Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Sporadische Verbindungsabbrüche

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 13.07.2015, 19:51   #1
hehejo
 
Sporadische Verbindungsabbrüche - Ausrufezeichen

Sporadische Verbindungsabbrüche



Hallo,

seit ein paar Tagen verliere ich die Verbinung zum Internet. Laut Hotline liegt keine Störung vor.
Wenn die Nachricht unten links erscheint "kein Netzwerk bzw kein Internet" klicke ich auf Diagnose und Windows setzt meine Lan Einstellungen zurück (Standard-Gateway)
Ich selber ändere nichts an den Einstellungen, deswegen glaube ich, dass bei mir was "faul" ist.

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by Horst at 2015-07-13 20:29:50
Running from C:\Users\Horst\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1653188048-618373809-1772085243-500 - Administrator - Disabled)
Gast (S-1-5-21-1653188048-618373809-1772085243-501 - Limited - Disabled)
Horst (S-1-5-21-1653188048-618373809-1772085243-1001 - Administrator - Enabled) => C:\Users\Horst

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: Emsisoft Anti-Malware (Enabled - Out of date) {2F44E1F9-850B-1C7A-0E56-EB2E0A3E20C9}
AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Emsisoft Anti-Malware (Enabled - Out of date) {9425001D-A331-13F4-34E6-D05C71B96A74}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6614 - Acronis) Hidden
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version:  - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duck Game (HKLM-x32\...\Steam App 312530) (Version:  - Landon Podbielski)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
EXPERTool v9.12 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 9.12.0.0 - Gainward Co. Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Sound Blaster Audigy 2 ZS (HKLM-x32\...\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Starbound - Unstable (HKLM-x32\...\Steam App 367540) (Version:  - )
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windward (HKLM-x32\...\Steam App 326410) (Version:  - Tasharen Entertainment Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-07-07 07:02 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {2F9B3C14-EF9B-4912-8770-3C9D6F46274A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd)
Task: {5BA993BE-279B-4AAF-9530-0CD1CA3273E3} - System32\Tasks\{15751267-EE47-4935-931A-4B852CAAC5B6} => pcalua.exe -a G:\ActivationATIH\ActivationAcronisTIH.exe -d G:\ActivationATIH
Task: {8DEF45A9-AFB6-4045-AA72-BA1793925BD9} - System32\Tasks\EXPERTool => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2015-05-29] (Gainward Co. Ltd.)
Task: {9E4987BF-CC21-43BE-95E4-ACC8DEBEF342} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-25] (Google Inc.)
Task: {D57D1EE3-3EAD-4523-8FEF-EF99AFE4F9B0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-25] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-21 19:55 - 2013-04-15 11:50 - 00198144 _____ () C:\Windows\System32\HP1006LM.DLL
2015-06-21 19:55 - 2013-04-15 11:50 - 00065024 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1006PP.dll
2015-02-05 01:24 - 2015-02-05 01:25 - 00187072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2015-06-12 03:34 - 2015-06-17 08:48 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-10-01 11:32 - 2013-10-01 11:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-04-15 22:13 - 2015-04-15 22:13 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2015-03-14 07:49 - 2015-03-14 07:49 - 00291840 _____ () C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
2015-06-12 03:31 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-05-20 04:29 - 2015-05-20 04:29 - 00137728 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-06-15 18:59 - 2014-11-26 03:12 - 40622592 _____ () C:\Users\Horst\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libcef.dll
2015-06-15 18:59 - 2014-11-26 03:12 - 00911360 _____ () C:\Users\Horst\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libglesv2.dll
2015-06-15 18:59 - 2014-11-26 03:12 - 00134144 _____ () C:\Users\Horst\AppData\Local\razer\InGameEngine\cache\RzStats.Manager\cef\libegl.dll
2014-12-11 13:14 - 2015-04-16 19:40 - 00776192 _____ () F:\Spiele\Steam\SDL2.dll
2014-12-31 22:36 - 2015-04-23 04:16 - 04962816 _____ () F:\Spiele\Steam\v8.dll
2014-12-31 22:36 - 2015-04-23 04:16 - 01556992 _____ () F:\Spiele\Steam\icui18n.dll
2014-12-31 22:36 - 2015-04-23 04:16 - 01187840 _____ () F:\Spiele\Steam\icuuc.dll
2014-12-11 13:14 - 2015-06-04 20:56 - 02407104 _____ () F:\Spiele\Steam\video.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 02396672 _____ () F:\Spiele\Steam\libavcodec-56.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00442880 _____ () F:\Spiele\Steam\libavutil-54.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00479744 _____ () F:\Spiele\Steam\libavformat-56.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00332800 _____ () F:\Spiele\Steam\libavresample-2.dll
2014-12-11 13:14 - 2014-12-01 23:31 - 00485888 _____ () F:\Spiele\Steam\libswscale-3.dll
2014-12-11 13:14 - 2015-06-04 20:56 - 00703168 _____ () F:\Spiele\Steam\bin\chromehtml.DLL
2014-12-11 13:14 - 2015-05-11 21:01 - 36302728 _____ () F:\Spiele\Steam\bin\libcef.dll
2015-04-23 18:40 - 2015-05-11 21:01 - 08958344 _____ () F:\Spiele\Steam\bin\pdf.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-01 12:00 - 2013-10-01 12:00 - 00022336 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy_stub.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1653188048-618373809-1772085243-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Horst\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AcrSch2Svc => 2
MSCONFIG\Services: afcdpsrv => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: syncagentsrv => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: Acronis Scheduler2 Service => "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BCSSync => "F:\Tools\Microsoft Office Professional Plus 2010\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TrueImageMonitor.exe => "C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "F:\Tools\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{575E0739-9799-481E-8AC2-46119D61DC8B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A8EE40A2-E9FB-43AF-B3F6-F59D4FB6B7C4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A1EC546E-46E4-4F2E-96D9-0D743D10BF28}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{014E806F-BA65-4370-A3B9-1A21C6E8BDF2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F14C7B62-E908-4C99-A36C-5311E4D7EAD6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C7331939-32E8-4CF0-9A3A-26E8FDF540E8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{61A58B63-BC35-4EF0-AA1C-EA9DDB95F2F1}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{D126DD95-8C38-4588-B69C-B3E62C507928}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{5DF9EFF8-7130-4C4C-B4E8-0D93A76ABFEC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EB831D08-4FE1-49F4-A515-215346BC93F2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E8FA76E8-6F69-4BD9-A75D-99634AD73B1E}] => (Allow) F:\Spiele\Steam\Steam.exe
FirewallRules: [{1C79C52B-6E36-4E3C-A826-61E17B389BB5}] => (Allow) F:\Spiele\Steam\Steam.exe
FirewallRules: [{8CFF3DE9-863C-4103-ACBD-07821ABF6C01}] => (Allow) F:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{2737C6AC-11D2-4F73-9EA0-A51B96005439}] => (Allow) F:\Spiele\Steam\bin\steamwebhelper.exe
FirewallRules: [{1A8EE20F-5A2B-4BF4-9A61-08B6E5DD264B}] => (Allow) F:\Spiele\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{04683E10-07FF-4BEE-A7F2-837F11D0F3FA}] => (Allow) F:\Spiele\Steam\steamapps\common\AdVenture Capitalist\adventure-capitalist.exe
FirewallRules: [{D6F1ADC6-FBA2-4FEE-91F7-173B13A6904B}] => (Allow) F:\Spiele\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{BDD30AA2-E4DA-44E4-BC53-11CDD5C8B4C8}] => (Allow) F:\Spiele\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{CA086281-F4FA-417E-8F98-AAEF13245FFB}] => (Allow) F:\Spiele\Steam\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{8D81CFE3-7528-4AB7-BAFD-4E19731FD48F}] => (Allow) F:\Spiele\Steam\steamapps\common\Nidhogg\Nidhogg.exe
FirewallRules: [{74D90B25-DB4F-45D4-B0C6-DAA1F8FB1E1A}] => (Allow) F:\Spiele\Steam\steamapps\common\Starbound - Unstable\win32\launcher\launcher.exe
FirewallRules: [{EA0B0C43-D6D5-42D4-A484-42B997B988CF}] => (Allow) F:\Spiele\Steam\steamapps\common\Starbound - Unstable\win32\launcher\launcher.exe
FirewallRules: [{69164798-6E65-4D5D-B42B-2D1D02D0F200}] => (Allow) F:\Spiele\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{09486F3D-6926-4529-B22B-73E0159A935D}] => (Allow) F:\Spiele\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{7062D5F2-8A9D-433A-97EE-6C18D4CBE6E5}] => (Allow) F:\Spiele\Steam\steamapps\common\Windward\Windward.exe
FirewallRules: [{17EB27CC-B6A2-4E5E-B259-92B8FD59884B}] => (Allow) F:\Spiele\Steam\steamapps\common\Windward\Windward.exe
FirewallRules: [{44B5C564-160A-4663-9477-053D7718F0AA}] => (Allow) F:\Spiele\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{228AD067-E954-4F93-BC0F-B2C01F36ADAC}] => (Allow) F:\Spiele\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [TCP Query User{5DB2935B-3BDB-4AFA-9DA0-5545AC28F346}F:\spiele\steam\steamapps\common\arma 3\arma3.exe] => (Allow) F:\spiele\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [UDP Query User{19D531E1-96DB-45A0-A928-FD74442C08F4}F:\spiele\steam\steamapps\common\arma 3\arma3.exe] => (Allow) F:\spiele\steam\steamapps\common\arma 3\arma3.exe
FirewallRules: [{32DBCCFD-AEA6-48F7-B70C-3861E2CF9B74}] => (Allow) F:\Spiele\Battle.net\Battle.net.exe
FirewallRules: [{9B7B74E8-33C9-42B3-A8AD-B69957F4FC59}] => (Allow) F:\Spiele\Battle.net\Battle.net.exe
FirewallRules: [{0220DB87-6EB6-4CB9-A33E-92D106312487}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVE.EXE
FirewallRules: [{65808DAA-03A7-432E-A382-C7677A911BDE}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVE.EXE
FirewallRules: [{9BB4A455-4E4D-4B41-929E-B156F0776FB2}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\ONENOTE.EXE
FirewallRules: [{DB1EE7B7-092F-43E4-BAD0-8ADCD85308F8}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\ONENOTE.EXE
FirewallRules: [{CE4A63C2-E21C-447F-BF28-37E99A1DE7C8}] => (Allow) F:\Tools\Microsoft Office Professional Plus 2010\Office14\outlook.exe
FirewallRules: [{62F21D46-37D0-44C0-B2E8-EB2E1DDB25F9}] => (Allow) F:\Spiele\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{7648C453-E3A7-4E2A-B71C-7FDF135E1F1C}] => (Allow) F:\Spiele\Steam\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe
FirewallRules: [{1F3B4260-015F-4887-A9BD-A0D582D07D83}] => (Allow) F:\Spiele\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{EE940E4E-20AF-4D92-A226-92162C90DBDD}] => (Allow) F:\Spiele\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{AF3916C9-FC45-4498-B435-7D35082E849D}] => (Allow) F:\Tools\TeamViewer\TeamViewer.exe
FirewallRules: [{5E1C9765-0461-428E-8302-EBADD94B30DB}] => (Allow) F:\Tools\TeamViewer\TeamViewer.exe
FirewallRules: [{419A3869-C896-4AD4-8B13-C9868688D69E}] => (Allow) F:\Tools\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{608FAD05-8B20-4C90-8015-2A3564D769C3}] => (Allow) F:\Tools\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E89D2129-FDEC-47E1-A69F-3D34864251E6}] => (Allow) F:\Spiele\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{21797A55-B76C-48F1-BCE5-44F81F5CB009}] => (Allow) F:\Spiele\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{D60BC6F7-51CB-4F88-9D66-EC879A55DD9F}] => (Allow) F:\Spiele\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{28329B58-1C87-417A-8146-5235A582A518}] => (Allow) F:\Spiele\Steam\steamapps\common\The Escapists\TheEscapists.exe
FirewallRules: [{41F2B270-02C8-42F1-AF28-F8A2B0B76D2A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D56F4FFC-6B76-4924-9E8F-7A7E0C17B2C8}] => (Allow) F:\Spiele\Steam\steamapps\common\The Book of Unwritten Tales 2\Windows\BouT2.exe
FirewallRules: [{DAEEE553-F427-4D84-AE34-A03194D8F261}] => (Allow) F:\Spiele\Steam\steamapps\common\The Book of Unwritten Tales 2\Windows\BouT2.exe
FirewallRules: [{2E97A885-2ED7-4BF7-A325-B4E88B76A76A}] => (Allow) F:\Spiele\Steam\steamapps\common\Duck Game\DuckGame.exe
FirewallRules: [{A99AF79C-857C-45B6-BF19-AA17CC68C37E}] => (Allow) F:\Spiele\Steam\steamapps\common\Duck Game\DuckGame.exe

