Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: PC startet neu beim öffnen von Firefox

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 02.11.2014, 13:04   #1
Nikodemos
 
PC startet neu beim öffnen von Firefox - Unglücklich

PC startet neu beim öffnen von Firefox



Hallo, auf einen pc habe ich noch Windows Vista installiert. Seit ca. 3 Wochen tritt folgendes Problem auf. Wenn ich Firefox oder Thunderbird öffnen möchte, fährt der pc runter und startet neu. Ich habe schon Firefox neu installiert, aber keine Veränderung. Für Hilfe wäre ich sehr dankbar.

Alt 02.11.2014, 13:09   #2
schrauber
/// the machine
/// TB-Ausbilder
 

PC startet neu beim öffnen von Firefox - Standard

PC startet neu beim öffnen von Firefox



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 02.11.2014, 14:43   #3
Nikodemos
 
PC startet neu beim öffnen von Firefox - Standard

PC startet neu beim öffnen von Firefox



Hallo Schrauber, danke für die schnelle Antwort. Hier die beiden Dateien:
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-11-2014
Ran by woman (administrator) on WOMAN-PC on 02-11-2014 14:17:19
Running from C:\Users\woman\Downloads
Loaded Profile: woman (Available profiles: woman)
Platform: Microsoft® Windows Vista™ Ultimate  (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 7
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(AMD) C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe
() C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe
(AMD) C:\Program Files\AMD\RAIDXpert\bin\RAIDXpert.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor Corp.) C:\Windows\SOUNDMAN.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\w32x86\3\E_FATIGGE.EXE
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ieuser.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_15_0_0_167_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(AMD) C:\Windows\System32\WinMsgBalloonServer.exe
(AMD) C:\Windows\System32\WinMsgBalloonClient.exe
() C:\Windows\System32\BeepApp.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1006264 2007-07-11] (Microsoft Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [931200 2012-03-26] (Microsoft Corporation)
HKLM\...\Run: [SoundMan] => C:\Windows\SOUNDMAN.EXE [604704 2009-04-14] (Realtek Semiconductor Corp.)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-1756890652-3040433009-1839966214-1000\...\Run: [EPSON SX125 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGGE.EXE [200704 2009-09-14] (SEIKO EPSON CORPORATION)
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\smdmf\x64\sysapcrt.dll
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = hxxp://www.default-search.net/search?sid=492&aid=311&itype=n&ver=13892&tm=480&src=ds&p={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2492} URL = hxxp://www.default-search.net/search?sid=492&aid=311&itype=n&ver=13892&tm=480&src=ds&p={searchTerms}
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{23F9387C-F7BC-4F0E-85F9-F242465A951C}: [NameServer] 84.2.44.1 84.2.46.1

FireFox:
========
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\default-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-12-06]

