jollyjumper | 20.11.2013 16:22 | Hallo,
es gibt keine oder älteren Funde, es ist nur Avira auf dem System.
Nachfolgend die Logs!
Danke JJ FRST
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-11-2013
Ran by user3 (administrator) on ROSCHER on 20-11-2013 16:10:14
Running from C:\Users\user3\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManagerSvc32.exe
(SafeNet Inc.) C:\Windows\system32\hasplms.exe
(AVM Berlin) C:\Program Files\KEN!\KENCLI.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
(AVM Berlin) C:\Program Files\KEN!\kentbcli.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
() C:\CAD.Programme\Version.2011\strauti\numplus.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_11_9_900_152_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(HALFEN GmbH) C:\Program Files\Halfen\HDB 11.35\HDB.exe
(mb AEC Software GmbH) C:\mb\mb2013\bin\Projman.exe
(Avira Operations GmbH & Co. KG) C:\program files\avira\antivir desktop\avcenter.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [KEN Taskbar Client] - C:\Program Files\KEN!\kentbcli.exe [279928 2010-02-11] (AVM Berlin)
HKLM\...\Run: [Adobe Acrobat Speed Launcher] - C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe [38768 2009-10-03] (Adobe Systems Incorporated)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [Acrobat Assistant 8.0] - C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe [640376 2009-10-02] (Adobe Systems Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [935288 2009-09-04] (Adobe Systems Incorporated)
HKLM\...\Run: [FileOpenBroker] - C:\Program Files\FileOpen\Services\FileOpenBroker32.exe [836480 2012-04-30] (FileOpen Systems Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-10] (Avira Operations GmbH & Co. KG)
AppInit_DLLs: C:\Windows\System32\acaptuser32.dll [ 2009-02-27] (Adobe Systems, Inc.)
==================== Internet (Whitelisted) ====================
ProxyServer: http=192.168.115.1:3128;https=192.168.115.1:3128;ftp=192.168.115.1:3128;socks=192.168.115.1:1080
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB623DE316211CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 27 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Tcpip\..\Interfaces\{2A252ACE-1E71-4ABA-83C5-AEBA99203BC9}: [NameServer]192.168.115.200
Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\gcswf32.dll No File
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (WacomTabletPlugin) - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
CHR Plugin: ( Wacom Dynamic Link Library) - C:\Program Files\TabletPlugins\npwacom.dll (Wacom, Inc.)
CHR Extension: (Chrome In-App Payments service) - C:\Users\user3\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
========================== Services (Whitelisted) =================
R2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [622648 2013-09-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-09-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-10] (Avira Operations GmbH & Co. KG)
S3 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [78336 2012-01-24] (Dassault Systèmes)
R2 hasplms; C:\Windows\system32\hasplms.exe [4913608 2011-12-02] (SafeNet Inc.)
R2 KEN Client Service; C:\Program Files\KEN!\KENCLI.EXE [177528 2010-02-11] (AVM Berlin)
==================== Drivers (Whitelisted) ====================
R2 aksfridge; C:\Windows\System32\DRIVERS\aksfridge.sys [367560 2011-10-07] (SafeNet Inc.)
R3 akshasp; C:\Windows\System32\DRIVERS\akshasp.sys [238208 2011-02-09] (Aladdin Knowledge Systems Ltd.)
R3 akshhl; C:\Windows\System32\DRIVERS\akshhl.sys [46720 2011-09-08] (SafeNet Inc.)
R3 aksusb; C:\Windows\System32\DRIVERS\aksusb.sys [16512 2011-08-09] (SafeNet Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-25] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-09-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-03-06] (Avira Operations GmbH & Co. KG)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [596424 2011-09-08] (SafeNet Inc.)
