-05-03 17:24 - 00000000 ____D () C:\Users\Alexandra\AppData\Roaming\Spotify
2014-05-02 22:09 - 2013-05-03 17:24 - 00000000 ____D () C:\Users\Alexandra\AppData\Local\Spotify

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2012-05-09 19:32] - [2012-05-09 19:32] - 0391168 ____A (Microsoft Corporation) EC5BD25A41E9B633CB39120DBB0939DC

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2012-05-09 20:12] - [2012-05-09 20:12] - 2872320 ____A (Microsoft Corporation) A27FB0CA2971BEC02595902A9FD35D6D

C:\Windows\SysWOW64\explorer.exe
[2012-05-09 20:12] - [2012-05-09 20:12] - 2616320 ____A (Microsoft Corporation) 82B49E32080BF5C469BF877C473B15EB

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2012-05-09 19:42] - [2012-05-09 19:42] - 1008128 ____A (Microsoft Corporation) 7FB4D54B502C6CF2E35B8188FA4CC08C

C:\Windows\SysWOW64\User32.dll
[2012-05-09 19:42] - [2012-05-09 19:42] - 0833024 ____A (Microsoft Corporation) 9B836EE76E3A99052EF6DEA52B41D1BE

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2012-05-09 20:09] - [2012-05-09 20:09] - 0512512 ____A (Microsoft Corporation) 29AC62409BF4939EE14D70EC07CA12BB

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2012-05-09 19:43] - [2012-05-09 19:43] - 0296816 ____A (Microsoft Corporation) ABFECA99D72CE81E5C3612861F03B0CA



LastRegBack: 2014-05-29 13:43

==================== End Of Log ============================

--- --- ---

Addition:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-06-2014
Ran by Alexandra at 2014-06-01 13:04:36
Running from C:\Users\Alexandra\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Atheros Driver Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Atheros)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 9.0.2018 - Avast Software)
Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.7.1 - Broadcom Corporation)
Broadcom NetLink Controller (HKLM\...\{486BEA43-6245-451C-9399-8600DB5E4D5A}) (Version: 15.2.5.1 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\Broadcom Wireless Utility) (Version: 5.100.196.18 - Broadcom Corporation)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Free YouTube to MP3 Converter version 3.12.20.1230 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
office wörterbuch 3 (HKLM-x32\...\office wörterbuch 3) (Version: 3.0 - Lingenio GmbH)
OpenOffice 4.0.0 (HKLM-x32\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 18.0.1284.68 (HKLM-x32\...\Opera 18.0.1284.68) (Version: 18.0.1284.68 - Opera Software ASA)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6577 - Realtek Semiconductor Corp.)
Spotify (HKCU\...\Spotify) (Version: 0.9.8.296.g91f68827 - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.1.0.0 - Synaptics Incorporated)
translate quick 11 (HKLM-x32\...\translate quick 11) (Version: 11.0 - Lingenio GmbH, Heidelberg)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.296 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.296 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.296 - TuneUp Software) Hidden
Unknown Device Identifier 8.00 (HKLM\...\Unknown Device Identifier_is1) (Version:  - Huntersoft)

==================== Restore Points  =========================

25-12-2013 21:43:55 Geplanter Prüfpunkt
18-01-2014 14:50:35 avast! antivirus system restore point
16-02-2014 15:05:45 avast! antivirus system restore point
27-02-2014 22:49:15 Geplanter Prüfpunkt
26-03-2014 09:23:23 Geplanter Prüfpunkt
12-04-2014 19:22:24 avast! antivirus system restore point
30-04-2014 22:03:33 avast! antivirus system restore point
14-05-2014 20:09:54 Geplanter Prüfpunkt
27-05-2014 15:00:35 Geplanter Prüfpunkt
31-05-2014 14:40:35 TuneUp Utilities 2014 wird installiert

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1AA73C65-B680-41A3-B734-80FAB55F9D7D} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {88725DF7-9E12-48F1-8BAF-DFC60236589F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-05-01] (AVAST Software)
Task: {C4BA5C92-AFEF-4410-A18C-6B37AB2BBA94} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-04-15 15:59 - 2014-04-15 15:59 - 00675640 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2012-03-27 09:33 - 2012-03-27 09:33 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-06-01 11:24 - 2014-06-01 11:24 - 02259456 _____ () C:\Program Files\AVAST Software\Avast\defs\14060100\algo.dll
2013-11-28 13:18 - 2013-11-28 13:18 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-01-03 21:58 - 2013-01-03 21:58 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\e04a5b3161f602a97ca595fda311ba36\IsdiInterop.ni.dll
2013-01-03 21:57 - 2011-11-29 21:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/01/2014 00:50:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/01/2014 11:24:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/31/2014 07:40:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/31/2014 06:05:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/31/2014 04:40:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddCorePnPFiles : Opening PnpLockdownFiles key failed.

System Error:
Zugriff verweigert
.

Error: (05/31/2014 04:19:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 05:33:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 02:08:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 00:23:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 11:44:26 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/01/2014 00:52:39 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/01/2014 00:52:31 PM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/01/2014 00:50:19 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom

Error: (06/01/2014 11:33:01 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/01/2014 11:32:58 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/01/2014 11:26:03 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/01/2014 11:24:52 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422

Error: (06/01/2014 11:24:36 AM) (Source: WMPNetworkSvc) (EventID: 14338) (User: )
Description: 0x80070422

Error: (06/01/2014 11:24:36 AM) (Source: WMPNetworkSvc) (EventID: 14338) (User: )
Description: 0x80070422

Error: (06/01/2014 11:24:00 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
cdrom


Microsoft Office Sessions:
=========================
Error: (06/01/2014 00:50:54 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/01/2014 11:24:33 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/31/2014 07:40:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/31/2014 06:05:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/31/2014 04:40:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddCorePnPFiles : Opening PnpLockdownFiles key failed.

System Error:
Zugriff verweigert

Error: (05/31/2014 04:19:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 05:33:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 02:08:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 00:23:58 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/30/2014 11:44:26 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info =========================== 

Percentage of memory in use: 30%
Total physical RAM: 3932.36 MB
Available physical RAM: 2737.21 MB
Total Pagefile: 7862.91 MB
Available Pagefile: 6612.12 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:200.76 GB) (Free:157.62 GB) NTFS
Drive d: () (Fixed) (Total:264.9 GB) (Free:250.93 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 12E5A217)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=265 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=201 GB) - (Type=07 NTFS)

==================== End Of Log ============================

M-K-D-B · 01.06.2014, 12:54

Servus,

wir beginnen so:

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Fehlermeldung bei Windowsstart RegSvr32.exe

Log-Analyse und Auswertung: Fehlermeldung bei Windowsstart RegSvr32.exe

Fehlermeldung bei Windowsstart RegSvr32.exe

Fehlermeldung bei Windowsstart RegSvr32.exe

Ähnliche Themen: Fehlermeldung bei Windowsstart RegSvr32.exe