Chrome: 
=======
CHR HKLM\...\Chrome\Extension: [fpmeembnagmagppkgghhfjfdfajdfcah] - C:\Users\woman\AppData\Local\Linkey\ChromeExtension\ChromeExtension.crx [2014-09-24]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AMD_RAIDXpert; C:\Program Files\AMD\RAIDXpert\bin\RAIDXpertService.exe [131320 2011-12-14] (AMD)
R2 MaintainerSvc1.20.7247763; C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe [123680 2014-11-02] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [11552 2012-03-26] (Microsoft Corporation)
S2 Update AdvanceElite; "C:\Program Files\AdvanceElite\updateAdvanceElite.exe" [X]
S2 Util AdvanceElite; "C:\Program Files\AdvanceElite\bin\utilAdvanceElite.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALCXWDM; C:\Windows\System32\drivers\RTKVAC.SYS [4172832 2009-06-18] (Realtek Semiconductor Corp.)
S3 cxbu0wdm; C:\Windows\System32\DRIVERS\cxbu0wdm.sys [119040 2011-09-06] (HID Global Corporation)
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd5.sys [45568 2006-11-02] (VIA Technologies, Inc.              )
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [171064 2012-03-20] (Microsoft Corporation)
R1 MpKsl8940839c; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{ED8600A8-7885-478A-AFBE-DA0A74B42ABD}\MpKsl8940839c.sys [39464 2014-11-02] (Microsoft Corporation)
S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
S3 VIAudio; C:\Windows\System32\drivers\ac97via.sys [68096 2006-11-02] (VIA Technologies, Inc.)
R1 {1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gt; C:\Windows\System32\drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gt.sys [55824 2014-10-13] (StdLib)
R1 {32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gt; C:\Windows\System32\drivers\{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gt.sys [55824 2014-10-11] (StdLib)
R1 {3b808196-ff63-49ee-b33b-efdf51723eca}Gt; C:\Windows\System32\drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gt.sys [55824 2014-10-13] (StdLib)
R1 {3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gt; C:\Windows\System32\drivers\{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gt.sys [55824 2014-10-17] (StdLib)
R1 {4530e639-76ab-4435-889d-a5e81ae090a4}Gt; C:\Windows\System32\drivers\{4530e639-76ab-4435-889d-a5e81ae090a4}Gt.sys [55824 2014-10-20] (StdLib)
R1 {5d78e0ee-ca60-46a4-9492-4f24429cc925}Gt; C:\Windows\System32\drivers\{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gt.sys [55824 2014-10-16] (StdLib)
R1 {67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gt; C:\Windows\System32\drivers\{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gt.sys [55824 2014-10-20] (StdLib)
R1 {6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gt; C:\Windows\System32\drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gt.sys [55824 2014-10-19] (StdLib)
R1 {733fb217-c049-41ba-9504-3f2045e61977}Gt; C:\Windows\System32\drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gt.sys [55824 2014-10-21] (StdLib)
R1 {949aba83-1d7f-4d0b-b0ba-203450825231}Gt; C:\Windows\System32\drivers\{949aba83-1d7f-4d0b-b0ba-203450825231}Gt.sys [55824 2014-10-15] (StdLib)
R1 {94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gt; C:\Windows\System32\drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gt.sys [55824 2014-10-10] (StdLib)
R1 {b0c7827f-c845-429a-833b-c2a798fc4fc3}Gt; C:\Windows\System32\drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gt.sys [55824 2014-10-25] (StdLib)
R1 {bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gt; C:\Windows\System32\drivers\{bb7b7a60-f574-47c2-8a0b-4c56f2da9802}Gt.sys [55824 2014-09-24] (StdLib)
R1 {c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gt; C:\Windows\System32\drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gt.sys [55824 2014-10-10] (StdLib)
R1 {dc592624-f532-4311-9fc7-6920126fc404}Gt; C:\Windows\System32\drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gt.sys [55824 2014-10-22] (StdLib)
R1 {e9629596-2cbd-4eea-9329-7470e8b0fdae}Gt; C:\Windows\System32\drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gt.sys [55824 2014-10-12] (StdLib)
R1 {f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gt; C:\Windows\System32\drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gt.sys [55824 2014-10-22] (StdLib)
R1 {fc7329ef-e953-454c-8e78-ed2cf0acb2ef}t; C:\Windows\System32\drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}t.sys [55872 2014-11-01] (StdLib)
R1 {fce396ae-d8d1-4789-946e-2106fbe4292b}Gt; C:\Windows\System32\drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gt.sys [55824 2014-10-19] (StdLib)
R1 {fd600559-a688-4110-b9b9-0f1a9beae8ae}Gt; C:\Windows\System32\drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gt.sys [55824 2014-10-12] (StdLib)
S3 amdiox86; system32\DRIVERS\amdiox86.sys [X]
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-02 14:17 - 2014-11-02 14:17 - 00011124 _____ () C:\Users\woman\Downloads\FRST.txt
2014-11-02 14:16 - 2014-11-02 14:17 - 01105920 _____ (Farbar) C:\Users\woman\Downloads\FRST.exe