==================== Faulty Device Manager Devices =============

Name: Creative Game Port
Description: Creative Game Port
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Creative
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/13/2015 07:05:53 PM) (Source: Office Software Protection Platform Service) (EventID: 1017) (User: )
Description: Installation of the Proof of Purchase failed. 0xC004F050
Partial Pkey=VHKC6
ACID=?
Detailed Error[?]

Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.2.1.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: libqt4_plugin.dll, Version: 2.2.1.0, Zeitstempel: 0xa2d0a2c0
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000076310b
ID des fehlerhaften Prozesses: 0xbac
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 12.8.0.1016, Zeitstempel: 0x51fb0c50
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02fc4211
ID des fehlerhaften Prozesses: 0x394
Startzeit der fehlerhaften Anwendung: 0xIAStorDataMgrSvc.exe0
Pfad der fehlerhaften Anwendung: IAStorDataMgrSvc.exe1
Pfad des fehlerhaften Moduls: IAStorDataMgrSvc.exe2
Berichtskennung: IAStorDataMgrSvc.exe3

Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (EventID: 1013) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled

Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x3d40
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)


System errors:
=============
Error: (07/13/2015 08:24:00 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/13/2015 02:52:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/12/2015 06:21:16 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/11/2015 05:49:10 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/11/2015 01:16:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/10/2015 01:30:55 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/09/2015 01:30:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/08/2015 02:50:25 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/08/2015 02:34:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/08/2015 02:01:14 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2


Microsoft Office:
=========================
Error: (07/13/2015 07:05:53 PM) (Source: Office Software Protection Platform Service) (EventID: 1017) (User: )
Description: 0xC004F050VHKC6??

Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: vlc.exe2.2.1.000000000libqt4_plugin.dll2.2.1.0a2d0a2c040000015000000000076310bbac01d0ba3ba46a77a4F:\Tools\VideoLAN\VLC\vlc.exeF:\Tools\VideoLAN\VLC\plugins\gui\libqt4_plugin.dllf55dbd8f-262e-11e5-9d35-a0f3c100012d

Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: IAStorDataMgrSvc.exe12.8.0.101651fb0c50unknown0.0.0.000000000c000000502fc421139401d0b90efba14430C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown550d3e1c-2502-11e5-b155-a0f3c100012d

Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (EventID: 1013) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa13d4001d0b85aa96a2b87C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll655b941a-2462-11e5-a8e7-a0f3c100012d

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: 
Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer


CodeIntegrity Errors:
===================================
  Date: 2015-07-07 07:02:02.715
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-07-07 07:02:02.690
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Percentage of memory in use: 29%
Total physical RAM: 8111.1 MB
Available physical RAM: 5701.71 MB
Total Virtual: 16220.41 MB
Available Virtual: 13549.23 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:59.53 GB) (Free:11.82 GB) NTFS
Drive f: () (Fixed) (Total:465.75 GB) (Free:210.27 GB) NTFS
Drive g: () (Fixed) (Total:465.75 GB) (Free:145.49 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0EF270DC)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: B4F32661)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=59.5 GB) - (Type=07 NTFS)