R3 mf; C:\Windows\System32\DRIVERS\mf.sys [114176 2009-07-14] (Microsoft Corporation)
R3 NmPar; C:\Windows\System32\DRIVERS\NmPar.sys [81920 2010-01-12] (Windows (R) Codename Longhorn DDK provider)
R3 nmserial; C:\Windows\System32\DRIVERS\nmserial.sys [70656 2010-01-07] (Windows (R) Codename Longhorn DDK provider)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH)
R2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey.sys [73216 2012-10-15] (WIBU-SYSTEMS AG)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-20 16:10 - 2013-11-20 16:10 - 00010387 _____ C:\Users\user3\Desktop\FRST.txt
2013-11-20 16:10 - 2013-11-20 16:10 - 00000000 ____D C:\FRST
2013-11-20 16:09 - 2013-11-20 16:05 - 01090881 _____ (Farbar) C:\Users\user3\Desktop\FRST.exe
2013-11-20 16:08 - 2013-11-20 16:08 - 01090881 _____ (Farbar) C:\Users\user3\Downloads\FRST (2).exe
2013-11-20 16:06 - 2013-11-20 16:06 - 01090881 _____ (Farbar) C:\Users\user3\Downloads\FRST (1).exe
2013-11-20 16:05 - 2013-11-20 16:05 - 01090881 _____ (Farbar) C:\Users\user3\Downloads\FRST.exe
2013-11-20 15:06 - 2013-11-20 15:06 - 00000641 _____ C:\Users\user3\Desktop\zzzz.txt
2013-11-20 15:03 - 2013-11-20 15:03 - 00017100 _____ C:\Users\user3\Documents\Ereignisse.txt
2013-11-19 16:54 - 2013-11-19 19:54 - 105225210 _____ C:\Windows\system32\ݙὟᵌd
2013-11-19 16:24 - 2013-11-19 18:07 - 00000000 ____D C:\Users\user3\AppData\Roaming\Fio
2013-11-19 16:23 - 2013-11-19 16:23 - 00000000 ____D C:\Users\user3\AppData\Roaming\Ukerugk
2013-11-19 16:22 - 2013-11-19 16:23 - 00000000 ____D C:\Users\user3\AppData\Roaming\Xou
2013-11-14 15:22 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 15:22 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 15:22 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 15:22 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 15:22 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 15:22 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 15:22 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 15:22 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 15:22 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 15:22 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 15:22 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 15:22 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 15:22 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 15:22 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 15:22 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 15:22 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 15:22 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 15:22 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 11:41 - 2013-11-13 19:42 - 104136834 _____ C:\Windows\system32\䕮�ᵌa
2013-11-12 17:28 - 2013-11-12 17:28 - 17142784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 11220992 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 04240384 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 17:28 - 2013-11-12 17:28 - 02166272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 01926656 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 17:28 - 2013-11-12 17:28 - 01818112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 01156608 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 17:28 - 2013-11-12 17:28 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 17:28 - 2013-11-12 17:28 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 17:28 - 2013-11-12 17:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-12 17:26 - 2013-11-12 17:30 - 00010509 _____ C:\Windows\IE11_main.log
2013-10-29 19:23 - 2013-10-29 19:23 - 02185392 _____ C:\Users\user3\Downloads\fiz_apl_ans_schn_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00228756 _____ C:\Users\user3\Downloads\fiz_apl_kg_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00224654 _____ C:\Users\user3\Downloads\fiz_apl_og1_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00224654 _____ C:\Users\user3\Downloads\fiz_apl_og1_131028 (1).dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00208321 _____ C:\Users\user3\Downloads\fiz_apl_og2_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00189565 _____ C:\Users\user3\Downloads\fiz_apl_eg_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00171607 _____ C:\Users\user3\Downloads\fiz_apl_dg_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00163787 _____ C:\Users\user3\Downloads\fiz_apl_og3_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00136771 _____ C:\Users\user3\Downloads\fiz_apl_og4_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00136613 _____ C:\Users\user3\Downloads\fiz_apl_og5_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00085229 _____ C:\Users\user3\Downloads\fiz_apl_da_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00000294 _____ C:\Users\user3\Downloads\fiz_apl_ans_schn_1310281.Shx
