| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: win8.1 64bit firefox packages entfernen - werde mit werbung ueberschwemmtWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
08.01.2015, 16:42
| #1 |
 |  win8.1 64bit firefox packages entfernen - werde mit werbung ueberschwemmt Hallo zusammen, bin neu hier und hoffe auf Hilfe! Nachdem ich hier schon das Forum durchstöbert habe, glaube ich, dass hier viel geballtes Wissen vorhanden ist!! Ich habe mir irgendwie mir Firefox packages etwas eingefangen, was ich nun nicht mehr los werde. Die Müllen mich mit Werbung zu. Mit meinem diffusen Halbwissen bekomme ich das nicht mehr weg! Über Hilfe bin ich dankbar!! gmer.log: Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-01-08 14:51:13
Windows 6.2.9200 x64 \Device\Harddisk0\DR0 -> \Device\0000002c WDC_WD10EZEX-08M2NA0 rev.01.01A01 931,51GB
Running: Gmer-19357.exe; Driver: C:\Users\WOLFGA~1\AppData\Local\Temp\uwldyfod.sys
---- Kernel code sections - GMER 2.1 ----
.text C:\WINDOWS\System32\win32k.sys!W32pServiceTable fffff96000066200 15 bytes [00, 28, F6, 01, 80, 1C, 6C, ...]
.text C:\WINDOWS\System32\win32k.sys!W32pServiceTable + 16 fffff96000066210 11 bytes [00, 0E, FC, FF, 00, 05, C4, ...]
---- User code sections - GMER 2.1 ----
.text C:\WINDOWS\Explorer.EXE[2036] C:\WINDOWS\system32\psapi.dll!GetModuleBaseNameA + 506 00007ffb40ca169a 4 bytes [CA, 40, FB, 7F]
.text C:\WINDOWS\Explorer.EXE[2036] C:\WINDOWS\system32\psapi.dll!GetModuleBaseNameA + 514 00007ffb40ca16a2 4 bytes [CA, 40, FB, 7F]
.text C:\WINDOWS\Explorer.EXE[2036] C:\WINDOWS\system32\psapi.dll!QueryWorkingSet + 118 00007ffb40ca181a 4 bytes [CA, 40, FB, 7F]
.text C:\WINDOWS\Explorer.EXE[2036] C:\WINDOWS\system32\psapi.dll!QueryWorkingSet + 142 00007ffb40ca1832 4 bytes [CA, 40, FB, 7F]
.text C:\WINDOWS\system32\mfevtps.exe[1484] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\WINDOWS\system32\svchost.exe[3732] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe[3932] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe[3932] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffb40ca169a 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe[3932] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffb40ca16a2 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe[3932] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffb40ca181a 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe[3932] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffb40ca1832 4 bytes [CA, 40, FB, 7F]
.text C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\StartMenuIndexer.exe[5060] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\WINDOWS\system32\SearchIndexer.exe[6616] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\WINDOWS\System32\svchost.exe[8976] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\WINDOWS\System32\svchost.exe[8976] c:\windows\system32\WSOCK32.dll!setsockopt + 194 00007ffb317a1f6a 4 bytes [7A, 31, FB, 7F]
.text C:\WINDOWS\System32\svchost.exe[8976] c:\windows\system32\WSOCK32.dll!setsockopt + 218 00007ffb317a1f82 4 bytes [7A, 31, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe[3552] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe[3552] C:\WINDOWS\system32\psapi.dll!GetModuleBaseNameA + 506 00007ffb40ca169a 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe[3552] C:\WINDOWS\system32\psapi.dll!GetModuleBaseNameA + 514 00007ffb40ca16a2 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe[3552] C:\WINDOWS\system32\psapi.dll!QueryWorkingSet + 118 00007ffb40ca181a 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe[3552] C:\WINDOWS\system32\psapi.dll!QueryWorkingSet + 142 00007ffb40ca1832 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Bonjour\mDNSResponder.exe[7336] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Program Files\iPod\bin\iPodService.exe[5356] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe[7672] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\WINDOWS\system32\conhost.exe[5424] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 194 00007ffb317a1f6a 4 bytes [7A, 31, FB, 7F]
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 218 00007ffb317a1f82 4 bytes [7A, 31, FB, 7F]
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506 00007ffb40ca169a 4 bytes [CA, 40, FB, 7F]
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514 00007ffb40ca16a2 4 bytes [CA, 40, FB, 7F]
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118 00007ffb40ca181a 4 bytes [CA, 40, FB, 7F]
