| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Sporadische VerbindungsabbrücheWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.07.2015, 19:51
| #1 |
 |  Sporadische Verbindungsabbrüche Hallo, seit ein paar Tagen verliere ich die Verbinung zum Internet. Laut Hotline liegt keine Störung vor. Wenn die Nachricht unten links erscheint "kein Netzwerk bzw kein Internet" klicke ich auf Diagnose und Windows setzt meine Lan Einstellungen zurück (Standard-Gateway) Ich selber ändere nichts an den Einstellungen, deswegen glaube ich, dass bei mir was "faul" ist. Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by Horst at 2015-07-13 20:29:50
Running from C:\Users\Horst\Desktop
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1653188048-618373809-1772085243-500 - Administrator - Disabled)
Gast (S-1-5-21-1653188048-618373809-1772085243-501 - Limited - Disabled)
Horst (S-1-5-21-1653188048-618373809-1772085243-1001 - Administrator - Enabled) => C:\Users\Horst
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: Emsisoft Anti-Malware (Enabled - Out of date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Emsisoft Anti-Malware (Enabled - Out of date) {9425001D-A331-13F4-34E6-D05C71B96A74}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6614 - Acronis) Hidden
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duck Game (HKLM-x32\...\Steam App 312530) (Version: - Landon Podbielski)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
EXPERTool v9.12 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 9.12.0.0 - Gainward Co. Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version: - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Sound Blaster Audigy 2 ZS (HKLM-x32\...\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Starbound - Unstable (HKLM-x32\...\Steam App 367540) (Version: - )
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windward (HKLM-x32\...\Steam App 326410) (Version: - Tasharen Entertainment Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2015-07-07 07:02 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {2F9B3C14-EF9B-4912-8770-3C9D6F46274A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd)
Task: {5BA993BE-279B-4AAF-9530-0CD1CA3273E3} - System32\Tasks\{15751267-EE47-4935-931A-4B852CAAC5B6} => pcalua.exe -a G:\ActivationATIH\ActivationAcronisTIH.exe -d G:\ActivationATIH
Task: {8DEF45A9-AFB6-4045-AA72-BA1793925BD9} - System32\Tasks\EXPERTool => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2015-05-29] (Gainward Co. Ltd.)
Task: {9E4987BF-CC21-43BE-95E4-ACC8DEBEF342} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-25] (Google Inc.)
Task: {D57D1EE3-3EAD-4523-8FEF-EF99AFE4F9B0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-25] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-06-21 19:55 - 2013-04-15 11:50 - 00198144 _____ () C:\Windows\System32\HP1006LM.DLL
2015-06-21 19:55 - 2013-04-15 11:50 - 00065024 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1006PP.dll
2015-02-05 01:24 - 2015-02-05 01:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-06-12 03:34 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-10-01 11:32 - 2013-10-01 11:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-04-15 22:13 - 2015-04-15 22:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-06-12 03:31 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-05-20 04:29 - 2015-05-20 04:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-06-15 18:59 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Horst\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-06-15 18:59 - 2014-11-26 03:12 - 00911360 _____ () C:\Users\Horst\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-06-15 18:59 - 2014-11-26 03:12 - 00134144 _____ () C:\Users\Horst\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2014-12-11 13:14 - 2015-04-16 19:40 - 00776192 _____ () F:\Spiele\Steam\SDL2.dll
2014-12-31 22:36 - 2015-04-23 04:16 - 04962816 _____ () F:\Spiele\Steam\v8.dll
2014-12-31 22:36 - 2015-04-23 04:16 - 01556992 _____ () F:\Spiele\Steam\icui18n.dll
2014-12-31 22:36 - 2015-04-23 04:16 - 01187840 _____ () F:\Spiele\Steam\icuuc.dll
2014-12-11 13:14 - 2015-06-04 20:56 - 02407104 _____ () F:\Spiele\Steam\video.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 02396672 _____ () F:\Spiele\Steam\libavcodec-56.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00442880 _____ () F:\Spiele\Steam\libavutil-54.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00479744 _____ () F:\Spiele\Steam\libavformat-56.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00332800 _____ () F:\Spiele\Steam\libavresample-2.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00485888 _____ () F:\Spiele\Steam\libswscale-3.dll
2014-12-11 13:14 - 2015-06-04 20:56 - 00703168 _____ () F:\Spiele\Steam\bin\chromehtml.DLL
2014-12-11 13:14 - 2015-05-11 21:01 - 36302728 _____ () F:\Spiele\Steam\bin\libcef.dll
2015-04-23 18:40 - 2015-05-11 21:01 - 08958344 _____ () F:\Spiele\Steam\bin\pdf.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-01 12:00 - 2013-10-01 12:00 - 00022336 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy_stub.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1653188048-618373809-1772085243-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Horst\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AcrSch2Svc => 2
MSCONFIG\Services: afcdpsrv => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: syncagentsrv => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BCSSync => "F:\Tools\Microsoft Office Professional Plus 2010\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "F:\Tools\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{575E0739-9799-481E-8AC2-46119D61DC8B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A8EE40A2-E9FB-43AF-B3F6-F59D4FB6B7C4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A1EC546E-46E4-4F2E-96D9-0D743D10BF28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{014E806F-BA65-4370-A3B9-1A21C6E8BDF2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F14C7B62-E908-4C99-A36C-5311E4D7EAD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C7331939-32E8-4CF0-9A3A-26E8FDF540E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{61A58B63-BC35-4EF0-AA1C-EA9DDB95F2F1}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{D126DD95-8C38-4588-B69C-B3E62C507928}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{5DF9EFF8-7130-4C4C-B4E8-0D93A76ABFEC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EB831D08-4FE1-49F4-A515-215346BC93F2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E8FA76E8-6F69-4BD9-A75D-99634AD73B1E}] => (Allow) F:\Spiele\Steam\Steam.exe
FirewallRules: [{1C79C52B-6E36-4E3C-A826-61E17B389BB5}] => (Allow) F:\Spiele\Steam\Steam.exe
FirewallRules: [{8CFF3DE9-863C-4103-ACBD-07821ABF6C01}] => (Allow) F:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{2737C6AC-11D2-4F73-9EA0-A51B96005439}] => (Allow) F:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{1A8EE20F-5A2B-4BF4-9A61-08B6E5DD264B}] => (Allow) F:\Spiele\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{04683E10-07FF-4BEE-A7F2-837F11D0F3FA}] => (Allow) F:\Spiele\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{D6F1ADC6-FBA2-4FEE-91F7-173B13A6904B}] => (Allow) F:\Spiele\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{BDD30AA2-E4DA-44E4-BC53-11CDD5C8B4C8}] => (Allow) F:\Spiele\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CA086281-F4FA-417E-8F98-AAEF13245FFB}] => (Allow) F:\Spiele\Steam\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{8D81CFE3-7528-4AB7-BAFD-4E19731FD48F}] => (Allow) F:\Spiele\Steam\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{74D90B25-DB4F-45D4-B0C6-DAA1F8FB1E1A}] => (Allow) F:\Spiele\Steam\steamapps\common\Starbound - Unstable\win32\launcher\launcher.exe
FirewallRules: [{EA0B0C43-D6D5-42D4-A484-42B997B988CF}] => (Allow) F:\Spiele\Steam\steamapps\common\Starbound - Unstable\win32\launcher\launcher.exe
FirewallRules: [{69164798-6E65-4D5D-B42B-2D1D02D0F200}] => (Allow) F:\Spiele\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{09486F3D-6926-4529-B22B-73E0159A935D}] => (Allow) F:\Spiele\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{7062D5F2-8A9D-433A-97EE-6C18D4CBE6E5}] => (Allow) F:\Spiele\Steam\steamapps\common\Windward\Windward.exe