2013-10-29 19:23 - 2013-10-29 19:23 - 00000161 _____ C:\Users\user3\Downloads\fiz_apl_og2_1310281.Shx
==================== One Month Modified Files and Folders =======
2013-11-20 16:10 - 2013-11-20 16:10 - 00010387 _____ C:\Users\user3\Desktop\FRST.txt
2013-11-20 16:10 - 2013-11-20 16:10 - 00000000 ____D C:\FRST
2013-11-20 16:08 - 2013-11-20 16:08 - 01090881 _____ (Farbar) C:\Users\user3\Downloads\FRST (2).exe
2013-11-20 16:08 - 2009-07-14 05:34 - 00018624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-20 16:08 - 2009-07-14 05:34 - 00018624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-20 16:06 - 2013-11-20 16:06 - 01090881 _____ (Farbar) C:\Users\user3\Downloads\FRST (1).exe
2013-11-20 16:05 - 2013-11-20 16:09 - 01090881 _____ (Farbar) C:\Users\user3\Desktop\FRST.exe
2013-11-20 16:05 - 2013-11-20 16:05 - 01090881 _____ (Farbar) C:\Users\user3\Downloads\FRST.exe
2013-11-20 15:41 - 2012-04-04 07:21 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-20 15:26 - 2012-08-13 10:50 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-20 15:16 - 2012-04-02 15:09 - 01275355 _____ C:\Windows\WindowsUpdate.log
2013-11-20 15:14 - 2012-08-13 10:50 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-20 15:13 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-20 15:13 - 2009-07-14 05:39 - 00045875 _____ C:\Windows\setupact.log
2013-11-20 15:11 - 2012-04-11 15:34 - 00000000 ____D C:\Z
2013-11-20 15:06 - 2013-11-20 15:06 - 00000641 _____ C:\Users\user3\Desktop\zzzz.txt
2013-11-20 15:03 - 2013-11-20 15:03 - 00017100 _____ C:\Users\user3\Documents\Ereignisse.txt
2013-11-20 12:49 - 2012-04-02 15:15 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-20 12:22 - 2012-04-02 15:17 - 00000000 ____D C:\Users\user3
2013-11-19 19:54 - 2013-11-19 16:54 - 105225210 _____ C:\Windows\system32\ݙὟᵌd
2013-11-19 18:07 - 2013-11-19 16:24 - 00000000 ____D C:\Users\user3\AppData\Roaming\Fio
2013-11-19 16:23 - 2013-11-19 16:23 - 00000000 ____D C:\Users\user3\AppData\Roaming\Ukerugk
2013-11-19 16:23 - 2013-11-19 16:22 - 00000000 ____D C:\Users\user3\AppData\Roaming\Xou
2013-11-18 19:28 - 2013-07-23 19:02 - 00000000 ____D C:\Schalpläne
2013-11-18 12:33 - 2012-04-03 16:20 - 00000000 ____D C:\Users\user3\AppData\Local\Adobe
2013-11-18 12:32 - 2012-09-07 15:15 - 00002121 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-18 12:16 - 2012-04-04 07:21 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-11-18 12:16 - 2012-04-04 07:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-11-15 11:35 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-11-15 10:38 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-11-14 19:21 - 2013-07-26 17:08 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:20 - 2012-04-02 16:45 - 80340640 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 19:42 - 2013-11-13 11:41 - 104136834 _____ C:\Windows\system32\䕮�ᵌa
2013-11-12 17:30 - 2013-11-12 17:26 - 00010509 _____ C:\Windows\IE11_main.log
2013-11-12 17:28 - 2013-11-12 17:28 - 17142784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 11220992 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 04240384 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 17:28 - 2013-11-12 17:28 - 02166272 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 01926656 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 17:28 - 2013-11-12 17:28 - 01818112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 01156608 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 17:28 - 2013-11-12 17:28 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 17:28 - 2013-11-12 17:28 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 17:28 - 2013-11-12 17:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 17:28 - 2013-11-12 17:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 17:28 - 2013-11-12 17:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-01 11:01 - 2013-09-25 18:41 - 00000000 ____D C:\Schalplan_Einles