==================== End of log ============================
         
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-07-2015
Ran by Horst (administrator) on HORST-PC on 13-07-2015 20:29:32
Running from C:\Users\Horst\Desktop
Loaded Profiles: Horst (Available Profiles: Horst)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Emsisoft Ltd) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Gainward Co. Ltd.) C:\Program Files (x86)\EXPERTool\TBPanel.exe
(Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\ProgramData\Razer\Synapse\RzStats\RzStats.Manager.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\InGameEngine\32bit\RazerIngameEngine.exe
(Razer, Inc.) C:\Users\Horst\AppData\Local\Razer\InGameEngine\cache\RzStats.Manager\RzCefRenderProcess.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Valve Corporation) F:\Spiele\Steam\Steam.exe
(Valve Corporation) F:\Spiele\Steam\bin\steamwebhelper.exe
(Valve Corporation) F:\Spiele\Steam\bin\steamwebhelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AsioReg] => REGSVR32.EXE /S CTASIO.DLL
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => CTHELPER.EXE
HKLM-x32\...\Run: [CTxfiHlp] => CTXFIHLP.EXE
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [590144 2015-06-18] (Razer Inc.)
HKU\S-1-5-21-1653188048-618373809-1772085243-1001\...\Run: [TBPanel] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2195416 2015-05-29] (Gainward Co. Ltd.)
HKU\S-1-5-18\...\Run: [DevconDefaultDB] => C:\Windows\system32\READREG /SILENT /FAIL=1
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1653188048-618373809-1772085243-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1653188048-618373809-1772085243-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> F:\Tools\Microsoft Office Professional Plus 2010\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-07-07] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-07] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{1A85F204-BA82-407C-B68A-9BB8709F7178}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{7B6E52DF-D79F-4119-8DA8-4BF3163E8EE4}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default
FF SearchEngineOrder.1: SuchMaschine
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll [2015-06-27] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> F:\Tools\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> F:\Tools\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll [2015-06-27] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-07] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-25] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\searchplugins\search_engine.xml [2014-03-17]
FF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\donottrackplus@abine.com [2015-06-12]
FF Extension: Image Picker - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\ImagePicker@topolog.org [2015-06-13]
FF Extension: LavaFox V2 - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\info@djzig.com [2015-07-11]
FF Extension: exfm - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\jid0-IsXX48jx4obwoZPnzG6RQB0pK9A@jetpack [2015-06-12]
FF Extension: YouTube Unblocker - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\youtubeunblocker__web@unblocker.yt [2015-06-12]
FF Extension: FT DeepDark - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-06-27]
FF Extension: WOT - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-07-11]
FF Extension: HP Detect - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2} [2015-06-12]
FF Extension: DriverAgent Plugin for Firefox and Opera - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5} [2015-06-12]
FF Extension: Classic Theme Restorer (Customize UI) - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2015-06-12]
FF Extension: MEGA - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\firefox@mega.co.nz.xpi [2015-06-12]
FF Extension: ProxTube - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\ich@maltegoetz.de.xpi [2015-06-12]
FF Extension: Magic Actions for YouTube™ - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi [2015-06-12]
FF Extension: YouTube™ Flash® Player - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\jid1-HAV2inXAnQPIeA@jetpack.xpi [2015-06-12]
FF Extension: Deutsch (DE) Language Pack - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2015-06-12]
FF Extension: NASA Night Launch - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\nasanightlaunch@example.com.xpi [2015-06-12]
FF Extension: Noia Fox options - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\NoiaFoxoption@davidvincent.tld.xpi [2015-06-12]
FF Extension: Toggle Persona - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\togglepersona@davidvincent.tld.xpi [2015-06-12]
FF Extension: ProxTube - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{2541D29A-DB9E-4c1e-949A-31EFB4AEF4E7}.xpi [2015-06-12]
FF Extension: Stylish - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi [2015-06-12]
FF Extension: Bulk Image Downloader - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2015-06-12]
FF Extension: ImageGrabber - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{546d2a00-2bbf-11dc-8314-0800200c9a66}.xpi [2015-06-12]
FF Extension: Save Image in Folder - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{5e594888-3e8e-47da-b2c6-b0b545112f84}.xpi [2015-06-12]
FF Extension: NoScript - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-06-12]
FF Extension: Noia Fox - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{7b90e860-5d61-11e0-80e3-0800200c9a66}.xpi [2015-06-12]
FF Extension: Downloads Window - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{a7213cf2-fa1e-4373-88ff-255d0abd3020}.xpi [2015-06-12]
FF Extension: Shine Bright Skin Aero - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{c7b3cf78-9cbc-47b9-ba47-bb84a56069dd}.xpi [2015-06-12]
FF Extension: Show my Password - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{cd617372-6743-4ee4-bac4-fbf60f35719e}.xpi [2015-06-12]
FF Extension: Adblock Plus - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-12]
FF Extension: Greasemonkey - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-06-12]
FF Extension: Metal Lion Australis Graphite - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{F6D83238-A31E-451d-8BCB-28F6BAFECF10}.xpi [2015-06-12]
FF Extension: Metal Lion Australis Scrollbars II - C:\Users\Horst\AppData\Roaming\Mozilla\Firefox\Profiles\jqovmnkw.default\Extensions\{FDBAD97E-A258-4fe3-9CF6-60CF386C4422}.xpi [2015-06-12]