FirewallRules: [{17EB27CC-B6A2-4E5E-B259-92B8FD59884B}] => (Allow) F:\Spiele\Steam\steamapps\common\Windward\Windward.exe
FirewallRules: [{44B5C564-160A-4663-9477-053D7718F0AA}] => (Allow) F:\Spiele\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{228AD067-E954-4F93-BC0F-B2C01F36ADAC}] => (Allow) F:\Spiele\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [TCP Query User{5DB2935B-3BDB-4AFA-9DA0-5545AC28F346}F:\spiele\steam\steamapps\common\arma 3\arma3.exe] => (Allow) F:\spiele\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{19D531E1-96DB-45A0-A928-FD74442C08F4}F:\spiele\steam\steamapps\common\arma 3\arma3.exe] => (Allow) F:\spiele\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{32DBCCFD-AEA6-48F7-B70C-3861E2CF9B74}] => (Allow) F:\Spiele\Battle.net\Battle.net.exe
FirewallRules: [{9B7B74E8-33C9-42B3-A8AD-B69957F4FC59}] => (Allow) F:\Spiele\Battle.net\Battle.net.exe
FirewallRules: [{0220DB87-6EB6-4CB9-A33E-92D106312487}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVE.EXE
FirewallRules: [{65808DAA-03A7-432E-A382-C7677A911BDE}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVE.EXE
FirewallRules: [{9BB4A455-4E4D-4B41-929E-B156F0776FB2}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\ONENOTE.EXE
FirewallRules: [{DB1EE7B7-092F-43E4-BAD0-8ADCD85308F8}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\ONENOTE.EXE
FirewallRules: [{CE4A63C2-E21C-447F-BF28-37E99A1DE7C8}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\outlook.exe
FirewallRules: [{62F21D46-37D0-44C0-B2E8-EB2E1DDB25F9}] => (Allow) F:\Spiele\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{7648C453-E3A7-4E2A-B71C-7FDF135E1F1C}] => (Allow) F:\Spiele\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{1F3B4260-015F-4887-A9BD-A0D582D07D83}] => (Allow) F:\Spiele\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{EE940E4E-20AF-4D92-A226-92162C90DBDD}] => (Allow) F:\Spiele\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{AF3916C9-FC45-4498-B435-7D35082E849D}] => (Allow) F:\Tools\TeamViewer\TeamViewer.exe
FirewallRules: [{5E1C9765-0461-428E-8302-EBADD94B30DB}] => (Allow) F:\Tools\TeamViewer\TeamViewer.exe
FirewallRules: [{419A3869-C896-4AD4-8B13-C9868688D69E}] => (Allow) F:\Tools\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{608FAD05-8B20-4C90-8015-2A3564D769C3}] => (Allow) F:\Tools\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E89D2129-FDEC-47E1-A69F-3D34864251E6}] => (Allow) F:\Spiele\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{21797A55-B76C-48F1-BCE5-44F81F5CB009}] => (Allow) F:\Spiele\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{D60BC6F7-51CB-4F88-9D66-EC879A55DD9F}] => (Allow) F:\Spiele\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{28329B58-1C87-417A-8146-5235A582A518}] => (Allow) F:\Spiele\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{41F2B270-02C8-42F1-AF28-F8A2B0B76D2A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D56F4FFC-6B76-4924-9E8F-7A7E0C17B2C8}] => (Allow) F:\Spiele\Steam\steamapps\common\The Book of Unwritten Tales 2\Windows\BouT2.exe
FirewallRules: [{DAEEE553-F427-4D84-AE34-A03194D8F261}] => (Allow) F:\Spiele\Steam\steamapps\common\The Book of Unwritten Tales 2\Windows\BouT2.exe
FirewallRules: [{2E97A885-2ED7-4BF7-A325-B4E88B76A76A}] => (Allow) F:\Spiele\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{A99AF79C-857C-45B6-BF19-AA17CC68C37E}] => (Allow) F:\Spiele\Steam\steamapps\common\Duck Game\DuckGame.exe
==================== Faulty Device Manager Devices =============
Name: Creative Game Port
Description: Creative Game Port
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Creative
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/13/2015 07:05:53 PM) (Source: Office Software Protection Platform Service) (EventID: 1017) (User: )
Description: Installation of the Proof of Purchase failed. 0xC004F050
Partial Pkey=VHKC6
ACID=?
Detailed Error[?]
Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.2.1.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: libqt4_plugin.dll, Version: 2.2.1.0, Zeitstempel: 0xa2d0a2c0
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000076310b
ID des fehlerhaften Prozesses: 0xbac
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3
Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 12.8.0.1016, Zeitstempel: 0x51fb0c50
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02fc4211
ID des fehlerhaften Prozesses: 0x394
Startzeit der fehlerhaften Anwendung: 0xIAStorDataMgrSvc.exe0
Pfad der fehlerhaften Anwendung: IAStorDataMgrSvc.exe1
Pfad des fehlerhaften Moduls: IAStorDataMgrSvc.exe2
Berichtskennung: IAStorDataMgrSvc.exe3
Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bei System.Threading.ThreadPoolWorkQueue.Dispatch()
bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (EventID: 1013) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled
Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x3d40
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
System errors:
=============
Error: (07/13/2015 08:24:00 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/13/2015 02:52:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/12/2015 06:21:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/11/2015 05:49:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/11/2015 01:16:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/10/2015 01:30:55 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/09/2015 01:30:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/08/2015 02:50:25 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/08/2015 02:34:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/08/2015 02:01:14 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Microsoft Office:
=========================
Error: (07/13/2015 07:05:53 PM) (Source: Office Software Protection Platform Service) (EventID: 1017) (User: )
Description: 0xC004F050VHKC6??
Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.2.1.000000000libqt4_plugin.dll2.2.1.0a2d0a2c040000015000000000076310bbac01d0ba3ba46a77a4F:\Tools\VideoLAN\VLC\vlc.exeF:\Tools\VideoLAN\VLC\plugins\gui\libqt4_plugin.dllf55dbd8f-262e-11e5-9d35-a0f3c100012d
Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.8.0.101651fb0c50unknown0.0.0.000000000c000000502fc421139401d0b90efba14430C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown550d3e1c-2502-11e5-b155-a0f3c100012d
Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bei System.Threading.ThreadPoolWorkQueue.Dispatch()
bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (EventID: 1013) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa13d4001d0b85aa96a2b87C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll655b941a-2462-11e5-a8e7-a0f3c100012d
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
CodeIntegrity Errors:
===================================
Date: 2015-07-07 07:02:02.715
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-07 07:02:02.690
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Processor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Percentage of memory in use: 29%
Total physical RAM: 8111.1 MB
Available physical RAM: 5701.71 MB
Total Virtual: 16220.41 MB
Available Virtual: 13549.23 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:59.53 GB) (Free:11.82 GB) NTFS
Drive f: () (Fixed) (Total:465.75 GB) (Free:210.27 GB) NTFS
Drive g: () (Fixed) (Total:465.75 GB) (Free:145.49 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0EF270DC)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: B4F32661)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=59.5 GB) - (Type=07 NTFS)
==================== End of log ============================
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015
Ran by Horst (administrator) on HORST-PC on 13-07-2015 20:29:32
Running from C:\Users\Horst\Desktop
Loaded Profiles: Horst (Available Profiles: Horst)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Gainward Co. Ltd.) C:\Program Files (x86)\EXPERTool\TBPanel.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Horst\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) F:\Spiele\Steam\Steam.exe
(Valve Corporation) F:\Spiele\Steam\bin\steamwebhelper.exe
(Valve Corporation) F:\Spiele\Steam\bin\steamwebhelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AsioReg] => REGSVR32.EXE /S CTASIO.DLL
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-06-18] (Razer Inc.)
HKU\S-1-5-21-1653188048-618373809-1772085243-1001\...\Run: [TBPanel] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2195416 2015-05-29] (Gainward Co. Ltd.)
HKU\S-1-5-18\...\Run: [DevconDefaultDB] => C:\Windows\system32\READREG /SILENT /FAIL=1
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1653188048-618373809-1772085243-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1653188048-618373809-1772085243-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> F:\Tools\Microsoft Office Professional Plus 2010\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-07-07] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-07] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1A85F204-BA82-407C-B68A-9BB8709F7178}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7B6E52DF-D79F-4119-8DA8-4BF3163E8EE4}: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default
FF SearchEngineOrder.1: SuchMaschine
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-06-27] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> F:\Tools\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> F:\Tools\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-06-27] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-25] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\searchplugins\search_engine.xml [2014-03-17]
FF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\donottrackplus@abine.com [2015-06-12]
FF Extension: Image Picker - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\ImagePicker@topolog.org [2015-06-13]
FF Extension: LavaFox V2 - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\info@djzig.com [2015-07-11]
FF Extension: exfm - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\jid0-IsXX48jx4obwoZPnzG6RQB0pK9A@jetpack [2015-06-12]
FF Extension: YouTube Unblocker - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\youtubeunblocker__web@unblocker.yt [2015-06-12]
FF Extension: FT DeepDark - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-06-27]
FF Extension: WOT - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-11]
FF Extension: HP Detect - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2} [2015-06-12]
FF Extension: DriverAgent Plugin for Firefox and Opera - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5} [2015-06-12]
FF Extension: Classic Theme Restorer (Customize UI) - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2015-06-12]
FF Extension: MEGA - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\firefox@mega.co.nz.xpi [2015-06-12]
FF Extension: ProxTube - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\ich@maltegoetz.de.xpi [2015-06-12]
FF Extension: Magic Actions for YouTube™ - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi [2015-06-12]
FF Extension: YouTube™ Flash® Player - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2015-06-12]
FF Extension: Deutsch (DE) Language Pack - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2015-06-12]
FF Extension: NASA Night Launch - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\nasanightlaunch@example.com.xpi [2015-06-12]
FF Extension: Noia Fox options - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\NoiaFoxoption@davidvincent.tld.xpi [2015-06-12]
FF Extension: Toggle Persona - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\togglepersona@davidvincent.tld.xpi [2015-06-12]
FF Extension: ProxTube - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-06-12]
FF Extension: Stylish - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2015-06-12]
FF Extension: Bulk Image Downloader - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2015-06-12]
FF Extension: ImageGrabber - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{546d2a00-2bbf-11dc-8314-0800200c9a66}.xpi [2015-06-12]
FF Extension: Save Image in Folder - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{5e594888-3e8e-47da-b2c6-b0b545112f84}.xpi [2015-06-12]
FF Extension: NoScript - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-06-12]
FF Extension: Noia Fox - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi [2015-06-12]
FF Extension: Downloads Window - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{a7213cf2-fa1e-4373-88ff-255d0abd3020}.xpi [2015-06-12]
FF Extension: Shine Bright Skin Aero - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{c7b3cf78-9cbc-47b9-ba47-bb84a56069dd}.xpi [2015-06-12]
FF Extension: Show my Password - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2015-06-12]
FF Extension: Adblock Plus - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-12]
FF Extension: Greasemonkey - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-06-12]
FF Extension: Metal Lion Australis Graphite - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{F6D83238-A31E-451d-8BCB-28F6BAFECF10}.xpi [2015-06-12]
FF Extension: Metal Lion Australis Scrollbars II - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{FDBAD97E-A258-4fe3-9CF6-60CF386C4422}.xpi [2015-06-12]
Chrome:
=======
CHR Profile: C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-25]
CHR Extension: (Google Docs) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-25]
CHR Extension: (Google Drive) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-25]
CHR Extension: (YouTube) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-25]
CHR Extension: (Google Search) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-25]
CHR Extension: (Google Sheets) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-25]
CHR Extension: (Google Wallet) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-25]
CHR Extension: (Gmail) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-25]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [5155576 2015-05-26] (Emsisoft Ltd)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1060352 2015-06-20] ()
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [429056 2013-10-28] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S2 MBAMService; F:\Tools\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 Microsoft SharePoint Workspace Audit Service; F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVE.EXE [50942144 2013-12-19] (Microsoft Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation)
S3 OpcEnum; C:\Windows\SysWOW64\OPCEnum.exe [86016 2003-03-05] (OPC Foundation) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
S4 TeamViewer; F:\Tools\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 COMMONFX.DLL; C:\Windows\System32\COMMONFX.DLL [151296 2007-04-12] (Creative Technology Ltd)
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
R3 CTAUDFX.DLL; C:\Windows\System32\CTAUDFX.DLL [700200 2007-04-10] (Creative Technology Ltd)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTERFXFX.DLL; C:\Windows\System32\CTERFXFX.DLL [142120 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
R3 CTSBLFX.DLL; C:\Windows\System32\CTSBLFX.DLL [681256 2007-04-10] (Creative Technology Ltd)
R1 epp64; C:\Windows\System32\DRIVERS\epp64.sys [135800 2015-03-24] (Emsisoft GmbH)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
R3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [33448 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-03-03] (Razer, Inc.)
