Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Hardreset zur Virenentfernung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 03.04.2015, 07:49   #1
Superhase
 
Hardreset zur Virenentfernung - Icon22

Hardreset zur Virenentfernung



Da auf meinem Laptop fast 200 Ad- & Spywareviren waren und er fast garichtmehr reagierte, habe ich in komplett zurückgesetzt.

Frage: Können nach der Neuinstallation immermoch Viren auf der Festplatte sein?

Infos:

Laptop (Acer) mit vorinstallierten Windows 8.1 im UEFI.
Installations-CD besitze ich keine.

Alt 03.04.2015, 11:19   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Hardreset zur Virenentfernung - Standard

Hardreset zur Virenentfernung



hi,

nein, ich kann aber mal schauen:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 03.04.2015, 13:45   #3
Superhase
 
Hardreset zur Virenentfernung - Standard

Hardreset zur Virenentfernung



FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Luis (administrator) on CHAOTEN-PC on 03-04-2015 11:34:44
Running from C:\Users\Luis\Downloads
Loaded Profiles: Luis (Available profiles: Luis)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.0.17\Lightshot.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre1.8.0_40\bin\java.exe
() C:\Program Files\Genymobile\Genymotion\tools\adb.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\update.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890056 2013-10-02] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-11-18] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications))