2014-11-02 14:08 - 2014-11-02 14:17 - 00000000 ____D () C:\FRST
2014-11-02 13:49 - 2014-11-02 13:49 - 00015762 _____ () C:\Users\woman\Downloads\download-frst.htm
2014-11-02 12:11 - 2014-11-02 12:11 - 00000858 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-11-02 12:11 - 2014-11-02 12:11 - 00000846 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-11-02 12:00 - 2014-11-02 12:00 - 00000000 ____D () C:\Users\woman\AppData\Roaming\Macromedia
2014-11-02 11:10 - 2014-11-02 11:10 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-11-02 10:25 - 2014-11-02 10:25 - 00000000 ____D () C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b
2014-11-02 09:49 - 2014-11-01 16:47 - 00055872 _____ (StdLib) C:\Windows\system32\Drivers\{fc7329ef-e953-454c-8e78-ed2cf0acb2ef}t.sys
2014-10-26 08:36 - 2014-10-25 20:33 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{b0c7827f-c845-429a-833b-c2a798fc4fc3}Gt.sys
2014-10-23 09:46 - 2014-10-22 21:33 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{f5d136d7-adc2-4c84-85b2-e564334ab0bc}Gt.sys
2014-10-22 13:33 - 2014-10-22 00:31 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{dc592624-f532-4311-9fc7-6920126fc404}Gt.sys
2014-10-22 09:33 - 2014-10-21 17:36 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{733fb217-c049-41ba-9504-3f2045e61977}Gt.sys
2014-10-21 08:22 - 2014-10-20 21:09 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{4530e639-76ab-4435-889d-a5e81ae090a4}Gt.sys
2014-10-20 19:50 - 2014-10-20 07:20 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{67f29abb-07b3-41f5-94cd-f819d7c1fc76}Gt.sys
2014-10-19 22:52 - 2014-10-19 10:09 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{6c84eb28-66c4-4e3d-8a5a-46ab94f0575a}Gt.sys
2014-10-19 14:49 - 2014-10-19 03:04 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{fce396ae-d8d1-4789-946e-2106fbe4292b}Gt.sys
2014-10-18 08:43 - 2014-10-17 23:12 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{3fa44d1f-c300-4673-a8c1-5ba05468b4bd}Gt.sys
2014-10-17 07:54 - 2014-10-16 19:47 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{5d78e0ee-ca60-46a4-9492-4f24429cc925}Gt.sys
2014-10-16 12:06 - 2014-10-15 21:49 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{949aba83-1d7f-4d0b-b0ba-203450825231}Gt.sys
2014-10-14 19:55 - 2014-10-13 11:52 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{1de2a23f-1c23-4ea1-8ef4-79bc5c5cea78}Gt.sys
2014-10-13 19:12 - 2014-10-13 02:05 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{3b808196-ff63-49ee-b33b-efdf51723eca}Gt.sys
2014-10-13 10:03 - 2014-10-12 19:28 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{fd600559-a688-4110-b9b9-0f1a9beae8ae}Gt.sys
2014-10-12 18:58 - 2014-10-12 06:46 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{e9629596-2cbd-4eea-9329-7470e8b0fdae}Gt.sys
2014-10-12 09:40 - 2014-10-11 20:46 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{32c6b9d7-6b2c-4b03-9178-01abbf9c7194}Gt.sys
2014-10-11 08:54 - 2014-10-10 19:55 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{94c4b27a-8cb1-4214-9d76-87c59a8cf657}Gt.sys
2014-10-10 20:46 - 2014-10-10 10:20 - 00055824 _____ (StdLib) C:\Windows\system32\Drivers\{c61f6471-95aa-405a-be3a-f3b2dc07fdfa}Gt.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-02 14:17 - 2006-11-02 13:51 - 01095343 _____ () C:\Windows\WindowsUpdate.log
2014-11-02 14:14 - 2013-06-21 11:38 - 00000000 ____D () C:\Windows\Minidump
2014-11-02 14:14 - 2012-08-06 14:25 - 00000680 _____ () C:\Users\woman\AppData\Local\d3d9caps.dat
2014-11-02 14:14 - 2006-11-02 14:00 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-02 14:14 - 2006-11-02 13:46 - 00003552 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-02 14:14 - 2006-11-02 13:46 - 00003552 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-02 14:13 - 2013-06-21 11:37 - 135695623 _____ () C:\Windows\MEMORY.DMP
2014-11-02 14:12 - 2006-11-02 13:51 - 00017562 _____ () C:\Windows\setupact.log
2014-11-02 14:11 - 2013-05-15 19:42 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-02 14:01 - 2006-11-02 11:33 - 01461736 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-02 12:12 - 2012-08-07 10:12 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-11-02 12:11 - 2014-09-28 11:42 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-11-02 11:53 - 2006-11-02 13:59 - 00013984 _____ () C:\Windows\PFRO.log
2014-11-02 11:51 - 2012-08-06 14:25 - 00000000 ____D () C:\Users\woman
2014-11-02 11:17 - 2014-09-24 15:10 - 00000000 ____D () C:\Program Files\AdvanceElite
2014-11-02 11:16 - 2006-11-02 14:00 - 00032634 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-11-02 11:01 - 2006-11-02 11:23 - 00000342 _____ () C:\Windows\win.ini
2014-10-28 09:13 - 2014-09-24 15:11 - 00000000 ____D () C:\Program Files\Opera
2014-10-28 09:13 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\spool
2014-10-15 14:29 - 2013-07-26 02:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-15 14:24 - 2006-11-02 11:24 - 100290944 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe

Some content of TEMP:
====================
C:\Users\woman\AppData\Local\Temp\CloudBackup4114.exe
C:\Users\woman\AppData\Local\Temp\devcon.exe
C:\Users\woman\AppData\Local\Temp\vcredist_x86.exe
C:\Users\woman\AppData\Local\Temp\vlc-2.0.3-win32.exe
C:\Users\woman\AppData\Local\Temp\_is90A9.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-11-02 14:02

==================== End Of Log ============================
         
--- --- ---
FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 01-11-2014
Ran by woman at 2014-11-02 14:18:15
Running from C:\Users\woman\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 9.0 Sprint (HKLM\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Druckerdeinstallation für EPSON SX125 Series (HKLM\...\EPSON SX125 Series) (Version:  - SEIKO EPSON Corporation)
Epson Easy Photo Print 2 (HKLM\...\{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}) (Version: 2.2.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}) (Version: 2.40.0001 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX125 Series Handbuch (HKLM\...\EPSON SX125 Series Manual) (Version:  - )
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.0.1526.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 33.0.1 (x86 de) (HKLM\...\Mozilla Firefox 33.0.1 (x86 de)) (Version: 33.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 33.0.1 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
RAIDXpert (HKLM\...\InstallShield_{8A4A80C2-87B1-44FB-BC24-9168930EB150}) (Version: 3.3.1540.19 - AMD)
RAIDXpert (Version: 3.3.1540.19 - AMD) Hidden
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version:  - )
VLC media player 2.0.3 (HKLM\...\VLC media player) (Version: 2.0.3 - VideoLAN)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

15-10-2014 13:21:43 Windows Update
17-10-2014 07:37:30 Geplanter Prüfpunkt
18-10-2014 08:20:03 Geplanter Prüfpunkt
19-10-2014 14:21:53 Geplanter Prüfpunkt
21-10-2014 13:54:42 Geplanter Prüfpunkt
22-10-2014 09:07:34 Geplanter Prüfpunkt
24-10-2014 07:55:21 Geplanter Prüfpunkt
25-10-2014 10:59:52 Geplanter Prüfpunkt
26-10-2014 08:11:27 Geplanter Prüfpunkt
28-10-2014 08:03:16 Wiederherstellungsvorgang
28-10-2014 08:10:22 Wiederherstellungsvorgang
02-11-2014 09:42:05 Geplanter Prüfpunkt
02-11-2014 10:09:15 Removed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
02-11-2014 10:11:09 Removed Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {04C17329-DB5F-4E6D-B59E-E11AB774499E} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {075F7B0C-8858-426A-81EA-5161F4D13E82} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {20C7B883-E676-400D-A645-AAACA622C45D} - System32\Tasks\LaunchSignup => C:\Program Files\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {2EF1A2C3-210D-4AFD-BEB7-E51E7FD69C0C} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {5A4FB71D-87D4-44E1-A1ED-8B1D7BE64181} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-11-02 02:00 - 2014-11-02 02:00 - 00123680 _____ () C:\ProgramData\d2446020-ddff-402b-b064-199d2ce66b2b\maintainer.exe
2011-07-22 13:48 - 2011-07-22 13:48 - 00516096 _____ () C:\Program Files\AMD\RAIDXpert\bin\libxml2.dll
2012-08-06 19:35 - 2007-07-27 03:41 - 00023040 _____ () C:\Windows\system32\BeepApp.exe

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-1756890652-3040433009-1839966214-500 - Administrator - Disabled)
Gast (S-1-5-21-1756890652-3040433009-1839966214-501 - Limited - Disabled)
woman (S-1-5-21-1756890652-3040433009-1839966214-1000 - Administrator - Enabled) => C:\Users\woman

==================== Faulty Device Manager Devices =============

Name: 6TO4 Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: 6TO4 Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: 6TO4 Adapter
Description: Microsoft-6zu4-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: isatap.{23F9387C-F7BC-4F0E-85F9-F242465A951C}
Description: Microsoft-ISATAP-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (10/25/2014 07:31:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung BeepApp.exe, Version 0.0.0.0, Zeitstempel 0x46a869e2, fehlerhaftes Modul kernel32.dll, Version 6.0.6000.16386, Zeitstempel 0x4549bdc9, Ausnahmecode 0xc0000142, Fehleroffset 0x00008fc7,
Prozess-ID 0x874, Anwendungsstartzeit BeepApp.exe0.