R3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [31912 2014-12-30] (Razer Inc)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-16] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-16] (Acronis International GmbH)
R3 tpg64win7; C:\Windows\System32\DRIVERS\tpg64win7.sys [648808 2012-02-22] (TP-LINK TECHNOLOGIES CO., LTD)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-16] (Acronis International GmbH)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 20:29 - 2015-07-13 20:29 - 00021628 _____ C:\Users\Horst\Desktop\FRST.txt
2015-07-13 20:23 - 2015-07-13 20:23 - 00000056 _____ C:\Windows\setupact.log
2015-07-13 20:23 - 2015-07-13 20:23 - 00000000 _____ C:\Windows\setuperr.log
2015-07-13 20:22 - 2015-07-13 20:22 - 04959394 _____ C:\Windows\{00000005-00000000-00000000-00001102-00000004-20021102}.BAK
2015-07-12 19:06 - 2015-07-12 19:06 - 00000000 ____D C:\Users\Horst\Documents\DuckGame
2015-07-12 19:06 - 2015-07-12 19:06 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2015-07-12 19:05 - 2015-07-12 19:05 - 00000209 _____ C:\Users\Horst\Desktop\Duck Game.url
2015-07-08 02:54 - 2015-07-08 02:54 - 00015201 _____ C:\Users\Horst\Desktop\MemTest41.zip
2015-07-08 02:54 - 2015-07-08 02:54 - 00000000 ____D C:\Users\Horst\Desktop\MemTest41
2015-07-08 02:52 - 2015-07-08 02:52 - 00008334 _____ C:\Users\Horst\Desktop\hijackthis.log
2015-07-08 02:45 - 2015-07-08 02:45 - 00388608 _____ (Trend Micro Inc.) C:\Users\Horst\Desktop\HiJackThis204.exe
2015-07-08 02:41 - 2015-06-29 20:01 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-08 02:41 - 2015-06-29 19:59 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-08 02:41 - 2015-06-29 19:50 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-08 02:41 - 2015-06-27 00:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-08 02:41 - 2015-06-27 00:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-08 02:41 - 2015-06-27 00:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-08 02:41 - 2015-06-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-08 02:41 - 2015-05-09 20:26 - 00493504 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-08 02:41 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-07-08 02:41 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-07-08 02:41 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-07-08 02:41 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-07-08 01:54 - 2015-07-08 01:54 - 00000000 ____D C:\Users\Horst\AppData\Roaming\STEITZ® IT-Solutions
2015-07-08 01:51 - 2015-07-08 01:51 - 00001751 _____ C:\Users\Public\Desktop\SSDlife Free.lnk
2015-07-08 01:51 - 2015-07-08 01:51 - 00000000 ____D C:\ProgramData\STEITZ® IT-Solutions
2015-07-08 01:51 - 2015-07-08 01:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSDlife
2015-07-08 01:51 - 2015-07-08 01:51 - 00000000 ____D C:\ProgramData\Binarysense
2015-07-08 01:45 - 2015-07-08 02:26 - 00000000 ____D C:\Program Files\Intel
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ____D C:\Users\Horst\Intel
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Intel Corporation
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ____D C:\ProgramData\Intel
2015-07-08 01:42 - 2015-07-08 01:42 - 00104368 _____ (Iapetus Software) C:\Windows\SysWOW64\DCOMPERM.DLL
2015-07-08 01:42 - 2015-07-08 01:42 - 00067440 _____ (Iapetus Software) C:\Windows\SysWOW64\DCP.EXE
2015-07-08 01:42 - 2003-03-05 16:41 - 00086016 _____ (OPC Foundation) C:\Windows\SysWOW64\OPCEnum.exe
2015-07-08 01:42 - 2003-03-05 16:41 - 00059392 _____ (OPC Foundation) C:\Windows\SysWOW64\opccomn_ps.dll
2015-07-08 01:42 - 2003-03-03 19:25 - 00155648 _____ (OPC Foundation) C:\Windows\SysWOW64\opcproxy.dll
2015-07-08 01:34 - 2015-07-08 01:34 - 00000781 _____ C:\Users\Horst\Desktop\CrystalDiskInfo.lnk
2015-07-08 01:34 - 2015-07-08 01:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-07-08 00:36 - 2015-07-08 00:36 - 00000591 _____ C:\Users\Horst\Desktop\HD Tune.lnk
2015-07-08 00:36 - 2015-07-08 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2015-07-07 10:28 - 2015-07-07 10:28 - 00000000 ____D C:\ProgramData\Emsisoft
2015-07-07 10:25 - 2015-07-13 20:23 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2015-07-07 10:25 - 2015-07-07 10:25 - 00001091 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-07-07 10:25 - 2015-07-07 10:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-07-07 10:25 - 2015-03-24 00:17 - 00135800 _____ (Emsisoft GmbH) C:\Windows\system32\Drivers\epp64.sys
2015-07-07 09:53 - 2015-07-07 09:53 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\Windows\Sun
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\ProgramData\Sun
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\ProgramData\Oracle
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-07 07:03 - 2015-07-07 07:03 - 00023848 _____ C:\ComboFix.txt
2015-07-07 06:58 - 2015-07-07 07:03 - 00000000 ____D C:\Qoobox
2015-07-07 06:58 - 2015-07-07 07:02 - 00000000 ____D C:\Windows\erdnt
2015-07-07 06:58 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-07-07 06:58 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-07-07 06:58 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-07-07 06:57 - 2015-07-07 06:58 - 05632562 ____R (Swearware) C:\Users\Horst\Desktop\ComboFix.exe
2015-07-07 06:54 - 2015-07-07 06:54 - 00000000 ____D C:\AdwCleaner
2015-07-07 06:44 - 2015-07-07 09:21 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-07 06:44 - 2015-07-07 06:46 - 00000707 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-07-07 06:44 - 2015-07-07 06:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2015-07-07 06:44 - 2015-07-07 06:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-07 06:44 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-07 06:44 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-07 06:44 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-07 04:12 - 2015-07-07 04:12 - 00000207 _____ C:\Windows\tweaking.com-regbackup-HORST-PC-Windows-7-Ultimate-(64-bit).dat
2015-07-07 04:12 - 2015-07-07 04:12 - 00000000 ____D C:\RegBackup
2015-07-07 04:12 - 2015-07-04 10:53 - 02244096 _____ C:\Users\Horst\Desktop\AdwCleaner_4.207.exe
2015-07-07 02:56 - 2015-07-07 03:00 - 00000000 ____D C:\Users\Horst\Desktop\fb
2015-07-04 11:40 - 2015-05-09 01:38 - 00014664 _____ C:\Windows\system32\Drivers\nvflash.sys
2015-07-04 11:38 - 2015-07-04 11:41 - 00002996 _____ C:\Windows\System32\Tasks\EXPERTool
2015-07-04 11:38 - 2015-07-04 11:38 - 00001007 _____ C:\Users\Public\Desktop\EXPERTool.lnk
2015-07-04 11:38 - 2015-07-04 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EXPERTool
2015-07-04 11:38 - 2015-07-04 11:38 - 00000000 ____D C:\Program Files (x86)\EXPERTool
2015-07-04 11:32 - 2015-07-04 11:32 - 00000963 _____ C:\Users\Horst\Desktop\TechPowerUp GPU-Z.lnk
2015-07-04 11:32 - 2015-07-04 11:32 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2015-07-04 11:23 - 2015-07-04 11:23 - 00001022 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-07-04 11:23 - 2015-07-04 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-07-04 11:23 - 2015-07-04 11:23 - 00000000 ____D C:\Program Files\CPUID
2015-07-04 11:09 - 2015-07-13 20:29 - 00000000 ____D C:\FRST
2015-07-04 11:07 - 2015-07-13 20:28 - 02133504 _____ (Farbar) C:\Users\Horst\Desktop\FRST64.exe
2015-07-04 10:53 - 2015-07-04 10:53 - 00448512 _____ (OldTimer Tools) C:\Users\Horst\Desktop\TFC.exe
2015-07-04 10:52 - 2015-07-04 10:52 - 02951062 _____ (Malwarebytes Corporation) C:\Users\Horst\Desktop\JRT.exe
2015-07-04 10:29 - 2015-07-08 03:26 - 00007600 _____ C:\Users\Horst\AppData\Local\Resmon.ResmonCfg
2015-07-04 08:11 - 2015-07-04 08:11 - 00000920 _____ C:\Users\Horst\Desktop\NVI_0_3_0_0_0_100_79_0.lnk
2015-07-02 23:41 - 2015-07-02 23:41 - 00000638 _____ C:\Users\Horst\Desktop\SpeedFan.lnk