.text C:\Users\Wolfgang Wangler\Downloads\FRST64.exe[5760] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142 00007ffb40ca1832 4 bytes [CA, 40, FB, 7F]
.text C:\WINDOWS\System32\svchost.exe[1092] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe[5436] C:\WINDOWS\SYSTEM32\ntdll.dll!NtWriteVirtualMemory 00007ffb444b1a10 5 bytes JMP 00007ffc35eb1000
.text C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe[5436] C:\WINDOWS\system32\psapi.dll!GetModuleBaseNameA + 506 00007ffb40ca169a 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe[5436] C:\WINDOWS\system32\psapi.dll!GetModuleBaseNameA + 514 00007ffb40ca16a2 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe[5436] C:\WINDOWS\system32\psapi.dll!QueryWorkingSet + 118 00007ffb40ca181a 4 bytes [CA, 40, FB, 7F]
.text C:\Program Files\Common Files\McAfee\Platform\Core\mchost.exe[5436] C:\WINDOWS\system32\psapi.dll!QueryWorkingSet + 142 00007ffb40ca1832 4 bytes [CA, 40, FB, 7F]
---- Threads - GMER 2.1 ----
Thread C:\WINDOWS\system32\csrss.exe [336:444] fffff9600099ab90
---- Processes - GMER 2.1 ----
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\libPokki.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [6468] (Chromium/The Chromium Authors)(2014-12-31 22:57:14) 000000005b0e0000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\icudt.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [6468] (ICU Data DLL/The ICU Project)(2014-12-31 22:52:38) 000000005a3d0000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\libPokki.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [4636] (Chromium/The Chromium Authors)(2014-12-31 22:57:14) 000000005b0e0000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\icudt.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [4636] (ICU Data DLL/The ICU Project)(2014-12-31 22:52:38) 000000005a3d0000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [4636](2014-12-31 22:52:38) 0000000062280000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\avcodec-54.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [4636](2014-12-31 22:52:38) 0000000056fc0000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\avutil-51.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [4636](2014-12-31 22:52:38) 0000000062640000
Library C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\avformat-54.dll (*** suspicious ***) @ C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe [4636](2014-12-31 22:52:38) 0000000062010000
---- Disk sectors - GMER 2.1 ----
Disk \Device\Harddisk0\DR0 unknown MBR code
---- EOF - GMER 2.1 ----
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by Wolfgang Wangler at 2015-01-08 14:15:46
Running from C:\Users\Wolfgang Wangler\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: AVG Internet Security 2015 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
FW: AVG Internet Security 2015 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
64 Bit HP CIO Components Installer (Version: 17.2.1 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.4.0.2710 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVG (HKLM\...\AvgZen) (Version: 1.0.445 - AVG Technologies)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5645 - AVG Technologies)
AVG 2015 (Version: 15.0.4257 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5645 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.445 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
Driver & Application Installation (HKLM-x32\...\{BFECCF2A-F094-4066-8BFA-29CCBB7F6602}) (Version: 6.13.0621 - Lenovo)
DVAG Online-System (HKLM-x32\...\DVAG Online System) (Version: 1.2 - Deutsche Vermögensberatung AG)
FamilySafetyGuide (HKLM-x32\...\{9A268503-5AB0-479E-9690-929BDEC55C00}) (Version: 1.00.0711 - lenovo)
Firefox Packages (HKU\S-1-5-21-1535484509-1023557788-1269224655-1001\...\Firefox Packages) (Version: - ) <==== ATTENTION
FMW 1 (Version: 1.0.307 - AVG Technologies) Hidden
Host App Service (HKU\S-1-5-21-1535484509-1023557788-1269224655-1001\...\Pokki) (Version: 0.269.5.367 - Pokki)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.22.1760 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Lenovo Assistant (HKLM-x32\...\{B2DE4F30-B8C7-49C0-85B9-2F37A5290F00}) (Version: 2.0.0.29 - Lenovo)
Lenovo Blacksilk USB Keyboard Driver (HKLM-x32\...\{B266E062-D6C5-485B-B426-51B152B041A6}) (Version: V1.6.13.0724 - Lenovo)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.0.17.0 - Lenovo)
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.7408 - CyberLink Corp.)