Error: (10/15/2014 02:29:14 PM) (Source: usbperf) (EventID: 2004) (User: )
Description: Fehler bei der usbperf-Datensammlung. Die Collect-Funktion wurde mit einem nicht unterstützten Abfragetyp aufgerufen.

Error: (10/15/2014 02:29:10 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: PolicyAgent

Error: (10/15/2014 02:29:10 PM) (Source: Perflib) (EventID: 1005) (User: )
Description: OpenIPSecPerformanceDataC:\Windows\System32\ipsecsvc.dllPolicyAgent4

Error: (10/15/2014 02:29:10 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (10/15/2014 02:29:08 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (10/15/2014 02:29:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: DFSRC:\Windows\System32\DfsrPerf.dll4

Error: (10/12/2014 09:00:45 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={016CA16E-5CE3-4D16-9B4B-ACB73ED6FFC2}: Der Benutzer "woman-PC\woman" hat eine Verbindung mit dem Namen "t.online" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 0.

Error: (10/12/2014 08:49:05 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={141D5714-E090-4A6E-9311-9A37B5766420}: Der Benutzer "woman-PC\woman" hat eine Verbindung mit dem Namen "t.online" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 0.

Error: (10/12/2014 08:47:05 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: CoID={4FF7A965-0D9E-4993-8451-A8D2484E7B4E}: Der Benutzer "woman-PC\woman" hat eine Verbindung mit dem Namen "t.online" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 0.


System errors:
=============
Error: (11/02/2014 02:14:18 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (11/02/2014 02:14:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 02.11.2014 um 14:12:21 unerwartet heruntergefahren.

Error: (11/02/2014 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Util AdvanceElite%%3

Error: (11/02/2014 01:58:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Update AdvanceElite%%2

Error: (11/02/2014 01:56:40 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (11/02/2014 01:56:30 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 02.11.2014 um 13:55:13 unerwartet heruntergefahren.

Error: (11/02/2014 01:50:32 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (11/02/2014 01:50:22 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 02.11.2014 um 13:48:48 unerwartet heruntergefahren.

Error: (11/02/2014 01:20:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Util AdvanceElite%%3

Error: (11/02/2014 01:20:39 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Update AdvanceElite%%2


Microsoft Office Sessions:
=========================
Error: (10/25/2014 07:31:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BeepApp.exe0.0.0.046a869e2kernel32.dll6.0.6000.163864549bdc9c000014200008fc787401cff01d428a1116

Error: (10/15/2014 02:29:14 PM) (Source: usbperf) (EventID: 2004) (User: )
Description: 

Error: (10/15/2014 02:29:10 PM) (Source: Perflib) (EventID: 1017) (User: )
Description: PolicyAgent

Error: (10/15/2014 02:29:10 PM) (Source: Perflib) (EventID: 1005) (User: )
Description: OpenIPSecPerformanceDataC:\Windows\System32\ipsecsvc.dllPolicyAgent4

Error: (10/15/2014 02:29:10 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (10/15/2014 02:29:08 PM) (Source: Perflib) (EventID: 1010) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (10/15/2014 02:29:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: DFSRC:\Windows\System32\DfsrPerf.dll4

Error: (10/12/2014 09:00:45 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: {016CA16E-5CE3-4D16-9B4B-ACB73ED6FFC2}woman-PC\womant.online0

Error: (10/12/2014 08:49:05 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: {141D5714-E090-4A6E-9311-9A37B5766420}woman-PC\womant.online0

Error: (10/12/2014 08:47:05 AM) (Source: RasClient) (EventID: 20227) (User: )
Description: {4FF7A965-0D9E-4993-8451-A8D2484E7B4E}woman-PC\womant.online0


==================== Memory info =========================== 

Processor: AMD Sempron(tm) Processor 2800+
Percentage of memory in use: 58%
Total physical RAM: 990.19 MB
Available physical RAM: 409.89 MB
Total Pagefile: 2237.52 MB
Available Pagefile: 1599.75 MB
Total Virtual: 2047.88 MB
Available Virtual: 1936.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:74.53 GB) (Free:45.88 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (STORE N GO) (Removable) (Total:14.42 GB) (Free:10.23 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 74.5 GB) (Disk ID: CFE910FE)
Partition 1: (Active) - (Size=74.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 14.4 GB) (Disk ID: 6E12FDB4)
Partition 1: (Not Active) - (Size=14.4 GB) - (Type=0C)