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2780205158-270274410-2056880215-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=APJB
HKU\S-1-5-21-2780205158-270274410-2056880215-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=APJB
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2780205158-270274410-2056880215-1001 -> DefaultScope {EC912F12-22DD-4988-B9D4-53A4B17F42B9} URL = 
SearchScopes: HKU\S-1-5-21-2780205158-270274410-2056880215-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2780205158-270274410-2056880215-1001 -> {EC912F12-22DD-4988-B9D4-53A4B17F42B9} URL = 
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-04-03] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-04-03] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-04-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-04-03] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-04-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-04-03] (Google Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (ProxFlow) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-04-03]
CHR Extension: (Google Drive) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-03]
CHR Extension: (YouTube) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-03]
CHR Extension: (TrafficLight) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfnpidifppmenkapgihekkeednfoenal [2015-04-03]
CHR Extension: (Google Search) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-03]
CHR Extension: (PageEdit) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ebkclgoaabaibghklgknnjdemknjaeic [2015-04-03]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-03]
CHR Extension: (Google Wallet) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-03]
CHR Extension: (Gmail) - C:\Users\Luis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-03]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider) [File not signed]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101192 2013-10-02] (ELAN Microelectronics Corp.)
R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [69368 2013-10-23] (Bitdefender)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4221952 2014-09-18] (Qualcomm Atheros Communications, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
U5 avchv; C:\Windows\System32\Drivers\avchv.sys [261056 2015-04-03] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
S3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [87568 2013-07-01] (Intel Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 OATool; \??\C:\Users\Administrator\AppData\Local\Temp\OAToolx64.sys [X]
S3 TDKLIB; \??\C:\Users\Administrator\AppData\Local\Temp\TdkLib64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-03 11:34 - 2015-04-03 11:35 - 00010327 _____ () C:\Users\Luis\Downloads\FRST.txt
2015-04-03 11:34 - 2015-04-03 11:34 - 00000000 ____D () C:\FRST
2015-04-03 11:33 - 2015-04-03 11:33 - 02095616 _____ (Farbar) C:\Users\Luis\Downloads\FRST64.exe
2015-04-03 11:20 - 2015-04-03 11:20 - 00000000 ____D () C:\Users\Luis\Downloads\gapps-jb-20130813-signed
2015-04-03 11:17 - 2015-04-03 11:17 - 91736799 _____ () C:\Users\Luis\Downloads\gapps-jb-20130813-signed.zip
2015-04-03 11:06 - 2015-04-03 11:26 - 00000000 ____D () C:\Users\Luis\AppData\Local\Genymobile
2015-04-03 11:06 - 2015-04-03 11:18 - 00000000 ____D () C:\Users\Luis\.VirtualBox
2015-04-03 11:05 - 2015-04-03 11:05 - 00001104 _____ () C:\Users\Public\Desktop\Oracle VM VirtualBox.lnk
2015-04-03 11:05 - 2015-04-03 11:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2015-04-03 11:05 - 2015-04-03 11:05 - 00000000 ____D () C:\Program Files\Oracle
2015-04-03 11:05 - 2014-05-16 14:04 - 00254240 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2015-04-03 11:05 - 2014-05-16 14:03 - 00128288 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2015-04-03 11:04 - 2015-04-03 11:04 - 00001009 _____ () C:\Users\Public\Desktop\Genymotion.lnk
2015-04-03 11:04 - 2015-04-03 11:04 - 00001004 _____ () C:\Users\Public\Desktop\Genymotion Shell.lnk
2015-04-03 11:04 - 2015-04-03 11:04 - 00000000 ____D () C:\Program Files\Genymobile
2015-04-03 11:03 - 2015-04-03 11:18 - 00000000 ____D () C:\Users\Luis\.android
2015-04-03 11:02 - 2015-04-03 11:02 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-04-03 11:02 - 2015-04-03 11:02 - 00000000 ____D () C:\Users\Luis\AppData\Local\Android
2015-04-03 11:02 - 2015-04-03 11:02 - 00000000 ____D () C:\ProgramData\Sun
2015-04-03 11:02 - 2015-04-03 11:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-04-03 11:01 - 2015-04-03 11:01 - 00000000 ____D () C:\ProgramData\Oracle
2015-04-03 11:01 - 2015-04-03 11:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2015-04-03 11:00 - 2015-04-03 11:01 - 00000000 ____D () C:\Program Files (x86)\Java
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Startmenü
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Programme
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\ProgramData\Startmenü
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\ProgramData\Dokumente
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2015-04-03 10:56 - 2015-04-03 10:56 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2015-04-03 10:53 - 2015-04-03 11:08 - 00000408 _____ () C:\WINDOWS\Tasks\update-sys.job
2015-04-03 10:53 - 2015-04-03 10:53 - 00003278 _____ () C:\WINDOWS\System32\Tasks\update-sys
2015-04-03 10:53 - 2015-04-03 10:53 - 00003254 _____ () C:\WINDOWS\System32\Tasks\update-S-1-5-21-2780205158-270274410-2056880215-1001
2015-04-03 10:53 - 2015-04-03 10:53 - 00001270 _____ () C:\Users\Public\Desktop\Free MP4 Downloader.lnk
2015-04-03 10:53 - 2015-04-03 10:53 - 00000425 _____ () C:\Users\Luis\AppData\Local\UserProducts.xml
2015-04-03 10:53 - 2015-04-03 10:53 - 00000408 _____ () C:\WINDOWS\Tasks\update-S-1-5-21-2780205158-270274410-2056880215-1001.job
2015-04-03 10:53 - 2015-04-03 10:53 - 00000003 _____ () C:\Users\Luis\AppData\Local\updater.log
2015-04-03 10:53 - 2015-04-03 10:53 - 00000000 ____D () C:\Users\Luis\AppData\Roaming\Media Freeware
2015-04-03 10:53 - 2015-04-03 10:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2015-04-03 10:53 - 2015-04-03 10:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free MP4 Downloader
2015-04-03 10:53 - 2015-04-03 10:53 - 00000000 ____D () C:\Program Files (x86)\Skillbrains
2015-04-03 10:53 - 2015-04-03 10:53 - 00000000 ____D () C:\Program Files (x86)\Media Freeware
2015-04-03 10:43 - 2015-04-03 10:43 - 00002239 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-04-03 10:43 - 2015-04-03 10:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-03 10:42 - 2015-04-03 10:47 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-03 10:42 - 2015-04-03 10:47 - 00001124 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-03 10:42 - 2015-04-03 10:43 - 00000000 ____D () C:\Users\Luis\AppData\Local\Google
2015-04-03 10:42 - 2015-04-03 10:43 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-03 10:42 - 2015-04-03 10:42 - 00004100 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-04-03 10:42 - 2015-04-03 10:42 - 00003864 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-04-03 10:42 - 2015-04-03 10:42 - 00000000 ____D () C:\Users\Luis\AppData\Roaming\Macromedia
2015-04-03 10:42 - 2015-04-03 10:42 - 00000000 ____D () C:\Users\Luis\AppData\Local\Deployment
2015-04-03 10:42 - 2015-04-03 10:42 - 00000000 ____D () C:\Users\Luis\AppData\Local\Apps\2.0
2015-04-03 10:36 - 2015-04-03 10:36 - 00261056 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2015-04-03 10:33 - 2015-04-03 10:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antivirus Free Edition
2015-04-03 10:33 - 2013-04-17 14:59 - 00718840 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2015-04-03 10:33 - 2013-04-17 14:59 - 00593144 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2015-04-03 10:33 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\WINDOWS\system32\Drivers\SETAF9.tmp
2015-04-03 10:32 - 2015-04-03 10:33 - 00000000 ____D () C:\Program Files\Bitdefender
2015-04-03 10:32 - 2013-05-28 12:12 - 00382536 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2015-04-03 10:32 - 2013-04-22 13:21 - 00148696 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2015-04-03 10:28 - 2015-04-03 10:33 - 00000000 ____D () C:\WINDOWS\LastGood
2015-04-03 10:26 - 2015-04-03 10:26 - 00000000 ____D () C:\Users\Luis\Downloads\win81-10.0.0.299-whql
2015-04-03 10:25 - 2015-04-03 10:25 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-04-03 10:22 - 2015-04-03 10:22 - 00000000 ____D () C:\Users\Luis\Intel
2015-04-03 10:18 - 2015-04-03 10:32 - 00000000 ____D () C:\Users\Luis\AppData\Roaming\QuickScan
2015-04-03 10:07 - 2015-04-03 11:07 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2780205158-270274410-2056880215-1001
2015-04-03 10:05 - 2015-04-03 10:05 - 00000000 ____D () C:\Users\Public\Pokki
2015-04-03 10:03 - 2015-04-03 10:03 - 00001284 _____ () C:\Users\Luis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Realtek HD Audio-Manager.lnk
2015-04-03 10:03 - 2015-04-03 10:03 - 00000000 ____D () C:\Users\Luis\PicStream
2015-04-03 10:03 - 2015-04-03 10:03 - 00000000 ____D () C:\Users\Luis\AppData\Roaming\Atheros
2015-04-03 10:01 - 2015-04-03 10:06 - 00000000 ____D () C:\Users\Luis\AppData\Local\Packages
2015-04-03 10:01 - 2015-04-03 10:01 - 00001462 _____ () C:\Users\Luis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-03 10:01 - 2015-04-03 10:01 - 00000000 ____D () C:\Users\Luis\AppData\Roaming\Adobe
2015-04-03 10:01 - 2015-04-03 10:01 - 00000000 ____D () C:\Users\Luis\AppData\Local\VirtualStore
2015-04-03 10:00 - 2015-04-03 11:06 - 00000000 ____D () C:\Users\Luis
2015-04-03 10:00 - 2015-04-03 10:00 - 00000020 ___SH () C:\Users\Luis\ntuser.ini
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Vorlagen
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Startmenü
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Netzwerkumgebung
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Lokale Einstellungen
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Eigene Dateien
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Druckumgebung
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Documents\Eigene Musik
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Documents\Eigene Bilder
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\AppData\Local\Verlauf
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\AppData\Local\Anwendungsdaten
2015-04-03 10:00 - 2015-04-03 10:00 - 00000000 _SHDL () C:\Users\Luis\Anwendungsdaten
2015-04-03 10:00 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Luis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2021-10-21 15:36 - 2013-12-17 16:02 - 00000852 _____ () C:\WINDOWS\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2013-12-17 16:02 - 00000712 _____ () C:\WINDOWS\system32\Drivers\RTMICEQ0.dat
2015-04-03 19:54 - 2013-11-06 13:34 - 00000000 __SHD () C:\Recovery
2015-04-03 19:54 - 2013-08-22 17:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2015-04-03 11:16 - 2013-12-17 15:40 - 00305128 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-03 11:05 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-03 11:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-03 10:57 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-04-03 10:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2015-04-03 10:56 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default
2015-04-03 10:55 - 2013-08-22 16:44 - 00335992 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-04-03 10:37 - 2013-12-18 00:24 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2015-04-03 10:37 - 2013-12-18 00:24 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2015-04-03 10:37 - 2013-11-06 13:44 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-03 10:33 - 2013-08-22 16:46 - 00012186 _____ () C:\WINDOWS\setupact.log
2015-04-03 10:31 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-03 10:29 - 2013-11-06 13:33 - 00590504 _____ () C:\WINDOWS\PFRO.log
2015-04-03 10:29 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2015-04-03 10:23 - 2013-11-07 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-03 10:21 - 2013-11-07 03:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell
2015-04-03 10:20 - 2013-08-22 17:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2015-04-03 10:20 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-04-03 10:11 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-04-03 10:10 - 2013-12-17 16:27 - 00000000 ____D () C:\Program Files (x86)\Acer
2015-04-03 10:10 - 2013-11-07 03:47 - 00000000 ____D () C:\WINDOWS\oem
2015-04-03 10:08 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\restore
2015-04-03 10:02 - 2013-12-18 00:14 - 00003473 _____ () C:\WINDOWS\patch.log
2015-04-03 10:01 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-04-03 10:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-04-03 10:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2015-04-03 10:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera

==================== Files in the root of some directories =======

2014-06-06 01:00 - 2014-06-06 01:00 - 0028672 _____ () C:\Users\Luis\AppData\Roaming\FreeMP4downloader.db
2015-04-03 10:53 - 2015-04-03 10:53 - 0000003 _____ () C:\Users\Luis\AppData\Local\updater.log
2015-04-03 10:53 - 2015-04-03 10:53 - 0000425 _____ () C:\Users\Luis\AppData\Local\UserProducts.xml

Some content of TEMP:
====================
C:\Users\Luis\AppData\Local\Temp\AcerDocsSetup.exe
C:\Users\Luis\AppData\Local\Temp\AcerPortalSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2013-11-06 13:33

==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Luis at 2015-04-03 11:36:14
Running from C:\Users\Luis\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus Free Edition (Enabled - Up to date) {9B5F5313-CAF9-DD97-C460-E778420237B4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Edition (Enabled - Up to date) {203EB2F7-ECC3-D219-FED0-DC0A39857D09}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3323.57 - CyberLink Corp.)
ETDWare PS/2-X64 11.6.28.201_WHQL (HKLM\...\Elantech) (Version: 11.6.28.201 - ELAN Microelectronic Corp.)
Free MP4 Downloader (HKLM-x32\...\{6B4A18B4-506F-4B04-A851-3F552ABC97D0}) (Version: 1.0.0 - Media Freeware)
Genymotion version 2.4.0 (HKLM\...\{6D180286-D4DF-40EF-9227-923B9C07C08A}_is1) (Version: 2.4.0 - Genymobile)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3349 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 1.0.0.1050 - Intel Corporation)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java SE Development Kit 8 Update 40 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0180400}) (Version: 8.0.400.26 - Oracle Corporation)
Lightshot-5.2.0.17 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.2.0.17 - Skillbrains)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2009 - Acer)
Oracle VM VirtualBox 4.3.12 (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.07 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.27041 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