Lenovo Power2Go (x32 Version: 6.0.7408 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.5108.52 - CyberLink Corp.) Hidden
Lenovo Rescue System (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.1901 - CyberLink Corp.)
Lenovo Rescue System (Version: 4.0.0.1901 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{4041B18B-DE30-4D78-9D60-6ADC586C5E00}) (Version: 2.1.003.00 - Lenovo Group Limited)
Lenovo Web Start (HKU\S-1-5-21-1535484509-1023557788-1269224655-1001\...\Pokki_04bb6df446330549a2cb8d67fbd1a745025b7bd1) (Version: 1.0.2.53457 - Pokki)
LVT (HKLM-x32\...\{9E3469A6-443A-452C-BF44-8D7CE3A9A7E2}) (Version: 5.00.0914 - Lenovo)
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 12.8.992 - McAfee, Inc.)
McAfee Security Scan Plus (HKLM-x32\...\McAfee Security Scan) (Version: 3.0.285.6 - McAfee, Inc.)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 de)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
Nitro Pro 9 (HKLM\...\{4C32F7E8-A65F-4D3C-9153-9F3B57CB6872}) (Version: 9.0.5.9 - Nitro)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7005 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Startmenü (HKU\S-1-5-21-1535484509-1023557788-1269224655-1001\...\Pokki_Start_Menu) (Version: 0.269.5.367 - Pokki)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WSE_Vosteran (HKLM-x32\...\WSE_Vosteran) (Version: - WSE_Vosteran) <==== ATTENTION!
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
19-12-2014 17:01:01 Geplanter Prüfpunkt
29-12-2014 16:45:28 Geplanter Prüfpunkt
05-01-2015 13:31:37 Installed AVG 2015
05-01-2015 13:32:05 Installed AVG 2015
08-01-2015 13:31:55 Installed iTunes
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00F2079C-90F8-4359-B0E5-0FA9C089918A} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro 3.11\OptProLauncher.exe <==== ATTENTION
Task: {064C2BF6-FE71-48AE-892E-E03C64B8C7E1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {4AC2EB84-30C6-4B3C-8164-FB9D01899DEE} - System32\Tasks\Lenovo\Experience Improvement Logon => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2014-12-08] (Lenovo)
Task: {52C46CAD-415A-470B-AA70-356722155F8B} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-05-17] (Lenovo)
Task: {60A0885F-3D4B-4BC7-8F0F-A8706E79CF58} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-12-10] (Microsoft Corporation)
Task: {6C9203E9-32E9-41ED-A2A9-81712F135932} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {6EEAC4EE-48C0-4F25-B51F-12CA64251DA8} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [2012-03-08] ()
Task: {74A537AF-B26B-4030-93D2-67815AFE8C84} - System32\Tasks\WSE_Vosteran => C:\Users\Wolfgang Wangler\AppData\Roaming\WSE_Vosteran\UpdateProc\UpdateTask.exe [2014-12-08] () <==== ATTENTION
Task: {7BBF681B-6D70-4BAC-9051-E13E99172FC3} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {892BA43D-9D8F-461E-B5D3-23CA19727C25} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2013-05-17] (Lenovo)
Task: {91260CEE-7A38-452F-A0DB-6482A7616D6A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-05] (Adobe Systems Incorporated)
Task: {DC542999-C695-4F96-968D-A95413F67F5F} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {EEFC36D7-84BC-42FE-B4D7-E2B2D35C5B14} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-05-17] ()
Task: {FA649284-212E-4F44-9234-FE606E92E3EB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\WSE_Vosteran.job => C:\Users\WOLFGA~1\AppData\Roaming\WSE_VO~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2014-05-26 05:10 - 2011-08-16 19:46 - 00032768 _____ () C:\Windows\jmesoft\Service.exe