Chrome: 
=======
CHR Profile: C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-25]
CHR Extension: (Google Docs) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-25]
CHR Extension: (Google Drive) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-25]
CHR Extension: (YouTube) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-25]
CHR Extension: (Google Search) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-25]
CHR Extension: (Google Sheets) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-25]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-25]
CHR Extension: (Google Wallet) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-25]
CHR Extension: (Gmail) - C:\Users\Horst\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-25]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [5155576 2015-05-26] (Emsisoft Ltd)
S4 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1060352 2015-06-20] ()
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [429056 2013-10-28] (Creative Technology Ltd) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
S2 MBAMService; F:\Tools\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S3 Microsoft SharePoint Workspace Audit Service; F:\Tools\Microsoft Office Professional Plus 2010\Office14\GROOVE.EXE [50942144 2013-12-19] (Microsoft Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-24] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007376 2015-06-24] (NVIDIA Corporation)
S3 OpcEnum; C:\Windows\SysWOW64\OPCEnum.exe [86016 2003-03-05] (OPC Foundation) [File not signed]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
S4 TeamViewer; F:\Tools\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 COMMONFX.DLL; C:\Windows\System32\COMMONFX.DLL [151296 2007-04-12] (Creative Technology Ltd)
S3 CT20XUT.DLL; C:\Windows\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
R3 CTAUDFX.DLL; C:\Windows\System32\CTAUDFX.DLL [700200 2007-04-10] (Creative Technology Ltd)
S3 CTEAPSFX.DLL; C:\Windows\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\Windows\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\Windows\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\Windows\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTERFXFX.DLL; C:\Windows\System32\CTERFXFX.DLL [142120 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\Windows\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\Windows\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
R3 CTSBLFX.DLL; C:\Windows\System32\CTSBLFX.DLL [681256 2007-04-10] (Creative Technology Ltd)
R1 epp64; C:\Windows\System32\DRIVERS\epp64.sys [135800 2015-03-24] (Emsisoft GmbH)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-08-07] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
R3 rzdaendpt; C:\Windows\System32\DRIVERS\rzdaendpt.sys [33448 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-03-03] (Razer, Inc.)
R3 rzvkeyboard; C:\Windows\System32\DRIVERS\rzvkeyboard.sys [31912 2014-12-30] (Razer Inc)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-16] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-16] (Acronis International GmbH)
R3 tpg64win7; C:\Windows\System32\DRIVERS\tpg64win7.sys [648808 2012-02-22] (TP-LINK TECHNOLOGIES CO., LTD)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-16] (Acronis International GmbH)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-13 20:29 - 2015-07-13 20:29 - 00021628 _____ C:\Users\Horst\Desktop\FRST.txt
2015-07-13 20:23 - 2015-07-13 20:23 - 00000056 _____ C:\Windows\setupact.log
2015-07-13 20:23 - 2015-07-13 20:23 - 00000000 _____ C:\Windows\setuperr.log
2015-07-13 20:22 - 2015-07-13 20:22 - 04959394 _____ C:\Windows\{00000005-00000000-00000000-00001102-00000004-20021102}.BAK
2015-07-12 19:06 - 2015-07-12 19:06 - 00000000 ____D C:\Users\Horst\Documents\DuckGame
2015-07-12 19:06 - 2015-07-12 19:06 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2015-07-12 19:05 - 2015-07-12 19:05 - 00000209 _____ C:\Users\Horst\Desktop\Duck Game.url
2015-07-08 02:54 - 2015-07-08 02:54 - 00015201 _____ C:\Users\Horst\Desktop\MemTest41.zip
2015-07-08 02:54 - 2015-07-08 02:54 - 00000000 ____D C:\Users\Horst\Desktop\MemTest41
2015-07-08 02:52 - 2015-07-08 02:52 - 00008334 _____ C:\Users\Horst\Desktop\hijackthis.log
2015-07-08 02:45 - 2015-07-08 02:45 - 00388608 _____ (Trend Micro Inc.) C:\Users\Horst\Desktop\HiJackThis204.exe
2015-07-08 02:41 - 2015-06-29 20:01 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-08 02:41 - 2015-06-29 19:59 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-08 02:41 - 2015-06-29 19:59 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-08 02:41 - 2015-06-29 19:50 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-08 02:41 - 2015-06-27 00:07 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-08 02:41 - 2015-06-27 00:06 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-08 02:41 - 2015-06-27 00:06 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-08 02:41 - 2015-06-27 00:06 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-08 02:41 - 2015-06-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-08 02:41 - 2015-06-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-08 02:41 - 2015-05-09 20:26 - 00493504 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-08 02:41 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-08 02:41 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-07-08 02:41 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-07-08 02:41 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-07-08 02:41 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-07-08 01:54 - 2015-07-08 01:54 - 00000000 ____D C:\Users\Horst\AppData\Roaming\STEITZ® IT-Solutions
2015-07-08 01:51 - 2015-07-08 01:51 - 00001751 _____ C:\Users\Public\Desktop\SSDlife Free.lnk
2015-07-08 01:51 - 2015-07-08 01:51 - 00000000 ____D C:\ProgramData\STEITZ® IT-Solutions
2015-07-08 01:51 - 2015-07-08 01:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SSDlife
2015-07-08 01:51 - 2015-07-08 01:51 - 00000000 ____D C:\ProgramData\Binarysense
2015-07-08 01:45 - 2015-07-08 02:26 - 00000000 ____D C:\Program Files\Intel
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ____D C:\Users\Horst\Intel
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Intel Corporation
2015-07-08 01:45 - 2015-07-08 01:45 - 00000000 ____D C:\ProgramData\Intel
2015-07-08 01:42 - 2015-07-08 01:42 - 00104368 _____ (Iapetus Software) C:\Windows\SysWOW64\DCOMPERM.DLL
2015-07-08 01:42 - 2015-07-08 01:42 - 00067440 _____ (Iapetus Software) C:\Windows\SysWOW64\DCP.EXE
2015-07-08 01:42 - 2003-03-05 16:41 - 00086016 _____ (OPC Foundation) C:\Windows\SysWOW64\OPCEnum.exe
2015-07-08 01:42 - 2003-03-05 16:41 - 00059392 _____ (OPC Foundation) C:\Windows\SysWOW64\opccomn_ps.dll
2015-07-08 01:42 - 2003-03-03 19:25 - 00155648 _____ (OPC Foundation) C:\Windows\SysWOW64\opcproxy.dll
2015-07-08 01:34 - 2015-07-08 01:34 - 00000781 _____ C:\Users\Horst\Desktop\CrystalDiskInfo.lnk
2015-07-08 01:34 - 2015-07-08 01:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2015-07-08 00:36 - 2015-07-08 00:36 - 00000591 _____ C:\Users\Horst\Desktop\HD Tune.lnk
2015-07-08 00:36 - 2015-07-08 00:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune
2015-07-07 10:28 - 2015-07-07 10:28 - 00000000 ____D C:\ProgramData\Emsisoft
2015-07-07 10:25 - 2015-07-13 20:23 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2015-07-07 10:25 - 2015-07-07 10:25 - 00001091 _____ C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-07-07 10:25 - 2015-07-07 10:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-07-07 10:25 - 2015-03-24 00:17 - 00135800 _____ (Emsisoft GmbH) C:\Windows\system32\Drivers\epp64.sys
2015-07-07 09:53 - 2015-07-07 09:53 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\Windows\Sun
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\ProgramData\Sun
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\ProgramData\Oracle
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-07 09:53 - 2015-07-07 09:53 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-07 07:03 - 2015-07-07 07:03 - 00023848 _____ C:\ComboFix.txt
2015-07-07 06:58 - 2015-07-07 07:03 - 00000000 ____D C:\Qoobox
2015-07-07 06:58 - 2015-07-07 07:02 - 00000000 ____D C:\Windows\erdnt
2015-07-07 06:58 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2015-07-07 06:58 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2015-07-07 06:58 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2015-07-07 06:58 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2015-07-07 06:57 - 2015-07-07 06:58 - 05632562 ____R (Swearware) C:\Users\Horst\Desktop\ComboFix.exe
2015-07-07 06:54 - 2015-07-07 06:54 - 00000000 ____D C:\AdwCleaner
2015-07-07 06:44 - 2015-07-07 09:21 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-07 06:44 - 2015-07-07 06:46 - 00000707 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-07-07 06:44 - 2015-07-07 06:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-07-07 06:44 - 2015-07-07 06:44 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-07 06:44 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-07 06:44 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-07 06:44 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-07 04:12 - 2015-07-07 04:12 - 00000207 _____ C:\Windows\tweaking.com-regbackup-HORST-PC-Windows-7-Ultimate-(64-bit).dat
2015-07-07 04:12 - 2015-07-07 04:12 - 00000000 ____D C:\RegBackup
2015-07-07 04:12 - 2015-07-04 10:53 - 02244096 _____ C:\Users\Horst\Desktop\AdwCleaner_4.207.exe
2015-07-07 02:56 - 2015-07-07 03:00 - 00000000 ____D C:\Users\Horst\Desktop\fb
2015-07-04 11:40 - 2015-05-09 01:38 - 00014664 _____ C:\Windows\system32\Drivers\nvflash.sys
2015-07-04 11:38 - 2015-07-04 11:41 - 00002996 _____ C:\Windows\System32\Tasks\EXPERTool
2015-07-04 11:38 - 2015-07-04 11:38 - 00001007 _____ C:\Users\Public\Desktop\EXPERTool.lnk
2015-07-04 11:38 - 2015-07-04 11:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EXPERTool
2015-07-04 11:38 - 2015-07-04 11:38 - 00000000 ____D C:\Program Files (x86)\EXPERTool
2015-07-04 11:32 - 2015-07-04 11:32 - 00000963 _____ C:\Users\Horst\Desktop\TechPowerUp GPU-Z.lnk
2015-07-04 11:32 - 2015-07-04 11:32 - 00000000 ____D C:\Program Files (x86)\GPU-Z
2015-07-04 11:23 - 2015-07-04 11:23 - 00001022 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2015-07-04 11:23 - 2015-07-04 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-07-04 11:23 - 2015-07-04 11:23 - 00000000 ____D C:\Program Files\CPUID
2015-07-04 11:09 - 2015-07-13 20:29 - 00000000 ____D C:\FRST
2015-07-04 11:07 - 2015-07-13 20:28 - 02133504 _____ (Farbar) C:\Users\Horst\Desktop\FRST64.exe
2015-07-04 10:53 - 2015-07-04 10:53 - 00448512 _____ (OldTimer Tools) C:\Users\Horst\Desktop\TFC.exe
2015-07-04 10:52 - 2015-07-04 10:52 - 02951062 _____ (Malwarebytes Corporation) C:\Users\Horst\Desktop\JRT.exe
2015-07-04 10:29 - 2015-07-08 03:26 - 00007600 _____ C:\Users\Horst\AppData\Local\Resmon.ResmonCfg
2015-07-04 08:11 - 2015-07-04 08:11 - 00000920 _____ C:\Users\Horst\Desktop\NVI_0_3_0_0_0_100_79_0.lnk
2015-07-02 23:41 - 2015-07-02 23:41 - 00000638 _____ C:\Users\Horst\Desktop\SpeedFan.lnk
2015-07-02 23:41 - 2015-07-02 23:41 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2015-07-02 23:41 - 2015-07-02 23:41 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-06-28 23:05 - 2015-06-28 23:05 - 00000654 _____ C:\Users\Public\Desktop\TeamViewer 10.lnk
2015-06-28 23:05 - 2015-06-28 23:05 - 00000654 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-06-27 15:26 - 2015-06-27 15:26 - 00002223 _____ C:\Users\Horst\Desktop\Creative-Audiokonsole.lnk
2015-06-27 15:14 - 2015-07-13 20:21 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-06-27 15:14 - 2015-07-13 20:21 - 00000000 ____D C:\Program Files\CCleaner
2015-06-27 15:14 - 2015-06-27 15:14 - 00002790 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-06-27 15:14 - 2015-06-27 15:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-06-27 01:33 - 2015-06-27 01:33 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-06-27 01:33 - 2015-06-27 01:33 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-06-27 01:33 - 2015-06-27 01:33 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-27 01:05 - 2015-07-13 19:33 - 00000000 ____D C:\ProgramData\Adobe
2015-06-25 00:19 - 2015-06-25 00:19 - 00000000 ____D C:\Users\Horst\AppData\Local\Google
2015-06-25 00:19 - 2015-06-25 00:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-06-25 00:18 - 2015-07-13 20:23 - 00000892 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-06-25 00:18 - 2015-07-13 19:23 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-06-25 00:18 - 2015-06-25 00:19 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-25 00:18 - 2015-06-25 00:18 - 00003892 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-06-25 00:18 - 2015-06-25 00:18 - 00003640 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-06-24 23:28 - 2015-07-02 21:20 - 00000000 ____D C:\Users\Horst\.mediathek3
2015-06-24 23:22 - 2015-06-24 23:23 - 00000000 ____D C:\ProgramData\Freemake
2015-06-24 23:22 - 2015-06-24 23:22 - 00000000 ____D C:\Users\Horst\Documents\Freemake
2015-06-23 01:57 - 2015-06-23 01:57 - 00000000 ____D C:\Users\Horst\Documents\WB Games
2015-06-23 01:18 - 2015-06-23 01:18 - 00000209 _____ C:\Users\Horst\Desktop\Batman Arkham Knight.url
2015-06-22 23:51 - 2015-06-22 23:56 - 00000000 ____D C:\Users\Horst\Documents\Windward
2015-06-22 23:25 - 2015-06-17 11:10 - 42729104 _____ C:\Windows\system32\nvcompiler.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 37748880 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 30481552 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 22947144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 16145200 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 15866992 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 14497520 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 13263056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 11831856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 11011216 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-22 23:25 - 2015-06-17 11:10 - 02997544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 02599752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01898128 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435330.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435330.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01099992 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01060168 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 01050768 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00975176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00938752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00408392 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00176904 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00155280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-06-22 23:25 - 2015-06-17 11:10 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-06-22 00:59 - 2015-06-22 00:59 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-06-22 00:58 - 2015-06-22 00:58 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-06-22 00:58 - 2015-06-22 00:58 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-06-21 19:55 - 2015-06-21 19:55 - 00000000 ____D C:\Program Files\HP
2015-06-21 19:55 - 2013-04-15 11:50 - 00654336 _____ C:\Windows\system32\HP1006SM.EXE
2015-06-21 19:55 - 2013-04-15 11:50 - 00198144 _____ C:\Windows\system32\HP1006LM.DLL
2015-06-21 18:27 - 2015-06-21 18:27 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-06-21 18:00 - 2015-06-21 18:00 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-21 17:55 - 2015-06-21 17:55 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Windows\PCHEALTH
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2015-06-21 17:54 - 2015-06-21 17:54 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2015-06-21 17:53 - 2015-06-21 17:53 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-21 17:53 - 2015-06-21 17:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2015-06-21 17:53 - 2015-06-21 17:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-06-21 17:52 - 2015-07-13 19:06 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-21 17:52 - 2015-06-21 17:52 - 00000000 ____D C:\Users\Horst\AppData\Local\Microsoft Help
2015-06-21 17:52 - 2015-06-21 17:52 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-20 04:58 - 2015-06-20 04:58 - 00000768 _____ C:\Users\Public\Desktop\Diablo III.lnk
2015-06-20 04:58 - 2015-06-20 04:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-06-20 04:52 - 2015-06-20 05:22 - 00000000 ____D C:\Users\Horst\AppData\Local\Battle.net
2015-06-20 04:52 - 2015-06-20 04:52 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Battle.net
2015-06-20 04:52 - 2015-06-20 04:52 - 00000000 ____D C:\Users\Horst\AppData\Local\Blizzard Entertainment
2015-06-20 04:51 - 2015-06-20 04:51 - 00000730 _____ C:\Users\Public\Desktop\Battle.net.lnk
2015-06-20 04:51 - 2015-06-20 04:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-06-20 04:51 - 2015-06-20 04:51 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2015-06-20 04:51 - 2015-06-20 04:51 - 00000000 ____D C:\ProgramData\Battle.net
2015-06-20 02:51 - 2015-06-20 02:58 - 00000000 ____D C:\Users\Horst\AppData\Local\Arma 3
2015-06-20 02:51 - 2015-06-20 02:54 - 00000000 ____D C:\Users\Horst\Documents\Arma 3
2015-06-20 02:51 - 2015-06-20 02:51 - 00000000 ____D C:\ProgramData\Bohemia Interactive
2015-06-20 02:50 - 2015-06-20 02:54 - 00000000 ____D C:\Users\Horst\AppData\Local\Arma 3 Launcher
2015-06-20 02:50 - 2015-06-20 02:50 - 00000000 ____D C:\Users\Horst\AppData\Local\Bohemia_Interactive
2015-06-20 02:46 - 2015-06-20 02:46 - 00000000 ____D C:\Users\Horst\AppData\Local\Microsoft Games
2015-06-20 02:32 - 2015-06-20 02:32 - 00000209 _____ C:\Users\Horst\Desktop\Arma 3.url
2015-06-19 21:30 - 2015-06-19 21:30 - 00000209 _____ C:\Users\Horst\Desktop\gutes spiel.url
2015-06-18 18:55 - 2015-07-13 18:49 - 00000000 ____D C:\Users\Horst\AppData\Roaming\vlc
2015-06-18 18:55 - 2015-06-18 18:55 - 00000699 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-06-18 18:55 - 2015-06-18 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-06-15 18:58 - 2015-03-03 19:47 - 00129600 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpnk.sys
2015-06-15 18:57 - 2015-02-05 01:24 - 00037184 _____ (Razer, Inc.) C:\Windows\system32\Drivers\rzpmgrk.sys
2015-06-15 18:50 - 2015-06-15 18:50 - 00000000 ____D C:\Users\Horst\AppData\Local\RzStats
2015-06-14 22:39 - 2015-06-14 22:39 - 00000831 _____ C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2015-06-14 22:39 - 2015-06-14 22:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2015-06-14 02:38 - 2015-06-14 02:36 - 00010323 _____ C:\Users\Horst\Desktop\config.cfg
2015-06-13 21:13 - 2015-06-13 21:13 - 00000000 ____D C:\Users\Horst\AppData\Local\GWX
2015-06-13 16:29 - 2015-06-13 16:29 - 00000209 _____ C:\Users\Horst\Desktop\Starbound.url
2015-06-13 16:29 - 2015-06-13 16:29 - 00000209 _____ C:\Users\Horst\Desktop\Starbound - Unstable.url
2015-06-13 15:52 - 2015-06-13 15:58 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Nidhogg
2015-06-13 15:50 - 2015-06-13 15:50 - 00000208 _____ C:\Users\Horst\Desktop\Nidhogg.url
2015-06-13 14:25 - 2015-07-04 07:32 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Notepad++
2015-06-13 14:25 - 2015-06-13 14:25 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-06-13 14:25 - 2015-06-13 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-06-13 14:25 - 2015-06-13 14:25 - 00000000 ____D C:\Program Files (x86)\Notepad++
2015-06-13 14:24 - 2015-07-02 23:37 - 00001764 _____ C:\Users\Horst\Desktop\Neues Textdokument.txt
2015-06-13 00:05 - 2015-06-13 00:05 - 00000206 _____ C:\Users\Horst\Desktop\Counter-Strike Global Offensive.url

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-13 20:29 - 2009-07-14 19:58 - 00700146 _____ C:\Windows\system32\perfh007.dat
2015-07-13 20:29 - 2009-07-14 19:58 - 00149784 _____ C:\Windows\system32\perfc007.dat
2015-07-13 20:29 - 2009-07-14 07:13 - 01622778 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-13 20:28 - 2014-02-15 23:31 - 01902908 _____ C:\Windows\WindowsUpdate.log
2015-07-13 20:23 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-13 20:22 - 2015-06-12 22:54 - 00000000 ____D C:\Users\Horst\AppData\Roaming\TS3Client
2015-07-13 20:22 - 2015-06-12 03:37 - 04959394 _____ C:\Windows\{00000005-00000000-00000000-00001102-00000004-20021102}.CDF
2015-07-13 20:22 - 2009-07-14 06:45 - 00023600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-13 20:22 - 2009-07-14 06:45 - 00023600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-13 20:19 - 2015-06-12 03:17 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-13 20:19 - 2015-06-12 03:17 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-13 19:32 - 2015-06-12 23:52 - 00000000 ____D C:\Users\Horst\AppData\Local\Adobe
2015-07-13 19:32 - 2014-02-16 02:03 - 00000000 ____D C:\Users\Horst\AppData\Roaming\Adobe
2015-07-13 17:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2015-07-13 15:27 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-07-12 18:22 - 2015-06-12 23:03 - 00000000 ____D C:\Users\Horst\Documents\The Witcher 3
2015-07-08 02:49 - 2015-06-12 03:17 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-08 02:49 - 2015-06-12 03:17 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-08 02:26 - 2015-06-12 23:04 - 00000000 ____D C:\ProgramData\Package Cache
2015-07-08 01:55 - 2015-06-12 23:50 - 00001080 _____ C:\Windows\system32\settingsbkup.sfm
2015-07-08 01:55 - 2015-06-12 23:50 - 00001080 _____ C:\Windows\system32\settings.sfm
2015-07-08 01:45 - 2014-02-16 02:47 - 01647518 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2015-07-08 01:45 - 2014-02-15 23:31 - 00000000 ____D C:\Users\Horst
2015-07-07 07:02 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2015-07-05 12:08 - 2014-02-16 00:17 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-07-02 21:35 - 2014-02-16 00:09 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-02 21:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2015-06-30 14:58 - 2014-02-16 01:35 - 00109728 _____ C:\Users\Horst\AppData\Local\GDIPFONTCACHEV1.DAT
2015-06-30 14:58 - 2009-07-14 06:45 - 00407264 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-28 22:37 - 2015-06-12 23:05 - 00000000 ____D C:\Users\Horst\AppData\Roaming\NVIDIA
2015-06-27 15:15 - 2014-02-15 23:26 - 00000000 ____D C:\Windows\Panther
2015-06-27 15:06 - 2014-02-16 02:03 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-27 15:06 - 2014-02-16 02:03 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-27 01:04 - 2015-06-12 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-24 13:36 - 2015-06-12 03:31 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-06-24 13:36 - 2015-06-12 03:31 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-06-24 13:36 - 2014-02-16 03:21 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-06-24 13:36 - 2014-02-16 03:21 - 01320120 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-06-23 01:06 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2015-06-22 23:27 - 2015-06-12 03:35 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-22 23:25 - 2015-06-12 03:30 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-21 17:59 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-21 17:54 - 2009-07-14 20:18 - 00000000 ____D C:\Windows\ShellNew
2015-06-21 17:54 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-21 17:54 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2015-06-17 11:10 - 2015-06-12 03:34 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-06-17 11:10 - 2015-06-12 03:34 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 17724600 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 15224784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 12855416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 03395648 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-06-17 11:10 - 2015-06-12 03:33 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-06-17 08:48 - 2015-06-12 03:34 - 06873232 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 03492168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 00937616 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-06-17 08:48 - 2015-06-12 03:34 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-06-17 08:48 - 2015-06-12 03:34 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-06-15 18:58 - 2014-02-16 03:11 - 00000000 ____D C:\ProgramData\Razer
2015-06-15 18:57 - 2014-02-16 03:12 - 00000000 ____D C:\Program Files (x86)\Razer
2015-06-15 18:56 - 2014-02-16 03:09 - 00000000 ____D C:\Users\Horst\AppData\Local\Razer
2015-06-15 18:55 - 2014-02-16 03:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2015-06-14 22:32 - 2014-02-16 01:28 - 00000000 ____D C:\Users\Horst\AppData\Roaming\DAEMON Tools Lite
2015-06-14 03:17 - 2014-02-16 04:07 - 00000000 ____D C:\ProgramData\Acronis
2015-06-13 04:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat

==================== Files in the root of some directories =======

2014-02-16 03:11 - 2014-02-16 03:11 - 0007844 _____ () C:\Users\Horst\AppData\Local\CleanupUninstall.txt
2015-07-04 10:29 - 2015-07-08 03:26 - 0007600 _____ () C:\Users\Horst\AppData\Local\Resmon.ResmonCfg

Some files in TEMP:
====================
C:\Users\Horst\AppData\Local\Temp\PidGenX.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-07-13 15:20

==================== End of log ============================
         

Alt 13.07.2015, 19:58   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Sporadische Verbindungsabbrüche - Standard

Sporadische Verbindungsabbrüche



hi,

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Downloade dir bitte Farbar's MiniToolBox auf deinen Desktop und starte das Tool

Setze einen Haken bei folgenden Einträgen
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset IE Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
  • List Minidump Files
Klicke Go und poste den Inhalt der Result.txt.
__________________

__________________

Alt 13.07.2015, 20:43   #3
hehejo
 
Sporadische Verbindungsabbrüche - Standard

Sporadische Verbindungsabbrüche



Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.09.1.1004
www.malwarebytes.org

Database version:
  main:    v2015.07.13.04
  rootkit: v2015.07.10.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17843
Horst :: HORST-PC [administrator]

13.07.2015 21:31:08
mbar-log-2015-07-13 (21-31-08).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 367310
Time elapsed: 4 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Code:
ATTFilter
MiniToolBox by Farbar  Version: 01-07-2015
Ran by Horst (administrator) on 13-07-2015 at 21:39:18
Running from "C:\Users\Horst\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows-IP-Konfiguration

Der DNS-Aufl�sungscache wurde geleert.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ============================== 


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Gigabit PCI Express Network Adapter = LAN-Verbindung (Connected)


# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Ende der IPv4-Konfiguration



Windows-IP-Konfiguration

   Hostname  . . . . . . . . . . . . : Horst-PC
   Prim�res DNS-Suffix . . . . . . . : 
   Knotentyp . . . . . . . . . . . . : Hybrid
   IP-Routing aktiviert  . . . . . . : Nein
   WINS-Proxy aktiviert  . . . . . . : Nein

Ethernet-Adapter LAN-Verbindung:

   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Gigabit PCI Express Network Adapter
   Physikalische Adresse . . . . . . : A0-F3-C1-00-01-2D
   DHCP aktiviert. . . . . . . . . . : Ja
   Autokonfiguration aktiviert . . . : Ja
   Verbindungslokale IPv6-Adresse  . : fe80::ec9e:bd20:3227:2011%14(Bevorzugt) 
   IPv4-Adresse  . . . . . . . . . . : 192.168.0.100(Bevorzugt) 
   Subnetzmaske  . . . . . . . . . . : 255.255.255.0
   Lease erhalten. . . . . . . . . . : Montag, 13. Juli 2015 21:37:08
   Lease l�uft ab. . . . . . . . . . : Freitag, 20. August 2151 04:07:42
   Standardgateway . . . . . . . . . : 192.168.0.1
   DHCP-Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6-IAID . . . . . . . . . . . : 295760833
   DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-1A-91-94-05-40-61-86-29-83-29
   DNS-Server  . . . . . . . . . . . : 192.168.0.1
   NetBIOS �ber TCP/IP . . . . . . . : Aktiviert

Tunneladapter isatap.{1A85F204-BA82-407C-B68A-9BB8709F7178}:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung*:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja
Server:  UnKnown
Address:  192.168.0.1

Name:    google.com
Addresses:  2a00:1450:4008:800::1001
	  216.58.213.14


Ping wird ausgef�hrt f�r google.com [216.58.213.14] mit 32 Bytes Daten:
Antwort von 216.58.213.14: Bytes=32 Zeit=20ms TTL=55
Antwort von 216.58.213.14: Bytes=32 Zeit=17ms TTL=55

Ping-Statistik f�r 216.58.213.14:
    Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
    (0% Verlust),
Ca. Zeitangaben in Millisek.:
    Minimum = 17ms, Maximum = 20ms, Mittelwert = 18ms
Server:  UnKnown
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
	  2001:4998:c:a06::2:4008
	  2001:4998:44:204::a7
	  206.190.36.45
	  98.138.253.109
	  98.139.183.24


Ping wird ausgef�hrt f�r yahoo.com [98.138.253.109] mit 32 Bytes Daten:
Antwort von 98.138.253.109: Bytes=32 Zeit=175ms TTL=44
Antwort von 98.138.253.109: Bytes=32 Zeit=174ms TTL=44

Ping-Statistik f�r 98.138.253.109:
    Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
    (0% Verlust),
Ca. Zeitangaben in Millisek.:
    Minimum = 174ms, Maximum = 175ms, Mittelwert = 174ms

Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128

Ping-Statistik f�r 127.0.0.1:
    Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
    (0% Verlust),
Ca. Zeitangaben in Millisek.:
    Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
 14...a0 f3 c1 00 01 2d ......Gigabit PCI Express Network Adapter
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4-Routentabelle
===========================================================================
Aktive Routen:
     Netzwerkziel    Netzwerkmaske          Gateway    Schnittstelle Metrik
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.100     20
        127.0.0.0        255.0.0.0   Auf Verbindung         127.0.0.1    306
        127.0.0.1  255.255.255.255   Auf Verbindung         127.0.0.1    306
  127.255.255.255  255.255.255.255   Auf Verbindung         127.0.0.1    306
      192.168.0.0    255.255.255.0   Auf Verbindung     192.168.0.100    276
    192.168.0.100  255.255.255.255   Auf Verbindung     192.168.0.100    276
    192.168.0.255  255.255.255.255   Auf Verbindung     192.168.0.100    276
        224.0.0.0        240.0.0.0   Auf Verbindung         127.0.0.1    306
        224.0.0.0        240.0.0.0   Auf Verbindung     192.168.0.100    276
  255.255.255.255  255.255.255.255   Auf Verbindung         127.0.0.1    306
  255.255.255.255  255.255.255.255   Auf Verbindung     192.168.0.100    276
===========================================================================
St�ndige Routen:
  Keine

IPv6-Routentabelle
===========================================================================
Aktive Routen:
 If Metrik Netzwerkziel             Gateway
  1    306 ::1/128                  Auf Verbindung
 14    276 fe80::/64                Auf Verbindung
 14    276 fe80::ec9e:bd20:3227:2011/128
                                    Auf Verbindung
  1    306 ff00::/8                 Auf Verbindung
 14    276 ff00::/8                 Auf Verbindung
===========================================================================
St�ndige Routen:
  Keine
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.2.1.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: libqt4_plugin.dll, Version: 2.2.1.0, Zeitstempel: 0xa2d0a2c0
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000076310b
ID des fehlerhaften Prozesses: 0xbac
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 12.8.0.1016, Zeitstempel: 0x51fb0c50
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02fc4211
ID des fehlerhaften Prozesses: 0x394
Startzeit der fehlerhaften Anwendung: 0xIAStorDataMgrSvc.exe0
Pfad der fehlerhaften Anwendung: IAStorDataMgrSvc.exe1
Pfad des fehlerhaften Moduls: IAStorDataMgrSvc.exe2
Berichtskennung: IAStorDataMgrSvc.exe3

Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled

Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x3d40
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)


System errors:
=============
Error: (07/13/2015 08:24:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/13/2015 02:52:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/12/2015 06:21:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/11/2015 05:49:10 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/11/2015 01:16:31 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/10/2015 01:30:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/09/2015 01:30:13 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/08/2015 02:50:25 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/08/2015 02:34:19 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/08/2015 02:01:14 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2


Microsoft Office Sessions:
=========================
Error: (07/09/2015 01:38:04 PM) (Source: Application Error)(User: )
Description: vlc.exe2.2.1.000000000libqt4_plugin.dll2.2.1.0a2d0a2c040000015000000000076310bbac01d0ba3ba46a77a4F:\Tools\VideoLAN\VLC\vlc.exeF:\Tools\VideoLAN\VLC\plugins\gui\libqt4_plugin.dllf55dbd8f-262e-11e5-9d35-a0f3c100012d

Error: (07/08/2015 01:46:06 AM) (Source: Application Error)(User: )
Description: IAStorDataMgrSvc.exe12.8.0.101651fb0c50unknown0.0.0.000000000c000000502fc421139401d0b90efba14430C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown550d3e1c-2502-11e5-b155-a0f3c100012d

Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime)(User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller)(User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/07/2015 06:41:14 AM) (Source: Application Error)(User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa13d4001d0b85aa96a2b87C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll655b941a-2462-11e5-a8e7-a0f3c100012d

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer


CodeIntegrity Errors:
===================================
  Date: 2015-07-07 07:02:02.715
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-07-07 07:02:02.690
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


=========================== Installed Programs ============================

Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}) (Version: 17.0.6614 - Acronis) Hidden
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version:  - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duck Game (HKLM-x32\...\Steam App 312530) (Version:  - Landon Podbielski)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
EXPERTool v9.12 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 9.12.0.0 - Gainward Co. Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.27.5 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{802039D1-1720-41CA-A332-2C24F3B3872B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BDE4C713-3D51-4C0F-9160-BB1DB8710B71}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{1A568352-73BD-442A-B6ED-638E45338957}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{E2570A68-F00A-4712-8EB6-631F7A45A2B1}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Sound Blaster Audigy 2 ZS (HKLM-x32\...\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Starbound - Unstable (HKLM-x32\...\Steam App 367540) (Version:  - )
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windward (HKLM-x32\...\Steam App 326410) (Version:  - Tasharen Entertainment Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 8111.1 MB
Available physical RAM: 5651.4 MB
Total Virtual: 16220.41 MB
Available Virtual: 13230.07 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:59.53 GB) (Free:11.76 GB) NTFS
4 Drive f: () (Fixed) (Total:465.75 GB) (Free:210.27 GB) NTFS
5 Drive g: () (Fixed) (Total:465.75 GB) (Free:145.49 GB) NTFS

========================= Users: ========================================

Benutzerkonten fr \\HORST-PC

Administrator            Gast                     Horst                    
Der Befehl wurde erfolgreich ausgefhrt.

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
         
Nach dem Ausführen von Malwarebytes Anti-Rootkit kam es wieder sporadisch zum Verbindunsabbruch. Ich habe danach wieder die Windows-Diagnos gestartet. Dieser hat wie jedes Mal den Starndart-Gateway wieder hergestellt. Ich weiß absolut nicht weiter. Kabel sitzen alle, Router arbeitet normal. Nur an diesem PC kommen die Abstürtze, die nur durch die Windows-Diagnose bzw. Rücksetzung des Gatway bereinigt werden können.
__________________

Alt 14.07.2015, 10:02   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Sporadische Verbindungsabbrüche - Standard

Sporadische Verbindungsabbrüche



Mach bitte mal ein Minitoolbox-Logfile, wenn das Problem da ist, ohne es zu beheben.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.07.2015, 15:05   #5
hehejo
 
Sporadische Verbindungsabbrüche - Standard

Sporadische Verbindungsabbrüche



Sorry war ne Zeit nicht Online.

Ich wollte gerade ne Runde zocken (online) und keine 5min In-Game. Ist das Netzwerk wieder ausgefallen. Ich habe noch mal ein Logfile gemacht bevor ich das Problem wieder bereinigt habe:

Code:
ATTFilter
MiniToolBox by Farbar  Version: 01-07-2015
Ran by Horst (administrator) on 17-07-2015 at 15:56:51
Running from "C:\Users\Horst\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows-IP-Konfiguration

Der DNS-Aufl�sungscache wurde geleert.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ============================== 


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Gigabit PCI Express Network Adapter = LAN-Verbindung (Connected)


# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# Ende der IPv4-Konfiguration



Windows-IP-Konfiguration

   Hostname  . . . . . . . . . . . . : Horst-PC
   Prim�res DNS-Suffix . . . . . . . : 
   Knotentyp . . . . . . . . . . . . : Hybrid
   IP-Routing aktiviert  . . . . . . : Nein
   WINS-Proxy aktiviert  . . . . . . : Nein

Ethernet-Adapter LAN-Verbindung:

   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Gigabit PCI Express Network Adapter
   Physikalische Adresse . . . . . . : A0-F3-C1-00-01-2D
   DHCP aktiviert. . . . . . . . . . : Ja
   Autokonfiguration aktiviert . . . : Ja
   Verbindungslokale IPv6-Adresse  . : fe80::ec9e:bd20:3227:2011%14(Bevorzugt) 
   IPv4-Adresse  . . . . . . . . . . : 192.168.0.100(Bevorzugt) 
   Subnetzmaske  . . . . . . . . . . : 255.255.255.0
   Lease erhalten. . . . . . . . . . : Freitag, 17. Juli 2015 15:09:56
   Lease l�uft ab. . . . . . . . . . : Montag, 23. August 2151 22:25:14
   Standardgateway . . . . . . . . . : 192.168.0.1
   DHCP-Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6-IAID . . . . . . . . . . . : 295760833
   DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-1A-91-94-05-40-61-86-29-83-29
   DNS-Server  . . . . . . . . . . . : 192.168.0.1
   NetBIOS �ber TCP/IP . . . . . . . : Aktiviert

Tunneladapter isatap.{1A85F204-BA82-407C-B68A-9BB8709F7178}:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja

Tunneladapter LAN-Verbindung*:

   Medienstatus. . . . . . . . . . . : Medium getrennt
   Verbindungsspezifisches DNS-Suffix: 
   Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP aktiviert. . . . . . . . . . : Nein
   Autokonfiguration aktiviert . . . : Ja
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.0.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping-Anforderung konnte Host "google.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.0.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Ping-Anforderung konnte Host "yahoo.com" nicht finden. �berpr�fen Sie den Namen, und versuchen Sie es erneut.

Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128

Ping-Statistik f�r 127.0.0.1:
    Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
    (0% Verlust),
Ca. Zeitangaben in Millisek.:
    Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
 14...a0 f3 c1 00 01 2d ......Gigabit PCI Express Network Adapter
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4-Routentabelle
===========================================================================
Aktive Routen:
     Netzwerkziel    Netzwerkmaske          Gateway    Schnittstelle Metrik
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.100     20
        127.0.0.0        255.0.0.0   Auf Verbindung         127.0.0.1    306
        127.0.0.1  255.255.255.255   Auf Verbindung         127.0.0.1    306
  127.255.255.255  255.255.255.255   Auf Verbindung         127.0.0.1    306
      192.168.0.0    255.255.255.0   Auf Verbindung     192.168.0.100    276
    192.168.0.100  255.255.255.255   Auf Verbindung     192.168.0.100    276
    192.168.0.255  255.255.255.255   Auf Verbindung     192.168.0.100    276
        224.0.0.0        240.0.0.0   Auf Verbindung         127.0.0.1    306
        224.0.0.0        240.0.0.0   Auf Verbindung     192.168.0.100    276
  255.255.255.255  255.255.255.255   Auf Verbindung         127.0.0.1    306
  255.255.255.255  255.255.255.255   Auf Verbindung     192.168.0.100    276
===========================================================================
St�ndige Routen:
  Keine

IPv6-Routentabelle
===========================================================================
Aktive Routen:
 If Metrik Netzwerkziel             Gateway
  1    306 ::1/128                  Auf Verbindung
 14    276 fe80::/64                Auf Verbindung
 14    276 fe80::ec9e:bd20:3227:2011/128
                                    Auf Verbindung
  1    306 ff00::/8                 Auf Verbindung
 14    276 ff00::/8                 Auf Verbindung
===========================================================================
St�ndige Routen:
  Keine
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/09/2015 01:38:04 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.2.1.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: libqt4_plugin.dll, Version: 2.2.1.0, Zeitstempel: 0xa2d0a2c0
Ausnahmecode: 0x40000015
Fehleroffset: 0x000000000076310b
ID des fehlerhaften Prozesses: 0xbac
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3

Error: (07/08/2015 01:46:06 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 12.8.0.1016, Zeitstempel: 0x51fb0c50
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x02fc4211
ID des fehlerhaften Prozesses: 0x394
Startzeit der fehlerhaften Anwendung: 0xIAStorDataMgrSvc.exe0
Pfad der fehlerhaften Anwendung: IAStorDataMgrSvc.exe1
Pfad des fehlerhaften Moduls: IAStorDataMgrSvc.exe2
Berichtskennung: IAStorDataMgrSvc.exe3

Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller) (User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled

Error: (07/07/2015 06:41:14 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 38.0.5.5623, Zeitstempel: 0x5563c49a
Name des fehlerhaften Moduls: mozalloc.dll, Version: 38.0.5.5623, Zeitstempel: 0x5563b229
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x3d40
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)


System errors:
=============
Error: (07/17/2015 03:10:42 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/16/2015 07:01:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/15/2015 08:14:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/15/2015 03:40:40 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (07/15/2015 03:40:40 PM) (Source: DCOM) (User: )
Description: {1EF75F33-893B-4E8F-9655-C3D602BA4897}

Error: (07/15/2015 03:18:30 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/14/2015 09:26:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/14/2015 06:01:35 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/14/2015 04:17:22 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2

Error: (07/13/2015 08:24:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde mit folgendem Fehler beendet: 
%%2


Microsoft Office Sessions:
=========================
Error: (07/13/2015 07:05:53 PM) (Source: Office Software Protection Platform Service)(User: )
Description: 0xC004F050VHKC6??