03-04-2015 10:08:31 eBay Worldwide wird entfernt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {2BF85595-0C3D-46FC-AB62-CBA38638C88A} - System32\Tasks\update-S-1-5-21-2780205158-270274410-2056880215-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {2DF39441-92B1-455D-93A4-036EDF789CB9} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2014-11-28] ()
Task: {A37DF47E-2751-41FA-B093-12B2CBE7D3E8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-03] (Google Inc.)
Task: {ABD54607-3FBC-4CE5-879C-93E1D1BE8ED6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-03] (Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\update-S-1-5-21-2780205158-270274410-2056880215-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\WINDOWS\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Loaded Modules (whitelisted) ==============

2013-12-17 16:28 - 2013-07-30 19:11 - 00110152 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2013-09-07 02:48 - 2013-09-07 02:48 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-09-07 02:45 - 2013-09-07 02:45 - 00086016 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2013-09-07 02:52 - 2013-09-07 02:52 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2015-04-03 10:33 - 2013-03-19 12:07 - 00696632 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2015-04-03 10:33 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2015-04-03 11:04 - 2015-02-25 14:08 - 04715129 _____ () C:\Program Files\Genymobile\Genymotion\tools\adb.exe
2013-12-17 16:28 - 2013-07-30 19:11 - 00088648 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext.dll
2015-04-03 10:43 - 2015-03-30 23:07 - 01174856 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libglesv2.dll
2015-04-03 10:43 - 2015-03-30 23:07 - 00080200 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\libegl.dll
2015-04-03 10:43 - 2015-03-30 23:07 - 09279304 _____ () C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\pdf.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Luis\Downloads\FRST64.exe:BDU

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2780205158-270274410-2056880215-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\PackardBell01.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-2780205158-270274410-2056880215-500 - Administrator - Disabled)
Gast (S-1-5-21-2780205158-270274410-2056880215-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2780205158-270274410-2056880215-1003 - Limited - Enabled)
Luis (S-1-5-21-2780205158-270274410-2056880215-1001 - Administrator - Enabled) => C:\Users\Luis

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/03/2015 10:58:25 AM) (Source: Windows Search Service Profile Notification) (EventID: 2) (User: )
Description: Die indizierten Daten von Windows Search für den Benutzer '<Event xmlns='hxxp://schemas.microsoft.com/win/2004/08/events/event'><System><Provider Name='Microsoft-Windows-Search-ProfileNotify' Guid='{FC6F77DD-769A-470E-BCF9-1B6555A118BE}' EventSourceName='Windows Search Service Profile Notification'/><EventID Qualifiers='49152'>2</EventID><Version>0</Version><Level>2</Level><Task>0</Task><Opcode>0</Opcode><Keywords>0x80000000000000</Keywords><TimeCreated SystemTime='2015-04-03T08:58:25.000000000Z'/><EventRecordID>729</EventRecordID><Correlation/><Execution ProcessID='0' ThreadID='0'/><Channel>Application</Channel><Computer>Chaoten-PC</Computer><Security/></System><ProcessingErrorData><ErrorCode>15005</ErrorCode><DataItemName>__binLength</DataItemName><EventPayload>4300680061006F00740065006E002D00500043005C00410064006D0069006E006900730074007200610074006F00720000003000780038003000300034003200310030003300000000000000</EventPayload></ProcessingErrorData></Event>' können im Zuge der Löschung des Benutzerprofils nicht entfernt werden. Fehlercode %2.

%3.


System errors:
=============
Error: (04/03/2015 10:33:54 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "bdfwfpf" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/03/2015 10:55:32 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.


Microsoft Office Sessions:
=========================
Error: (04/03/2015 10:58:25 AM) (Source: Windows Search Service Profile Notification) (EventID: 2) (User: )
Description: <Event xmlns='hxxp://schemas.microsoft.com/win/2004/08/events/event'><System><Provider Name='Microsoft-Windows-Search-ProfileNotify' Guid='{FC6F77DD-769A-470E-BCF9-1B6555A118BE}' EventSourceName='Windows Search Service Profile Notification'/><EventID Qualifiers='49152'>2</EventID><Version>0</Version><Level>2</Level><Task>0</Task><Opcode>0</Opcode><Keywords>0x80000000000000</Keywords><TimeCreated SystemTime='2015-04-03T08:58:25.000000000Z'/><EventRecordID>729</EventRecordID><Correlation/><Execution ProcessID='0' ThreadID='0'/><Channel>Application</Channel><Computer>Chaoten-PC</Computer><Security/></System><ProcessingErrorData><ErrorCode>15005</ErrorCode><DataItemName>__binLength</DataItemName><EventPayload>4300680061006F00740065006E002D00500043005C00410064006D0069006E006900730074007200610074006F00720000003000780038003000300034003200310030003300000000000000</EventPayload></ProcessingErrorData></Event>


==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU N3520 @ 2.16GHz
Percentage of memory in use: 43%
Total physical RAM: 3979.34 MB
Available physical RAM: 2245.26 MB
Total Pagefile: 5387.34 MB
Available Pagefile: 3379.55 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:448.69 GB) (Free:420.86 GB) NTFS
Drive e: (LUIS) (Removable) (Total:1.89 GB) (Free:1.88 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: F5B09EDB)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================
         
Hallo? Ich hab gepostet.
__________________

Alt 03.04.2015, 20:35   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Hardreset zur Virenentfernung - Standard

Hardreset zur Virenentfernung



Zitat:
Hallo? Ich hab gepostet.
Hallo? Es ist Feiertag. UNd selbst ich hab ein Real Life neben dem Forum (auch wenn mir das jetzt wieder keiner glaubt.....)

Logs sind sauber
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Hardreset zur Virenentfernung
acer, entfernun, entfernung, festplatte, komplett, laptop, neuinstallation, platte, virenentfernung, vorinstallierte, windows, windows 8.1, zurücksetzen



Ähnliche Themen: Hardreset zur Virenentfernung


  1. Virenentfernung
    Log-Analyse und Auswertung - 20.10.2015 (21)
  2. Virenentfernung
    Lob, Kritik und Wünsche - 16.07.2014 (0)
  3. Restlose Virenentfernung durch G-Data Internet Security 2012 oder nicht
    Log-Analyse und Auswertung - 12.12.2011 (7)
  4. Kein WLAN nach vermeintlicher Virenentfernung (Win XP)
    Plagegeister aller Art und deren Bekämpfung - 02.12.2011 (15)
  5. Nach Virenentfernung kein Netzwerk mehr
    Log-Analyse und Auswertung - 12.08.2011 (1)
  6. Nach Virenentfernung nurnoch Bluescreen bei Start
    Log-Analyse und Auswertung - 30.04.2011 (1)
  7. Windows XP langsam nach Virenentfernung
    Log-Analyse und Auswertung - 01.06.2010 (1)
  8. Nach Virenentfernung "Blackscreen"
    Plagegeister aller Art und deren Bekämpfung - 24.10.2008 (2)
  9. Virenentfernung und vor Viren schützen
    Antiviren-, Firewall- und andere Schutzprogramme - 22.02.2008 (27)
  10. Mega Problem Nach Virenentfernung !!!
    Alles rund um Windows - 13.11.2004 (11)
  11. Remote Virenentfernung I-Worm.Bagle.Z?
    Plagegeister aller Art und deren Bekämpfung - 02.07.2004 (1)

Zum Thema Hardreset zur Virenentfernung - Da auf meinem Laptop fast 200 Ad- & Spywareviren waren und er fast garichtmehr reagierte, habe ich in komplett zurückgesetzt. Frage: Können nach der Neuinstallation immermoch Viren auf der Festplatte - Hardreset zur Virenentfernung...
Archiv
Du betrachtest: Hardreset zur Virenentfernung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.