2014-05-26 05:28 - 2013-05-14 19:53 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-05-26 05:10 - 2011-08-16 19:46 - 00024576 _____ () C:\Windows\jmesoft\JME_LOAD.exe
2014-12-08 17:11 - 2014-11-19 18:08 - 00469532 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\smartclient.exe
2015-01-08 14:04 - 2015-01-08 14:06 - 00050477 _____ () C:\Users\Wolfgang Wangler\Downloads\Defogger.exe
2014-05-26 05:10 - 2011-05-17 12:27 - 00028672 _____ () C:\Windows\jmesoft\hidhook.dll
2009-12-04 15:59 - 2009-12-04 15:59 - 00619816 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2009-12-04 16:04 - 2009-12-04 16:04 - 00013096 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2015-01-05 13:29 - 2015-01-05 13:29 - 31842816 _____ () C:\Program Files (x86)\AVG\Framework\Common\libcef.dll
2014-12-23 13:06 - 2014-12-23 13:06 - 00044032 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\smartup-6.82.0.0.1.32\dll\jWinHttp.dll
2014-12-08 17:11 - 2014-11-19 18:08 - 00032943 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\dll\jRegistryKey.dll
2014-12-08 17:11 - 2014-11-19 18:08 - 00110592 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\dll\jacob.dll
2014-12-08 17:11 - 2014-12-23 13:06 - 00044032 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\dll\jWinHttp.dll
2014-12-08 17:11 - 2014-11-19 18:08 - 00244736 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\dll\jembrowser-0.8.11.dll
2014-12-08 17:11 - 2014-11-19 18:08 - 00098304 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\dll\jWinFlasher.dll
2014-05-26 05:10 - 2013-12-03 06:37 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-12-08 17:11 - 2014-11-19 18:08 - 00873984 _____ () C:\Program Files (x86)\DVAG Online-System\smartclient\etc\dvag\chromium\ffmpegsumo.dll
2014-12-31 23:52 - 2014-12-31 23:52 - 00569856 _____ () C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
2014-12-31 23:52 - 2014-12-31 23:52 - 01400846 _____ () C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\avcodec-54.dll
2014-12-31 23:52 - 2014-12-31 23:52 - 00151054 _____ () C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\avutil-51.dll
2014-12-31 23:52 - 2014-12-31 23:52 - 00222734 _____ () C:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\avformat-54.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2014-12-08 17:00 - 2014-11-26 17:40 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-10-11 13:06 - 2014-10-11 13:06 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-1535484509-1023557788-1269224655-500 - Administrator - Disabled) => C:\Users\Administrator
Gast (S-1-5-21-1535484509-1023557788-1269224655-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1535484509-1023557788-1269224655-1003 - Limited - Enabled)
Wolfgang Wangler (S-1-5-21-1535484509-1023557788-1269224655-1001 - Administrator - Enabled) => C:\Users\Wolfgang Wangler
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/08/2015 01:55:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Error: (01/08/2015 01:32:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary {2bf1e193-df72-4e3c-9f15-d1dc6e2f810f}Gw64.
System Error:
Das System kann die angegebene Datei nicht finden.
.
Error: (01/08/2015 01:32:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddLegacyDriverFiles: Unable to back up image of binary {078ad437-dc9f-4228-9edb-b3d1c0246ff8}Gw64.
System Error:
Das System kann die angegebene Datei nicht finden.
.
Error: (01/08/2015 00:39:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Bei der Aktivierung der App „Microsoft.BingSports_8wekyb3d8bbwe!AppexSports“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/08/2015 10:58:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Bei der Aktivierung der App „Microsoft.BingSports_8wekyb3d8bbwe!AppexSports“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/07/2015 02:48:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Bei der Aktivierung der App „Microsoft.BingSports_8wekyb3d8bbwe!AppexSports“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/07/2015 00:36:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Bei der Aktivierung der App „Microsoft.BingSports_8wekyb3d8bbwe!AppexSports“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/07/2015 00:31:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Error: (01/07/2015 00:08:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Bei der Aktivierung der App „Microsoft.BingSports_8wekyb3d8bbwe!AppexSports“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/07/2015 09:30:51 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Bei der Aktivierung der App „Microsoft.BingSports_8wekyb3d8bbwe!AppexSports“ ist folgender Fehler aufgetreten: -2144927148. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
System errors:
=============
Error: (01/08/2015 00:14:16 PM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (01/08/2015 00:02:22 PM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (01/07/2015 00:32:10 PM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (01/07/2015 10:01:53 AM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (01/07/2015 09:43:35 AM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (01/05/2015 01:55:54 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)
Error: (01/05/2015 01:19:30 PM) (Source: DCOM) (EventID: 10016) (User: Wangler-PC)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Wangler-PCWolfgang WanglerS-1-5-21-1535484509-1023557788-1269224655-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/05/2015 01:19:30 PM) (Source: DCOM) (EventID: 10016) (User: Wangler-PC)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Wangler-PCWolfgang WanglerS-1-5-21-1535484509-1023557788-1269224655-1001LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (01/05/2015 11:27:41 AM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Error: (01/05/2015 11:27:41 AM) (Source: DCOM) (EventID: 10010) (User: Wangler-PC)
Description: {4545DEA0-2DFC-4906-A728-6D986BA399A9}
Microsoft Office Sessions:
=========================
Error: (01/08/2015 01:55:30 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Users\Wolfgang Wangler\AppData\Local\Pokki\Engine\HostAppService.exe
Error: (01/08/2015 01:32:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary {2bf1e193-df72-4e3c-9f15-d1dc6e2f810f}Gw64.
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (01/08/2015 01:32:47 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary {078ad437-dc9f-4228-9edb-b3d1c0246ff8}Gw64.
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (01/08/2015 00:39:25 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Microsoft.BingSports_8wekyb3d8bbwe!AppexSports-2144927148
Error: (01/08/2015 10:58:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Microsoft.BingSports_8wekyb3d8bbwe!AppexSports-2144927148
Error: (01/07/2015 02:48:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Microsoft.BingSports_8wekyb3d8bbwe!AppexSports-2144927148
Error: (01/07/2015 00:36:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Microsoft.BingSports_8wekyb3d8bbwe!AppexSports-2144927148
Error: (01/07/2015 00:31:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestc:\users\wolfgang wangler\appdata\local\pokki\uninstall.exe
Error: (01/07/2015 00:08:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Microsoft.BingSports_8wekyb3d8bbwe!AppexSports-2144927148
Error: (01/07/2015 09:30:51 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Wangler-PC)
Description: Microsoft.BingSports_8wekyb3d8bbwe!AppexSports-2144927148
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 80%
Total physical RAM: 4010.37 MB
Available physical RAM: 780.4 MB
Total Pagefile: 6665.87 MB
Available Pagefile: 823.68 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:905.25 GB) (Free:863.92 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (TOSHIBA EXT) (Fixed) (Total:931.51 GB) (Free:931.23 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0142DC51)
Partition: GPT Partition Type.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 9C66E1C1)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Geändert von x-taucher (08.01.2015 um 17:18 Uhr) Grund: bessere beschreibung |
| Themen zu win8.1 64bit firefox packages entfernen - werde mit werbung ueberschwemmt |
| adware, avg, back up, bonjour, cpu, defender, entfernen, explorer.exe, feedback, fehler, firefox, firewall, flash player, harddisk, home, installation, internet, neu, scan, security, software, svchost.exe, system, temp, usb, werbung, win8.1 |
Baum-Darstellung