==================== End Of Log ============================
         
--- --- ---
__________________

Alt 03.11.2014, 11:49   #4
schrauber
/// the machine
/// TB-Ausbilder
 

PC startet neu beim öffnen von Firefox - Standard

PC startet neu beim öffnen von Firefox



hi,

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 06.11.2014, 07:38   #5
Nikodemos
 
PC startet neu beim öffnen von Firefox - Standard

PC startet neu beim öffnen von Firefox



Hallo Schrauber, Combofix wird entpackt aber ich kann nicht auf dem PC speichern. Beim entpacken laufen zum Abschluß ein roter und ein grüner Balken. Wenn es durchgelaufen ist passiert nichts mehr. Was kann ich machen, das ich weiter komme.


Alt 06.11.2014, 20:28   #6
schrauber
/// the machine
/// TB-Ausbilder
 

PC startet neu beim öffnen von Firefox - Standard

PC startet neu beim öffnen von Firefox





Du hast schon das richtige Tool erwischt oder? Screenshot davon bitte.
__________________
--> PC startet neu beim öffnen von Firefox

Antwort

Themen zu PC startet neu beim öffnen von Firefox
dankbar, firefox, firefox neu, folge, folgendes, hilfe, installier, neu, pc startet neu, problem, problem mit firefox bei vista, runter, starte, startet, thunderbird, tritt, vista, windows, windows vista, woche, wochen, öffnen



Ähnliche Themen: PC startet neu beim öffnen von Firefox


  1. Fehlermeldung beim Neustart und beim Öffnen von Firefox - kein Internet-Zugriff
    Log-Analyse und Auswertung - 03.02.2015 (7)
  2. Probleme mit Firefox, es öffnet sich beim Öffnen von Firefox immer ein zusätzlicher Tab
    Plagegeister aller Art und deren Bekämpfung - 02.12.2014 (7)
  3. Probleme mit Firefox, es öffnet sich beim Öffnen von Firefox immer ein zusätzlicher Tab
    Mülltonne - 23.11.2014 (1)
  4. Sicherheitswarnung beim öffnen von Firefox, Schadsoftware?
    Plagegeister aller Art und deren Bekämpfung - 29.01.2014 (11)
  5. Wisesearch beim öffnen von Firefox und Adds
    Plagegeister aller Art und deren Bekämpfung - 31.10.2013 (13)
  6. Beim öffnen von firefox bginnt Musik im Hintergrund
    Log-Analyse und Auswertung - 27.09.2011 (1)
  7. Firefox stürzt ab beim Öffnen
    Log-Analyse und Auswertung - 05.05.2010 (17)
  8. firefox-absturz beim öffnen nach AVira-AV-Scan
    Antiviren-, Firewall- und andere Schutzprogramme - 05.05.2010 (8)
  9. firefox-absturz beim öffnen
    Log-Analyse und Auswertung - 03.05.2010 (1)
  10. Trojaner-Meldung beim Öffnen von Firefox
    Log-Analyse und Auswertung - 12.01.2010 (4)
  11. firefox startet beim systemstart
    Plagegeister aller Art und deren Bekämpfung - 05.09.2009 (4)
  12. Problem beim Öffnen von Mozilla Firefox
    Log-Analyse und Auswertung - 25.08.2009 (18)
  13. pc startet neu beim öffnen von ie
    Mülltonne - 13.11.2008 (1)
  14. Internet Explorer startet beim Start von Firefox automatisch
    Log-Analyse und Auswertung - 02.10.2007 (2)
  15. Beim Surfen mit Firefox öffnen sich Pop Up's im IE
    Plagegeister aller Art und deren Bekämpfung - 31.05.2007 (1)
  16. Werbefenster beim öffnen von Firefox
    Log-Analyse und Auswertung - 01.01.2007 (1)
  17. Wieder mal die iexplorer.exe beim öffnen von firefox...
    Log-Analyse und Auswertung - 14.10.2006 (1)

Zum Thema PC startet neu beim öffnen von Firefox - Hallo, auf einen pc habe ich noch Windows Vista installiert. Seit ca. 3 Wochen tritt folgendes Problem auf. Wenn ich Firefox oder Thunderbird öffnen möchte, fährt der pc runter und - PC startet neu beim öffnen von Firefox...
Archiv
Du betrachtest: PC startet neu beim öffnen von Firefox auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.