Error: (07/09/2015 01:38:04 PM) (Source: Application Error)(User: )
Description: vlc.exe2.2.1.000000000libqt4_plugin.dll2.2.1.0a2d0a2c040000015000000000076310bbac01d0ba3ba46a77a4F:\Tools\VideoLAN\VLC\vlc.exeF:\Tools\VideoLAN\VLC\plugins\gui\libqt4_plugin.dllf55dbd8f-262e-11e5-9d35-a0f3c100012d

Error: (07/08/2015 01:46:06 AM) (Source: Application Error)(User: )
Description: IAStorDataMgrSvc.exe12.8.0.101651fb0c50unknown0.0.0.000000000c000000502fc421139401d0b90efba14430C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exeunknown550d3e1c-2502-11e5-b155-a0f3c100012d

Error: (07/08/2015 01:46:05 AM) (Source: .NET Runtime)(User: )
Description: Anwendung: IAStorDataMgrSvc.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei IAStorDataMgr.EventRelay.SetSystemState(PSI.PsiSystemDataModel)
   bei IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   bei System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   bei System.Threading.ThreadPoolWorkQueue.Dispatch()
   bei System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (07/08/2015 01:41:54 AM) (Source: MsiInstaller)(User: Horst-PC)
Description: Produkt: Intel(R) Smart Connect Technology -- Platform Check Failed: Intel(R) Smart Connect device not found in BIOS, or it is not enabled(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (07/07/2015 06:41:14 AM) (Source: Application Error)(User: )
Description: plugin-container.exe38.0.5.56235563c49amozalloc.dll38.0.5.56235563b2298000000300001aa13d4001d0b85aa96a2b87C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll655b941a-2462-11e5-a8e7-a0f3c100012d

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/04/2015 11:21:02 AM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer


CodeIntegrity Errors:
===================================
  Date: 2015-07-07 07:02:02.715
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2015-07-07 07:02:02.690
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


=========================== Installed Programs ============================

Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}) (Version: 17.0.6614 - Acronis) Hidden
Acronis True Image 2014 (HKLM-x32\...\{D1CBB979-E0F5-464C-ACCB-4071078DA04A}Visible) (Version: 17.0.6614 - Acronis)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AdVenture Capitalist (HKLM-x32\...\Steam App 346900) (Version:  - Hyper Hippo Games)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
Batman™: Arkham Knight (HKLM-x32\...\Steam App 208650) (Version:  - Rocksteady Studios)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CrystalDiskInfo 6.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Duck Game (HKLM-x32\...\Steam App 312530) (Version:  - Landon Podbielski)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
EXPERTool v9.12 (HKLM-x32\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 9.12.0.0 - Gainward Co. Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.28.1 - Google Inc.) Hidden
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{98f335cd-0a32-4b3f-b74c-ef9480e834f0}) (Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nidhogg (HKLM-x32\...\Steam App 94400) (Version:  - Messhof)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.9.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.21.26599 - Razer Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{EE3A99C9-FD8F-4923-9F82-27365DA4B873}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{C814F7D9-CE9D-45AA-BA7C-88BDD0E1EB7C}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{77A8B979-11B0-4774-8003-574EE8A4BC22}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{802039D1-1720-41CA-A332-2C24F3B3872B}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BDE4C713-3D51-4C0F-9160-BB1DB8710B71}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F3FAAB68-7697-4B1F-A23A-72312565AEAB}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{1A568352-73BD-442A-B6ED-638E45338957}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{E2570A68-F00A-4712-8EB6-631F7A45A2B1}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{C4F97E9B-259A-45D0-98A7-C3F9AB8EE443}) (Version:  - Microsoft) Hidden
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Sound Blaster Audigy 2 ZS (HKLM-x32\...\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}) (Version: 1.0 - Creative Technology Limited)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
SSDlife Free (HKLM-x32\...\{18302BF2-AA3C-46E3-B039-996FD0DB5639}) (Version: 2.5.82 - BinarySense Inc.)
Starbound - Unstable (HKLM-x32\...\Steam App 367540) (Version:  - )
Starbound (HKLM-x32\...\Steam App 211820) (Version:  - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windward (HKLM-x32\...\Steam App 326410) (Version:  - Tasharen Entertainment Inc.)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 8111.1 MB
Available physical RAM: 5837.78 MB
Total Virtual: 16220.41 MB
Available Virtual: 13619.79 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:59.53 GB) (Free:11.31 GB) NTFS
3 Drive f: () (Fixed) (Total:465.75 GB) (Free:210.25 GB) NTFS
4 Drive g: () (Fixed) (Total:465.75 GB) (Free:145.49 GB) NTFS

========================= Users: ========================================

Benutzerkonten fr \\HORST-PC

Administrator            Gast                     Horst                    
Der Befehl wurde erfolgreich ausgefhrt.

========================= Minidump Files ==================================

No minidump file found


**** End of log ****
         

Im Anhang habe ich noch Mal ein Bild, wenn ich die "Windows-Diagnose" durchführe. Funktioniert es danach wieder.
Ich habe nur an dem PC Probleme. An anderen PCs läuft das Internet ohne Einschränkungen, also definitiv keine Störung seitens meines Anbieters. Ich weiß echt nicht mehr weiter.

Miniaturansicht angehängter Grafiken
-diagnose.jpg  

Alt 18.07.2015, 09:30   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Sporadische Verbindungsabbrüche - Standard

Sporadische Verbindungsabbrüche



LAN Treiber schon erneuert? Das Gateway ist definitiv weg, aber eingetragen, also bezieht er Daten, kann aber nichts senden.
__________________
--> Sporadische Verbindungsabbrüche

Antwort

Themen zu Sporadische Verbindungsabbrüche
adware, browser, combofix, cpu-z, downloader, einstellungen, firefox, flash player, helper, hijack, homepage, installation, internet explorer, kein internet, kein netzwerk, netzwerk, proxy, rundll, scan, security, services.exe, software, svchost.exe, tcp, udp, usb, windows



Ähnliche Themen: Sporadische Verbindungsabbrüche


  1. Verbindungsabbrüche Internet
    Plagegeister aller Art und deren Bekämpfung - 15.12.2014 (11)
  2. Ständige W-Lan Verbindungsabbrüche Windows 8.1 Broadcom802.11n Netzwerkadapter
    Alles rund um Windows - 07.12.2014 (3)
  3. WLAN Verbindungsabbrüche und PC Abstürze (Youtube)
    Netzwerk und Hardware - 22.06.2014 (0)
  4. Sporadische Weiterleitung im Browser?
    Plagegeister aller Art und deren Bekämpfung - 15.06.2014 (5)
  5. Sporadische Weiterleitung im Browser?
    Mülltonne - 14.06.2014 (0)
  6. Windows 7 verstecke objekte gefunden und verbindungsabbrüche
    Plagegeister aller Art und deren Bekämpfung - 24.04.2014 (13)
  7. Andauernde Verbindungsabbrüche (Windows 7 Ultimate)
    Netzwerk und Hardware - 21.04.2014 (19)
  8. Andauernde Verbindungsabbrüche (Windows 7 Ultimate)
    Netzwerk und Hardware - 29.12.2013 (3)
  9. Firefox öffnet Tab mit Werbung und Verbindungsabbrüche (unregelmäßig)
    Log-Analyse und Auswertung - 20.01.2012 (21)
  10. Logfile - Langsamer PC und Verbindungsabbrüche
    Log-Analyse und Auswertung - 04.07.2009 (0)
  11. Verbindungsabbrüche
    Log-Analyse und Auswertung - 19.09.2008 (2)
  12. Ständige Verbindungsabbrüche!
    Alles rund um Windows - 19.05.2008 (2)
  13. DSL Verbindungsabbrüche und Theme Resets
    Plagegeister aller Art und deren Bekämpfung - 30.12.2007 (7)
  14. Verbindungsabbrüche - ICQ läuft weiter!
    Log-Analyse und Auswertung - 13.01.2007 (5)
  15. Verbindungsabbrüche und Trojanermeldung ?
    Log-Analyse und Auswertung - 23.11.2005 (3)
  16. (sporadische) Startprobleme mit Windows XP Pro
    Alles rund um Windows - 13.07.2005 (1)
  17. Sporadische Internetverbindungsabrüche
    Plagegeister aller Art und deren Bekämpfung - 08.07.2005 (2)

Zum Thema Sporadische Verbindungsabbrüche - Hallo, seit ein paar Tagen verliere ich die Verbinung zum Internet. Laut Hotline liegt keine Störung vor. Wenn die Nachricht unten links erscheint "kein Netzwerk bzw kein Internet" klicke ich - Sporadische Verbindungsabbrüche...
Archiv
Du betrachtest: Sporadische Verbindungsabbrüche auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.