2013-10-29 19:23 - 2013-10-29 19:23 - 02185392 _____ C:\Users\user3\Downloads\fiz_apl_ans_schn_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00228756 _____ C:\Users\user3\Downloads\fiz_apl_kg_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00224654 _____ C:\Users\user3\Downloads\fiz_apl_og1_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00224654 _____ C:\Users\user3\Downloads\fiz_apl_og1_131028 (1).dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00208321 _____ C:\Users\user3\Downloads\fiz_apl_og2_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00189565 _____ C:\Users\user3\Downloads\fiz_apl_eg_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00171607 _____ C:\Users\user3\Downloads\fiz_apl_dg_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00163787 _____ C:\Users\user3\Downloads\fiz_apl_og3_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00136771 _____ C:\Users\user3\Downloads\fiz_apl_og4_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00136613 _____ C:\Users\user3\Downloads\fiz_apl_og5_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00085229 _____ C:\Users\user3\Downloads\fiz_apl_da_131028.dwg
2013-10-29 19:23 - 2013-10-29 19:23 - 00000294 _____ C:\Users\user3\Downloads\fiz_apl_ans_schn_1310281.Shx
2013-10-29 19:23 - 2013-10-29 19:23 - 00000161 _____ C:\Users\user3\Downloads\fiz_apl_og2_1310281.Shx
2013-10-23 13:47 - 2013-05-07 19:12 - 00000000 ____D C:\470-G-POS-29
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-20 14:12
==================== End Of Log ============================ --- --- ---
--- --- --- Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 18-11-2013
Ran by user3 at 2013-11-20 16:10:43
Running from C:\Users\user3\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
32 Bit HP CIO Components Installer (Version: 8.1.4)
Adobe Acrobat 9 Pro Extended - English, Français, Deutsch (Version: 9.2.0)
Adobe Acrobat 9.2.0 - CPSID_50026
Adobe Flash Player 11 ActiveX (Version: 11.9.900.152)
Aladdin DiagnostiX 1.10
Avira Professional Security (Version: 13.0.0.4064)
AVM KEN!
Bamboo (Version: 5.2.5-5)
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000)
Compufix 8 (Version: 8.4.4358.16154)
DraftSight (Version: 8.4.274)
FileOpen Client (Version: 3.0.83.920)
Google Chrome (Version: 31.0.1650.57)
Google Earth (Version: 7.1.1.1888)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
Google Update Helper (Version: 1.3.21.165)
Hardlock Device Drivers
HDB (Version: 11.00)
HDB (Version: 11.31)
HDB (Version: 11.32)
HDB (Version: 11.35)
Ing+ 2007 (Version: 20.07.0600)
Ing+ 2011 (Version: 20.11.0920)
Lahey/Fujitsu Fortran Redistributable Runtime (Version: 7.1.1)
LiveUpdate 1.0 (Version: 1.1.0.58)
Mathcad 2001 Professional (Version: 10.01.0000)
mb WorkSuite 2012 (Version: 20.12.0630)
mb WorkSuite 2013 (Version: 20.13.1010)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office XP Professional mit FrontPage (Version: 10.0.6626.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Schöck Isokorb
SHARP AR-M160/M200 Series Type B PCL/PS T3 Printer Driver (Version: 1.00.000)
STRAKON 2011 (Version: 2011)
Total Commander (Remove or Repair) (Version: 7.57a)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
WebTablet FB Plugin (Version: 2.0.0.1)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
WibuKey Setup (WibuKey Remove) (Version: Version 6.00d of 2011-Sep-22 (Build 138) (Setup))
==================== Restore Points =========================
23-10-2013 11:35:39 Geplanter Prüfpunkt
31-10-2013 12:23:56 Geplanter Prüfpunkt
07-11-2013 12:41:41 Geplanter Prüfpunkt
12-11-2013 16:26:23 Windows Update
14-11-2013 18:19:41 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {32FF196C-805B-4CAC-A8F5-BA47C0120867} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-18] (Adobe Systems Incorporated)
Task: {41482629-5BD5-4346-AD43-B4338D4CD8F7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-08-13] (Google Inc.)