2015-07-02 23:41 - 2015-07-02 23:41 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2015-07-02 23:41 - 2015-07-02 23:41 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-06-28 23:05 - 2015-06-28 23:05 - 00000654 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-06-28 23:05 - 2015-06-28 23:05 - 00000654 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-06-27 15:26 - 2015-06-27 15:26 - 00002223 _____ C:\Users\Horst\Desktop\Creative-Audiokonsole.lnk
2015-06-27 15:14 - 2015-07-13 20:21 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-06-27 15:14 - 2015-07-13 20:21 - 00000000 ____D C:\Program Files\CCleaner
2015-06-27 15:14 - 2015-06-27 15:14 - 00002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-06-27 15:14 - 2015-06-27 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-06-27 01:33 - 2015-06-27 01:33 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-06-27 01:33 - 2015-06-27 01:33 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-06-27 01:33 - 2015-06-27 01:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-27 01:05 - 2015-07-13 19:33 - 00000000 ____D C:\ProgramData\Adobe
2015-06-25 00:19 - 2015-06-25 00:19 - 00000000 ____D C:\Users\Horst\AppData\Local\Google
2015-06-25 00:19 - 2015-06-25 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-06-25 00:18 - 2015-07-13 20:23 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-25 00:18 - 2015-07-13 19:23 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-25 00:18 - 2015-06-25 00:19 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-25 00:18 - 2015-06-25 00:18 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-06-25 00:18 - 2015-06-25 00:18 - 00003640 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-06-24 23:28 - 2015-07-02 21:20 - 00000000 ____D C:\Users\Horst\.mediathek3
2015-06-24 23:22 - 2015-06-24 23:23 - 00000000 ____D C:\ProgramData\Freemake
2015-06-24 23:22 - 2015-06-24 23:22 - 00000000 ____D C:\Users\Horst\Documents\Freemake
2015-06-23 01:57 - 2015-06-23 01:57 - 00000000 ____D C:\Users\Horst\Documents\WB Games
2015-06-23 01:18 - 2015-06-23 01:18 - 00000209 _____ C:\Users\Horst\Desktop\Batman Arkham Knight.url
2015-06-22 23:51 - 2015-06-22 23:56 - 00000000 ____D C:\Users\Horst\Documents\Windward
2015-06-22 23:25 - 2015-06-17 11:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-22 23:25 - 2015-06-17 11:10 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-06-22 00:59 - 2015-06-22 00:59 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-06-22 00:58 - 2015-06-22 00:58 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-06-22 00:58 - 2015-06-22 00:58 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-06-21 19:55 - 2015-06-21 19:55 - 00000000 ____D C:\Program Files\HP
2015-06-21 19:55 - 2013-04-15 11:50 - 00654336 _____ C:\Windows\system32\HP1006SM.EXE
2015-06-21 19:55 - 2013-04-15 11:50 - 00198144 _____ C:\Windows\system32\HP1006LM.DLL
2015-06-21 18:27 - 2015-06-21 18:27 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-06-21 18:00 - 2015-06-21 18:00 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-21 17:55 - 2015-06-21 17:55 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Windows\PCHEALTH
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-06-21 17:53 - 2015-06-21 17:53 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-21 17:53 - 2015-06-21 17:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2015-06-21 17:53 - 2015-06-21 17:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-06-21 17:52 - 2015-07-13 19:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-21 17:52 - 2015-06-21 17:52 - 00000000 ____D C:\Users\Horst\AppData\Local\Microsoft Help
2015-06-21 17:52 - 2015-06-21 17:52 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-20 04:58 - 2015-06-20 04:58 - 00000768 _____ C:\Users\Public\Desktop\Diablo III.lnk
2015-06-20 04:58 - 2015-06-20 04:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-06-20 04:52 - 2015-06-20 05:22 - 00000000 ____D C:\Users\Horst\AppData\Local\Battle.net
2015-06-20 04:52 - 2015-06-20 04:52 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Battle.net
2015-06-20 04:52 - 2015-06-20 04:52 - 00000000 ____D C:\Users\Horst\AppData\Local\Blizzard Entertainment
2015-06-20 04:51 - 2015-06-20 04:51 - 00000730 _____ C:\Users\Public\Desktop\Battle.net.lnk
2015-06-20 04:51 - 2015-06-20 04:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-06-20 04:51 - 2015-06-20 04:51 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-06-20 04:51 - 2015-06-20 04:51 - 00000000 ____D C:\ProgramData\Battle.net
2015-06-20 02:51 - 2015-06-20 02:58 - 00000000 ____D C:\Users\Horst\AppData\Local\Arma 3
2015-06-20 02:51 - 2015-06-20 02:54 - 00000000 ____D C:\Users\Horst\Documents\Arma 3
2015-06-20 02:51 - 2015-06-20 02:51 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2015-06-20 02:50 - 2015-06-20 02:54 - 00000000 ____D C:\Users\Horst\AppData\Local\Arma 3 Launcher
2015-06-20 02:50 - 2015-06-20 02:50 - 00000000 ____D C:\Users\Horst\AppData\Local\Bohemia_Interactive
2015-06-20 02:46 - 2015-06-20 02:46 - 00000000 ____D C:\Users\Horst\AppData\Local\Microsoft Games
2015-06-20 02:32 - 2015-06-20 02:32 - 00000209 _____ C:\Users\Horst\Desktop\Arma 3.url
2015-06-19 21:30 - 2015-06-19 21:30 - 00000209 _____ C:\Users\Horst\Desktop\gutes spiel.url
2015-06-18 18:55 - 2015-07-13 18:49 - 00000000 ____D C:\Users\Horst\AppData\Roaming\vlc
2015-06-18 18:55 - 2015-06-18 18:55 - 00000699 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-06-18 18:55 - 2015-06-18 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-06-15 18:58 - 2015-03-03 19:47 - 00129600 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2015-06-15 18:57 - 2015-02-05 01:24 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2015-06-15 18:50 - 2015-06-15 18:50 - 00000000 ____D C:\Users\Horst\AppData\Local\RzStats
2015-06-14 22:39 - 2015-06-14 22:39 - 00000831 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2015-06-14 22:39 - 2015-06-14 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2015-06-14 02:38 - 2015-06-14 02:36 - 00010323 _____ C:\Users\Horst\Desktop\config.cfg
2015-06-13 21:13 - 2015-06-13 21:13 - 00000000 ____D C:\Users\Horst\AppData\Local\GWX
2015-06-13 16:29 - 2015-06-13 16:29 - 00000209 _____ C:\Users\Horst\Desktop\Starbound.url
2015-06-13 16:29 - 2015-06-13 16:29 - 00000209 _____ C:\Users\Horst\Desktop\Starbound - Unstable.url
2015-06-13 15:52 - 2015-06-13 15:58 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Nidhogg
2015-06-13 15:50 - 2015-06-13 15:50 - 00000208 _____ C:\Users\Horst\Desktop\Nidhogg.url
2015-06-13 14:25 - 2015-07-04 07:32 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Notepad++
2015-06-13 14:25 - 2015-06-13 14:25 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-06-13 14:25 - 2015-06-13 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-06-13 14:25 - 2015-06-13 14:25 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-06-13 14:24 - 2015-07-02 23:37 - 00001764 _____ C:\Users\Horst\Desktop\Neues Textdokument.txt
2015-06-13 00:05 - 2015-06-13 00:05 - 00000206 _____ C:\Users\Horst\Desktop\Counter-Strike Global Offensive.url
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-13 20:29 - 2009-07-14 19:58 - 00700146 _____ C:\Windows\system32\perfh007.dat
2015-07-13 20:29 - 2009-07-14 19:58 - 00149784 _____ C:\Windows\system32\perfc007.dat
2015-07-13 20:29 - 2009-07-14 07:13 - 01622778 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-13 20:28 - 2014-02-15 23:31 - 01902908 _____ C:\Windows\WindowsUpdate.log
2015-07-13 20:23 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-13 20:22 - 2015-06-12 22:54 - 00000000 ____D C:\Users\Horst\AppData\Roaming\TS3Client
2015-07-13 20:22 - 2015-06-12 03:37 - 04959394 _____ C:\Windows\{00000005-00000000-00000000-00001102-00000004-20021102}.CDF
2015-07-13 20:22 - 2009-07-14 06:45 - 00023600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-13 20:22 - 2009-07-14 06:45 - 00023600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-13 20:19 - 2015-06-12 03:17 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-13 20:19 - 2015-06-12 03:17 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-13 19:32 - 2015-06-12 23:52 - 00000000 ____D C:\Users\Horst\AppData\Local\Adobe
2015-07-13 19:32 - 2014-02-16 02:03 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Adobe
2015-07-13 17:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-07-13 15:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-07-12 18:22 - 2015-06-12 23:03 - 00000000 ____D C:\Users\Horst\Documents\The Witcher 3
2015-07-08 02:49 - 2015-06-12 03:17 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-08 02:49 - 2015-06-12 03:17 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-08 02:26 - 2015-06-12 23:04 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-08 01:55 - 2015-06-12 23:50 - 00001080 _____ C:\Windows\system32\settingsbkup.sfm
2015-07-08 01:55 - 2015-06-12 23:50 - 00001080 _____ C:\Windows\system32\settings.sfm
2015-07-08 01:45 - 2014-02-16 02:47 - 01647518 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-07-08 01:45 - 2014-02-15 23:31 - 00000000 ____D C:\Users\Horst
2015-07-07 07:02 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-07-05 12:08 - 2014-02-16 00:17 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-02 21:35 - 2014-02-16 00:09 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-02 21:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-06-30 14:58 - 2014-02-16 01:35 - 00109728 _____ C:\Users\Horst\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-30 14:58 - 2009-07-14 06:45 - 00407264 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-28 22:37 - 2015-06-12 23:05 - 00000000 ____D C:\Users\Horst\AppData\Roaming\NVIDIA
2015-06-27 15:15 - 2014-02-15 23:26 - 00000000 ____D C:\Windows\Panther
2015-06-27 15:06 - 2014-02-16 02:03 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-27 15:06 - 2014-02-16 02:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-27 01:04 - 2015-06-12 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-24 13:36 - 2015-06-12 03:31 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-06-24 13:36 - 2015-06-12 03:31 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-06-24 13:36 - 2014-02-16 03:21 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-06-24 13:36 - 2014-02-16 03:21 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-06-23 01:06 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2015-06-22 23:27 - 2015-06-12 03:35 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-22 23:25 - 2015-06-12 03:30 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-21 17:59 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-21 17:54 - 2009-07-14 20:18 - 00000000 ____D C:\Windows\ShellNew
2015-06-21 17:54 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-21 17:54 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-06-17 11:10 - 2015-06-12 03:34 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-06-17 11:10 - 2015-06-12 03:34 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-06-17 08:48 - 2015-06-12 03:34 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-06-17 08:48 - 2015-06-12 03:34 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-06-15 18:58 - 2014-02-16 03:11 - 00000000 ____D C:\ProgramData\Razer
2015-06-15 18:57 - 2014-02-16 03:12 - 00000000 ____D C:\Program Files (x86)\Razer
2015-06-15 18:56 - 2014-02-16 03:09 - 00000000 ____D C:\Users\Horst\AppData\Local\Razer
2015-06-15 18:55 - 2014-02-16 03:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-06-14 22:32 - 2014-02-16 01:28 - 00000000 ____D C:\Users\Horst\AppData\Roaming\DAEMON Tools Lite
2015-06-14 03:17 - 2014-02-16 04:07 - 00000000 ____D C:\ProgramData\Acronis
2015-06-13 04:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
==================== Files in the root of some directories =======
2014-02-16 03:11 - 2014-02-16 03:11 - 0007844 _____ () C:\Users\Horst\AppData\Local\CleanupUninstall.txt
2015-07-04 10:29 - 2015-07-08 03:26 - 0007600 _____ () C:\Users\Horst\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
C:\Users\Horst\AppData\Local\Temp\PidGenX.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-13 15:20
==================== End of log ============================
|
|
13.07.2015, 19:58
| #2 |
| /// the machine /// TB-Ausbilder    |  Sporadische Verbindungsabbrüche hi,
__________________Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers Downloade dir bitte Farbar's MiniToolBox auf deinen Desktop und starte das Tool Setze einen Haken bei folgenden Einträgen
__________________ |
|
13.07.2015, 20:43
| #3 |
| | Sporadische VerbindungsabbrücheCode:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.09.1.1004
www.malwarebytes.org
Database version:
main: v2015.07.13.04
rootkit: v2015.07.10.01
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17843
Horst :: HORST-PC [administrator]
13.07.2015 21:31:08
mbar-log-2015-07-13 (21-31-08).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 367310
Time elapsed: 4 minute(s), 56 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter MiniToolBox by Farbar Version: 01-07-2015
Ran by Horst (administrator) on 13-07-2015 at 21:39:18
Running from "C:\Users\Horst\Desktop"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
127.0.0.1 localhost
========================= IP Configuration: ================================
Gigabit PCI Express Network Adapter = LAN-Verbindung (Connected)
# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
popd
# Ende der IPv4-Konfiguration
Windows-IP-Konfiguration
Hostname . . . . . . . . . . . . : Horst-PC
Prim�res DNS-Suffix . . . . . . . :
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein
Ethernet-Adapter LAN-Verbindung:
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Gigabit PCI Express Network Adapter
Physikalische Adresse . . . . . . : A0-F3-C1-00-01-2D
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::ec9e:bd20:3227:2011%14(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.0.100(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Montag, 13. Juli 2015 21:37:08
Lease l�uft ab. . . . . . . . . . : Freitag, 20. August 2151 04:07:42
Standardgateway . . . . . . . . . : 192.168.0.1
DHCP-Server . . . . . . . . . . . : 192.168.0.1
DHCPv6-IAID . . . . . . . . . . . : 295760833
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-1A-91-94-05-40-61-86-29-83-29
DNS-Server . . . . . . . . . . . : 192.168.0.1
NetBIOS �ber TCP/IP . . . . . . . : Aktiviert
Tunneladapter isatap.{1A85F204-BA82-407C-B68A-9BB8709F7178}:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter LAN-Verbindung*:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Server: UnKnown
Address: 192.168.0.1
Name: google.com
Addresses: 2a00:1450:4008:800::1001
216.58.213.14
Ping wird ausgef�hrt f�r google.com [216.58.213.14] mit 32 Bytes Daten:
Antwort von 216.58.213.14: Bytes=32 Zeit=20ms TTL=55
Antwort von 216.58.213.14: Bytes=32 Zeit=17ms TTL=55
Ping-Statistik f�r 216.58.213.14:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 17ms, Maximum = 20ms, Mittelwert = 18ms
Server: UnKnown
Address: 192.168.0.1
Name: yahoo.com
Addresses: 2001:4998:58:c02::a9
2001:4998:c:a06::2:4008
2001:4998:44:204::a7
206.190.36.45
98.138.253.109
98.139.183.24
Ping wird ausgef�hrt f�r yahoo.com [98.138.253.109] mit 32 Bytes Daten:
Antwort von 98.138.253.109: Bytes=32 Zeit=175ms TTL=44
Antwort von 98.138.253.109: Bytes=32 Zeit=174ms TTL=44
Ping-Statistik f�r 98.138.253.109:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 174ms, Maximum = 175ms, Mittelwert = 174ms
Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Ping-Statistik f�r 127.0.0.1:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
14...a0 f3 c1 00 01 2d ......Gigabit PCI Express Network Adapter
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.100 20
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.0.0 255.255.255.0 Auf Verbindung 192.168.0.100 276
192.168.0.100 255.255.255.255 Auf Verbindung 192.168.0.100 276
192.168.0.255 255.255.255.255 Auf Verbindung 192.168.0.100 276
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.0.100 276
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.0.100 276
===========================================================================
St�ndige Routen:
Keine
IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
1 306 ::1/128 Auf Verbindung
14 276 fe80::/64 Auf Verbindung
14 276 fe80::ec9e:bd20:3227:2011/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
14 276 ff00::/8 Auf Verbindung
===========================================================================
St�ndige Routen:
Keine
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.2.1.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: libqt4_plugin.dll, Version: 2.2.1.0, Zeitstempel: 0xa2d0a2c0
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000076310b
ID des fehlerhaften Prozesses: 0xbac
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3
Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 12.8.0.1016, Zeitstempel: 0x51fb0c50
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02fc4211
ID des fehlerhaften Prozesses: 0x394
Startzeit der fehlerhaften Anwendung: 0xIAStorDataMgrSvc.exe0
Pfad der fehlerhaften Anwendung: IAStorDataMgrSvc.exe1
Pfad des fehlerhaften Moduls: IAStorDataMgrSvc.exe2
Berichtskennung: IAStorDataMgrSvc.exe3
Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bei System.Threading.ThreadPoolWorkQueue.Dispatch()
bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled
Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x3d40
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
System errors:
=============
Error: (07/13/2015 08:24:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/13/2015 02:52:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/12/2015 06:21:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/11/2015 05:49:10 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/11/2015 01:16:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/10/2015 01:30:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/09/2015 01:30:13 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/08/2015 02:50:25 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/08/2015 02:34:19 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/08/2015 02:01:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Microsoft Office Sessions:
=========================
Error: (07/09/2015 01:38:04 PM) (Source: Application Error)(User: )
Description: vlc.exe2.2.1.000000000libqt4_plugin.dll2.2.1.0a2d0a2c040000015000000000076310bbac01d0ba3ba46a77a4F:\Tools\VideoLAN\VLC\vlc.exeF:\Tools\VideoLAN\VLC\plugins\gui\libqt4_plugin.dllf55dbd8f-262e-11e5-9d35-a0f3c100012d
Error: (07/08/2015 01:46:06 AM) (Source: Application Error)(User: )
Description: IAStorDataMgrSvc.exe12.8.0.101651fb0c50unknown0.0.0.000000000c000000502fc421139401d0b90efba14430C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown550d3e1c-2502-11e5-b155-a0f3c100012d
Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime)(User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bei System.Threading.ThreadPoolWorkQueue.Dispatch()
bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller)(User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (07/07/2015 06:41:14 AM) (Source: Application Error)(User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa13d4001d0b85aa96a2b87C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll655b941a-2462-11e5-a8e7-a0f3c100012d
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
CodeIntegrity Errors:
===================================
Date: 2015-07-07 07:02:02.715
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-07 07:02:02.690
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
=========================== Installed Programs ============================
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}) (Version: 17.0.6614 - Acronis) Hidden
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duck Game (HKLM-x32\...\Steam App 312530) (Version: - Landon Podbielski)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
EXPERTool v9.12 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 9.12.0.0 - Gainward Co. Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version: - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{802039D1-1720-41CA-A332-2C24F3B3872B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BDE4C713-3D51-4C0F-9160-BB1DB8710B71}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{1A568352-73BD-442A-B6ED-638E45338957}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{E2570A68-F00A-4712-8EB6-631F7A45A2B1}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Sound Blaster Audigy 2 ZS (HKLM-x32\...\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Starbound - Unstable (HKLM-x32\...\Steam App 367540) (Version: - )
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windward (HKLM-x32\...\Steam App 326410) (Version: - Tasharen Entertainment Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
========================= Memory info: ===================================
Percentage of memory in use: 30%
Total physical RAM: 8111.1 MB
Available physical RAM: 5651.4 MB
Total Virtual: 16220.41 MB
Available Virtual: 13230.07 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:59.53 GB) (Free:11.76 GB) NTFS
4 Drive f: () (Fixed) (Total:465.75 GB) (Free:210.27 GB) NTFS
5 Drive g: () (Fixed) (Total:465.75 GB) (Free:145.49 GB) NTFS
========================= Users: ========================================
Benutzerkonten fr \\HORST-PC
Administrator Gast Horst
Der Befehl wurde erfolgreich ausgefhrt.
========================= Minidump Files ==================================
No minidump file found
**** End of log ****
|
|
14.07.2015, 10:02
| #4 |
| /// the machine /// TB-Ausbilder | Sporadische Verbindungsabbrüche Mach bitte mal ein Minitoolbox-Logfile, wenn das Problem da ist, ohne es zu beheben.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.07.2015, 15:05
| #5 |
| | Sporadische Verbindungsabbrüche Sorry war ne Zeit nicht Online. Ich wollte gerade ne Runde zocken (online) und keine 5min In-Game. Ist das Netzwerk wieder ausgefallen. Ich habe noch mal ein Logfile gemacht bevor ich das Problem wieder bereinigt habe: Code:
ATTFilter MiniToolBox by Farbar Version: 01-07-2015
Ran by Horst (administrator) on 17-07-2015 at 15:56:51
Running from "C:\Users\Horst\Desktop"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
127.0.0.1 localhost
========================= IP Configuration: ================================
Gigabit PCI Express Network Adapter = LAN-Verbindung (Connected)
# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
popd
# Ende der IPv4-Konfiguration
Windows-IP-Konfiguration
Hostname . . . . . . . . . . . . : Horst-PC
Prim�res DNS-Suffix . . . . . . . :
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein
Ethernet-Adapter LAN-Verbindung:
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Gigabit PCI Express Network Adapter
Physikalische Adresse . . . . . . : A0-F3-C1-00-01-2D
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::ec9e:bd20:3227:2011%14(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.0.100(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Freitag, 17. Juli 2015 15:09:56
Lease l�uft ab. . . . . . . . . . : Montag, 23. August 2151 22:25:14
Standardgateway . . . . . . . . . : 192.168.0.1
DHCP-Server . . . . . . . . . . . : 192.168.0.1
DHCPv6-IAID . . . . . . . . . . . : 295760833
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-1A-91-94-05-40-61-86-29-83-29
DNS-Server . . . . . . . . . . . : 192.168.0.1
NetBIOS �ber TCP/IP . . . . . . . : Aktiviert
Tunneladapter isatap.{1A85F204-BA82-407C-B68A-9BB8709F7178}:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter LAN-Verbindung*:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping-Anforderung konnte Host "google.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Ping-Anforderung konnte Host "yahoo.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.
Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Ping-Statistik f�r 127.0.0.1:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
14...a0 f3 c1 00 01 2d ......Gigabit PCI Express Network Adapter
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.100 20
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.0.0 255.255.255.0 Auf Verbindung 192.168.0.100 276
192.168.0.100 255.255.255.255 Auf Verbindung 192.168.0.100 276
192.168.0.255 255.255.255.255 Auf Verbindung 192.168.0.100 276
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.0.100 276
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.0.100 276
===========================================================================
St�ndige Routen:
Keine
IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
1 306 ::1/128 Auf Verbindung
14 276 fe80::/64 Auf Verbindung
14 276 fe80::ec9e:bd20:3227:2011/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
14 276 ff00::/8 Auf Verbindung
===========================================================================
St�ndige Routen:
Keine
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.2.1.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: libqt4_plugin.dll, Version: 2.2.1.0, Zeitstempel: 0xa2d0a2c0
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000076310b
ID des fehlerhaften Prozesses: 0xbac
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3
Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 12.8.0.1016, Zeitstempel: 0x51fb0c50
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02fc4211
ID des fehlerhaften Prozesses: 0x394
Startzeit der fehlerhaften Anwendung: 0xIAStorDataMgrSvc.exe0
Pfad der fehlerhaften Anwendung: IAStorDataMgrSvc.exe1
Pfad des fehlerhaften Moduls: IAStorDataMgrSvc.exe2
Berichtskennung: IAStorDataMgrSvc.exe3
Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bei System.Threading.ThreadPoolWorkQueue.Dispatch()
bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled
Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x3d40
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.
Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.
Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
System errors:
=============
Error: (07/17/2015 03:10:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/16/2015 07:01:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/15/2015 08:14:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/15/2015 03:40:40 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
Error: (07/15/2015 03:40:40 PM) (Source: DCOM) (User: )
Description: {1EF75F33-893B-4E8F-9655-C3D602BA4897}
Error: (07/15/2015 03:18:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/14/2015 09:26:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/14/2015 06:01:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/14/2015 04:17:22 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Error: (07/13/2015 08:24:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet:
%%2
Microsoft Office Sessions:
=========================
Error: (07/13/2015 07:05:53 PM) (Source: Office Software Protection Platform Service)(User: )
Description: 0xC004F050VHKC6??
Error: (07/09/2015 01:38:04 PM) (Source: Application Error)(User: )
Description: vlc.exe2.2.1.000000000libqt4_plugin.dll2.2.1.0a2d0a2c040000015000000000076310bbac01d0ba3ba46a77a4F:\Tools\VideoLAN\VLC\vlc.exeF:\Tools\VideoLAN\VLC\plugins\gui\libqt4_plugin.dllf55dbd8f-262e-11e5-9d35-a0f3c100012d
Error: (07/08/2015 01:46:06 AM) (Source: Application Error)(User: )
Description: IAStorDataMgrSvc.exe12.8.0.101651fb0c50unknown0.0.0.000000000c000000502fc421139401d0b90efba14430C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown550d3e1c-2502-11e5-b155-a0f3c100012d
Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime)(User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
bei System.Threading.ThreadPoolWorkQueue.Dispatch()
bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller)(User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (07/07/2015 06:41:14 AM) (Source: Application Error)(User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa13d4001d0b85aa96a2b87C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll655b941a-2462-11e5-a8e7-a0f3c100012d
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description:
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801)
Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog
Details:
Element nicht gefunden. (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
CodeIntegrity Errors:
===================================
Date: 2015-07-07 07:02:02.715
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2015-07-07 07:02:02.690
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
=========================== Installed Programs ============================
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}) (Version: 17.0.6614 - Acronis) Hidden
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version: - Hyper Hippo Games)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version: - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duck Game (HKLM-x32\...\Steam App 312530) (Version: - Landon Podbielski)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
EXPERTool v9.12 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 9.12.0.0 - Gainward Co. Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.28.1 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version: - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{802039D1-1720-41CA-A332-2C24F3B3872B}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BDE4C713-3D51-4C0F-9160-BB1DB8710B71}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{1A568352-73BD-442A-B6ED-638E45338957}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{E2570A68-F00A-4712-8EB6-631F7A45A2B1}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version: - Microsoft) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Sound Blaster Audigy 2 ZS (HKLM-x32\...\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Starbound - Unstable (HKLM-x32\...\Steam App 367540) (Version: - )
Starbound (HKLM-x32\...\Steam App 211820) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windward (HKLM-x32\...\Steam App 326410) (Version: - Tasharen Entertainment Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
========================= Memory info: ===================================
Percentage of memory in use: 28%
Total physical RAM: 8111.1 MB
Available physical RAM: 5837.78 MB
Total Virtual: 16220.41 MB
Available Virtual: 13619.79 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:59.53 GB) (Free:11.31 GB) NTFS
3 Drive f: () (Fixed) (Total:465.75 GB) (Free:210.25 GB) NTFS
4 Drive g: () (Fixed) (Total:465.75 GB) (Free:145.49 GB) NTFS
========================= Users: ========================================
Benutzerkonten fr \\HORST-PC
Administrator Gast Horst
Der Befehl wurde erfolgreich ausgefhrt.
========================= Minidump Files ==================================
No minidump file found
**** End of log ****
Im Anhang habe ich noch Mal ein Bild, wenn ich die "Windows-Diagnose" durchführe. Funktioniert es danach wieder. Ich habe nur an dem PC Probleme. An anderen PCs läuft das Internet ohne Einschränkungen, also definitiv keine Störung seitens meines Anbieters. Ich weiß echt nicht mehr weiter.  |
|
18.07.2015, 09:30
| #6 |
| /// the machine /// TB-Ausbilder | Sporadische Verbindungsabbrüche LAN Treiber schon erneuert? Das Gateway ist definitiv weg, aber eingetragen, also bezieht er Daten, kann aber nichts senden.
__________________ --> Sporadische Verbindungsabbrüche |
|
| Themen zu Sporadische Verbindungsabbrüche |
| adware, browser, combofix, cpu-z, downloader, einstellungen, firefox, flash player, helper, hijack, homepage, installation, internet explorer, kein internet, kein netzwerk, netzwerk, proxy, rundll, scan, security, services.exe, software, svchost.exe, tcp, udp, usb, windows |
Linear-Darstellung