Task: {47FA9719-BCCE-40E6-A196-2D09D8AD3763} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-11] (Microsoft Corporation)
Task: {55C09C66-C692-42A5-A6B7-54A2ABCD3695} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe [2009-07-14] (Microsoft Corporation)
Task: {98D617BF-C007-40F0-8FAA-C89311554EEF} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation)
Task: {98DC9E83-1E24-4592-90BB-7DB2D6A9EC03} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-08-13] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-04-10 13:03 - 2011-09-08 16:48 - 00962936 _____ () C:\Program Files\Tablet\Pen\libxml2.dll
1999-12-23 19:09 - 1999-12-23 19:09 - 00015872 _____ () C:\CAD.Programme\Version.2011\strauti\NUMLIB32.dll
2012-04-03 16:23 - 2009-02-27 15:39 - 00019968 _____ () C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.deu
2009-07-13 22:03 - 2009-07-14 02:15 - 00364544 _____ () C:\Windows\system32\msjetoledb40.dll
2013-05-25 13:24 - 2013-01-25 09:40 - 00397704 _____ () C:\program files\avira\antivir desktop\sqlite3.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/20/2013 02:18:51 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:17:55 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:17:43 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:17:02 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:16:10 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:15:29 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:15:03 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:14:42 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:14:34 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (11/20/2013 02:14:08 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (11/20/2013 03:13:08 PM) (Source: atikmdag) (User: )
Description: Display is not active
Error: (11/20/2013 03:13:08 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (11/20/2013 03:08:21 PM) (Source: atikmdag) (User: )
Description: Display is not active
Error: (11/20/2013 03:08:21 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (11/20/2013 03:07:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "UPnP-Gerätehost" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (11/20/2013 03:07:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "upnphost" konnte sich nicht als "NT AUTHORITY\LocalService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1352
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/20/2013 03:07:32 PM) (Source: DCOM) (User: )
Description: 1069upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}
Error: (11/20/2013 01:53:05 PM) (Source: DCOM) (User: ROSCHER)
Description: AnwendungsspezifischLokalAktivierung{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}ROSCHERuser3S-1-5-21-3059408282-1443608246-121209992-1000LocalHost (unter Verwendung von LRPC)
Error: (11/20/2013 01:53:05 PM) (Source: DCOM) (User: ROSCHER)
Description: AnwendungsspezifischLokalAktivierung{145B4335-FE2A-4927-A040-7C35AD3180EF}{145B4335-FE2A-4927-A040-7C35AD3180EF}ROSCHERuser3S-1-5-21-3059408282-1443608246-121209992-1000LocalHost (unter Verwendung von LRPC)
Error: (11/20/2013 01:46:30 PM) (Source: DCOM) (User: ROSCHER)
Description: AnwendungsspezifischLokalAktivierung{D3DCB472-7261-43CE-924B-0704BD730D5F}{D3DCB472-7261-43CE-924B-0704BD730D5F}ROSCHERuser3S-1-5-21-3059408282-1443608246-121209992-1000LocalHost (unter Verwendung von LRPC)
Microsoft Office Sessions:
=========================
Error: (11/20/2013 02:18:51 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\PMVersionSelector.exe
Error: (11/20/2013 02:17:55 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\Eingabe.exe
Error: (11/20/2013 02:17:43 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\FEM_PROP.exe
Error: (11/20/2013 02:17:02 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\ViCADo.exe
Error: (11/20/2013 02:16:10 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\IngUtil.exe
Error: (11/20/2013 02:15:29 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\LVKatalogVerwaltung.exe
Error: (11/20/2013 02:15:03 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\DotNETCheck.exe
Error: (11/20/2013 02:14:42 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\mic_stru.exe
Error: (11/20/2013 02:14:34 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\DXFSelection.exe
Error: (11/20/2013 02:14:08 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\mb\mb2011\bin64\StdVerw.exe
CodeIntegrity Errors:
===================================
Date: 2012-04-04 10:33:58.256
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\MSAUD32.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 10:33:58.241
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SL_ANET.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 10:33:58.209
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 09:39:17.529
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\MSAUD32.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 09:39:17.498
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SL_ANET.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 09:39:17.467
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 09:31:17.802
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\MSAUD32.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 09:31:17.755
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\SL_ANET.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-04 09:31:17.708
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\l3codeca.acm" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-04-03 17:39:53.340
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\MSAUD32.ACM" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 38%
Total physical RAM: 3070.18 MB
Available physical RAM: 1882.23 MB
Total Pagefile: 8068.46 MB
Available Pagefile: 6454.06 MB
Total Virtual: 2047.88 MB
Available Virtual: 1903.99 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:396.94 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 48000000)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |