| Beaugart | 20.12.2013 21:33 |
Hallo,
vielen Dank für deine Antwort!
Hier die Logs:
FRST:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-12-2013 02
Ran by Tobias (administrator) on MACHTZENTRUM on 20-12-2013 21:29:19
Running from C:\Users\Tobias\Downloads
Microsoft Windows 8.1 Pro (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(Intel Corporation) C:\Windows\System32\IntelCpHeciSvc.exe
() C:\ProgramData\DatacardService\DCService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Dropbox, Inc.) C:\Users\Tobias\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x86__8wekyb3d8bbwe\livecomm.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [KiesTrayAgent] - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-11-06] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE [1603152 2007-04-03] (CANON INC.)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKLM\...\Runonce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript
HKCU\...\Run: [KiesPreload] - C:\Program Files\Samsung\Kies\Kies.exe [1564528 2013-11-06] (Samsung)
HKCU\...\Run: [] - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-11-06] (Samsung)
Startup: C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Tobias\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1711FADB08FDCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default
FF DefaultSearchEngine: Wikipedia (de)
FF SelectedSearchEngine: Wikipedia (de)
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Tobias\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files\Amazon MP3 Downloader\npAmazonMP3DownloaderPlugin101721.dll (Amazon.com, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Flash Video Downloader - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\artur.dubovoy@gmail.com.xpi
FF Extension: Ghostery - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\firefox@ghostery.com.xpi
FF Extension: YouTube to MP3 - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\youtube2mp3@mondayx.de.xpi
FF Extension: 1-Click YouTube Video Downloader - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi
FF Extension: Ads no more - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\{a3a5c777-f583-4fef-9380-ab4add1bc2a2}.xpi
FF Extension: Adblock Plus - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: DownThemAll! - C:\Users\Tobias\AppData\Roaming\Mozilla\Firefox\Profiles\vh6h9fxz.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF HKCU\...\Firefox\Extensions: [{b74e7f24-2829-4ba2-9c21-138d0968cd50}] - C:\Program Files\Re-markit\135.xpi
========================== Services (Whitelisted) =================
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [1668136 2011-12-15] (Broadcom Corporation.)
R3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [277616 2012-12-14] (Intel Corporation)
R2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [249856 2010-09-29] ()
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [278264 2013-08-22] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22240 2013-08-22] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1210368 2013-11-14] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
R3 ACPIVPC; C:\Windows\System32\drivers\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R3 Apowersoft_AudioDevice; C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys [26080 2012-10-08] (Wondershare)
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [25600 2013-08-22] (Microsoft Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [174936 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63.sys [7783600 2013-07-01] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [185856 2013-08-22] (Microsoft Corporation)
S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [144600 2013-09-04] (Broadcom Corporation.)
S3 GPIO; C:\Windows\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation)
R3 L1C; C:\Windows\system32\DRIVERS\L1C63x86.sys [110792 2013-06-18] (Qualcomm Atheros Co., Ltd.)
R3 MEI; C:\Windows\System32\drivers\HECI.sys [55104 2012-07-17] (Intel Corporation)
R3 RSUSBVSTOR; C:\Windows\System32\Drivers\RtsUVStor.sys [244952 2013-09-15] (Realtek Semiconductor Corp.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [93024 2013-08-22] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-20 21:29 - 2013-12-20 21:29 - 00009077 _____ C:\Users\Tobias\Downloads\FRST.txt
2013-12-20 21:29 - 2013-12-20 21:29 - 00000000 ____D C:\FRST
2013-12-20 21:28 - 2013-12-20 21:28 - 01325858 _____ (Farbar) C:\Users\Tobias\Downloads\FRST.exe
2013-12-20 19:56 - 2013-12-20 19:56 - 00052384 _____ C:\Users\Tobias\Downloads\Extras.Txt
2013-12-20 19:55 - 2013-12-20 19:55 - 00114538 _____ C:\Users\Tobias\Downloads\OTL.Txt
2013-12-20 19:46 - 2013-12-20 19:46 - 00602112 _____ (OldTimer Tools) C:\Users\Tobias\Downloads\OTL.exe
2013-12-20 18:15 - 2013-12-20 18:15 - 00387584 _____ C:\Users\Tobias\Downloads\rescue2usb1007.exe
2013-12-20 18:14 - 2013-12-20 18:23 - 340465664 _____ C:\Users\Tobias\Downloads\kav_rescue_10-0513.iso
2013-12-20 16:45 - 2013-12-20 16:45 - 09111280 _____ (SurfRight B.V.) C:\Users\Tobias\Downloads\hitmanpro.exe
2013-12-20 16:37 - 2013-12-20 16:37 - 00001079 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Malwarebytes
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-20 16:37 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-12-20 16:36 - 2013-12-20 16:36 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tobias\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-20 16:25 - 2013-12-20 17:20 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-20 16:24 - 2013-12-20 16:24 - 09452704 _____ (SurfRight B.V.) C:\Users\Tobias\Downloads\HitmanPro3.7.8.208.exe
2013-12-19 23:01 - 2013-12-19 23:01 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-19 23:00 - 2013-12-20 09:23 - 00000000 __RDO C:\Users\Tobias\SkyDrive
2013-12-19 22:57 - 2013-12-19 22:57 - 00001450 _____ C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-19 22:57 - 2013-12-19 22:57 - 00000020 ___SH C:\Users\Tobias\ntuser.ini
2013-12-19 21:22 - 2013-12-20 21:02 - 00171686 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-19 21:21 - 2013-12-19 21:21 - 00021532 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-19 21:15 - 2013-12-19 21:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-12-19 21:15 - 2013-12-19 21:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-12-19 21:12 - 2013-12-19 21:15 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-19 21:11 - 2013-12-19 23:00 - 00000000 ____D C:\Users\Tobias
2013-12-19 21:11 - 2013-12-19 21:22 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-12-19 21:11 - 2013-12-19 21:22 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-12-19 21:11 - 2013-12-19 21:12 - 00000000 ___RD C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Startmenü
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Netzwerkumgebung
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Druckumgebung
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Documents\Eigene Musik
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Documents\Eigene Bilder
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\AppData\Local\Verlauf
2013-12-19 21:11 - 2013-08-22 09:17 - 00000000 ___RD C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-19 21:11 - 2013-08-22 09:17 - 00000000 ___RD C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-19 21:11 - 2013-08-22 09:17 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-19 21:06 - 2013-12-19 21:06 - 00000000 ____D C:\WINDOWS\system32\sda
2013-12-19 21:02 - 2013-12-19 22:57 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-19 21:01 - 2013-12-19 21:01 - 00000000 ____D C:\Windows.old
2013-12-19 20:59 - 2013-12-19 20:59 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 05753688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 01381184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-19 20:59 - 2013-12-19 20:59 - 01270640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 01261320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-19 20:59 - 2013-12-19 20:59 - 01159080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 01128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 00478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00261464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-19 20:59 - 2013-12-19 20:59 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00120152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-19 20:59 - 2013-12-19 20:59 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00077144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-19 20:59 - 2013-12-19 20:59 - 00036696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-19 20:59 - 2013-12-19 20:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 03494400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-19 20:58 - 2013-12-19 20:58 - 03423232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-19 20:58 - 2013-12-19 20:58 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-19 20:58 - 2013-12-19 20:58 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-19 20:58 - 2013-12-19 20:58 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-19 20:58 - 2013-12-19 20:58 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-19 20:57 - 2013-12-19 20:57 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-19 20:55 - 2013-12-19 20:55 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-12-19 20:55 - 2013-12-19 20:55 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-19 20:55 - 2013-12-19 20:55 - 00000000 ____D C:\Program Files\MSBuild
2013-12-19 20:55 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-12-19 20:55 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-19 20:55 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-12-19 20:23 - 2013-12-19 21:22 - 00006598 _____ C:\WINDOWS\comsetup.log
2013-12-19 08:56 - 2013-12-19 20:44 - 00441865 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-12-16 09:06 - 2013-12-16 09:21 - 57420430 _____ C:\Users\Tobias\Downloads\OODiskImage7ProfessionalGer.zip
2013-12-13 14:10 - 2013-12-19 21:14 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2013-12-11 00:07 - 2013-12-11 00:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-10 08:46 - 2013-12-19 21:14 - 00000000 __SHD C:\WINDOWS\system32\AI_RecycleBin
2013-11-28 13:04 - 2013-11-28 13:04 - 00000000 ___HD C:\ProgramData\CanonBJ
2013-11-28 13:03 - 2013-12-19 21:14 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2013-11-28 13:03 - 2013-11-28 13:03 - 00000000 ___HD C:\Program Files\CanonBJ
2013-11-27 19:09 - 2013-11-27 19:09 - 00000000 ___HD C:\ProgramData\CanonIJEPPEX2
2013-11-27 19:09 - 2013-11-27 19:09 - 00000000 ___HD C:\ProgramData\CanonEPP
2013-11-26 23:16 - 2013-11-26 23:16 - 00000000 ____D C:\Program Files\MarkAny
2013-11-26 22:58 - 2013-11-26 22:58 - 00000000 ____D C:\Users\Public\Documents\CrashDump
==================== One Month Modified Files and Folders =======
2013-12-20 21:29 - 2013-12-20 21:29 - 00009077 _____ C:\Users\Tobias\Downloads\FRST.txt
2013-12-20 21:29 - 2013-12-20 21:29 - 00000000 ____D C:\FRST
2013-12-20 21:28 - 2013-12-20 21:28 - 01325858 _____ (Farbar) C:\Users\Tobias\Downloads\FRST.exe
2013-12-20 21:05 - 2013-11-18 17:35 - 00000000 ____D C:\Program Files\CSBrowserHelper
2013-12-20 21:02 - 2013-12-19 21:22 - 00171686 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-20 21:02 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\sru
2013-12-20 20:42 - 2013-03-07 15:37 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-20 19:56 - 2013-12-20 19:56 - 00052384 _____ C:\Users\Tobias\Downloads\Extras.Txt
2013-12-20 19:55 - 2013-12-20 19:55 - 00114538 _____ C:\Users\Tobias\Downloads\OTL.Txt
2013-12-20 19:46 - 2013-12-20 19:46 - 00602112 _____ (OldTimer Tools) C:\Users\Tobias\Downloads\OTL.exe
2013-12-20 18:23 - 2013-12-20 18:14 - 340465664 _____ C:\Users\Tobias\Downloads\kav_rescue_10-0513.iso
2013-12-20 18:15 - 2013-12-20 18:15 - 00387584 _____ C:\Users\Tobias\Downloads\rescue2usb1007.exe
2013-12-20 17:20 - 2013-12-20 16:25 - 00000000 ____D C:\ProgramData\HitmanPro
2013-12-20 16:46 - 2013-11-14 09:09 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-12-20 16:45 - 2013-12-20 16:45 - 09111280 _____ (SurfRight B.V.) C:\Users\Tobias\Downloads\hitmanpro.exe
2013-12-20 16:37 - 2013-12-20 16:37 - 00001079 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Malwarebytes
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-20 16:37 - 2013-12-20 16:37 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-12-20 16:36 - 2013-12-20 16:36 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Tobias\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-20 16:24 - 2013-12-20 16:24 - 09452704 _____ (SurfRight B.V.) C:\Users\Tobias\Downloads\HitmanPro3.7.8.208.exe
2013-12-20 13:08 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-12-20 09:23 - 2013-12-19 23:00 - 00000000 __RDO C:\Users\Tobias\SkyDrive
2013-12-20 09:23 - 2013-03-07 15:36 - 00000000 ___RD C:\Users\Tobias\Dropbox
2013-12-20 09:23 - 2013-03-07 15:32 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Dropbox
2013-12-19 23:05 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-12-19 23:01 - 2013-12-19 23:01 - 00000000 ____D C:\WINDOWS\LastGood
2013-12-19 23:01 - 2013-08-22 08:23 - 00290337 _____ C:\WINDOWS\setupact.log
2013-12-19 23:01 - 2013-08-22 08:23 - 00000262 _____ C:\WINDOWS\setuperr.log
2013-12-19 23:00 - 2013-12-19 21:11 - 00000000 ____D C:\Users\Tobias
2013-12-19 23:00 - 2013-11-14 09:49 - 00000000 ___HD C:\$Windows.~BT
2013-12-19 22:57 - 2013-12-19 22:57 - 00001450 _____ C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-19 22:57 - 2013-12-19 22:57 - 00000020 ___SH C:\Users\Tobias\ntuser.ini
2013-12-19 22:57 - 2013-12-19 21:02 - 00000000 ___DC C:\WINDOWS\Panther
2013-12-19 21:24 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\rescache
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-19 21:22 - 2013-12-19 21:22 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-19 21:22 - 2013-12-19 21:11 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2013-12-19 21:22 - 2013-12-19 21:11 - 00024768 _____ C:\WINDOWS\diagerr.xml
2013-12-19 21:22 - 2013-12-19 20:23 - 00006598 _____ C:\WINDOWS\comsetup.log
2013-12-19 21:22 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2013-12-19 21:22 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\Registration
2013-12-19 21:22 - 2013-08-22 09:17 - 00000000 ____D C:\Program Files\Windows NT
2013-12-19 21:22 - 2013-08-22 08:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-19 21:22 - 2013-08-22 07:21 - 00000000 __RHD C:\Users\Default
2013-12-19 21:21 - 2013-12-19 21:21 - 00021532 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-12-19 21:19 - 2013-08-22 09:17 - 00000000 __RSD C:\WINDOWS\Media
2013-12-19 21:19 - 2013-08-22 09:17 - 00000000 __RHD C:\Users\Public\Libraries
2013-12-19 21:19 - 2013-08-22 07:21 - 00000000 ___RD C:\Users\Public
2013-12-19 21:16 - 2013-08-22 08:22 - 00367664 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-19 21:15 - 2013-12-19 21:15 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2013-12-19 21:15 - 2013-12-19 21:15 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2013-12-19 21:15 - 2013-12-19 21:12 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-12-19 21:15 - 2013-08-22 09:18 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2013-12-19 21:15 - 2013-08-22 07:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2013-12-19 21:15 - 2013-08-22 07:13 - 00008192 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-19 21:15 - 2013-06-06 17:45 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyMicroBalance
2013-12-19 21:15 - 2013-03-07 15:33 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-12-19 21:15 - 2012-07-26 05:43 - 00000000 ____D C:\Users\Default.migrated
2013-12-19 21:14 - 2013-12-13 14:10 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2013-12-19 21:14 - 2013-12-10 08:46 - 00000000 __SHD C:\WINDOWS\system32\AI_RecycleBin
2013-12-19 21:14 - 2013-11-28 13:03 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2013-12-19 21:14 - 2013-11-14 08:56 - 00000000 ____D C:\WINDOWS\ShellNew
2013-12-19 21:14 - 2013-11-14 08:53 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\twain_32
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\spool
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\IME
2013-12-19 21:14 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\de-DE
2013-12-19 21:14 - 2013-03-01 15:18 - 00000000 ____D C:\WINDOWS\system32\Adobe
2013-12-19 21:13 - 2013-08-22 09:17 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-12-19 21:13 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\Help
2013-12-19 21:13 - 2013-08-22 09:17 - 00000000 ____D C:\Program Files\Microsoft.NET
2013-12-19 21:13 - 2013-08-22 09:17 - 00000000 ____D C:\Program Files\Common Files\System
2013-12-19 21:13 - 2013-08-22 09:17 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-19 21:13 - 2013-02-10 12:41 - 00000000 ____D C:\ProgramData\PRICache
2013-12-19 21:12 - 2013-12-19 21:11 - 00000000 ___RD C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-19 21:12 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Startmenü
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Netzwerkumgebung
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Druckumgebung
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Documents\Eigene Musik
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\Documents\Eigene Bilder
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-19 21:11 - 2013-12-19 21:11 - 00000000 _SHDL C:\Users\Tobias\AppData\Local\Verlauf
2013-12-19 21:08 - 2013-02-10 11:04 - 00000000 __SHD C:\Recovery
2013-12-19 21:06 - 2013-12-19 21:06 - 00000000 ____D C:\WINDOWS\system32\sda
2013-12-19 21:03 - 2013-11-14 00:00 - 00000800 _____ C:\WINDOWS\PFRO.log
2013-12-19 21:01 - 2013-12-19 21:01 - 00000000 ____D C:\Windows.old
2013-12-19 21:01 - 2013-08-22 09:17 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-12-19 20:59 - 2013-12-19 20:59 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 05753688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 01381184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-12-19 20:59 - 2013-12-19 20:59 - 01270640 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 01261320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-12-19 20:59 - 2013-12-19 20:59 - 01159080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 01128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-19 20:59 - 2013-12-19 20:59 - 00478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00261464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-19 20:59 - 2013-12-19 20:59 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00120152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2013-12-19 20:59 - 2013-12-19 20:59 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2013-12-19 20:59 - 2013-12-19 20:59 - 00077144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-12-19 20:59 - 2013-12-19 20:59 - 00036696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-12-19 20:59 - 2013-12-19 20:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-19 20:59 - 2013-08-22 09:17 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-19 20:59 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\WinStore
2013-12-19 20:59 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-12-19 20:59 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\FileManager
2013-12-19 20:59 - 2013-08-22 09:17 - 00000000 ____D C:\WINDOWS\Camera
2013-12-19 20:58 - 2013-12-19 20:58 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 03494400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-19 20:58 - 2013-12-19 20:58 - 03423232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2013-12-19 20:58 - 2013-12-19 20:58 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2013-12-19 20:58 - 2013-12-19 20:58 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-12-19 20:58 - 2013-12-19 20:58 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-19 20:58 - 2013-12-19 20:58 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-19 20:58 - 2013-12-19 20:58 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-19 20:57 - 2013-12-19 20:57 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-12-19 20:55 - 2013-12-19 20:55 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2013-12-19 20:55 - 2013-12-19 20:55 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-12-19 20:55 - 2013-12-19 20:55 - 00000000 ____D C:\Program Files\MSBuild
2013-12-19 20:44 - 2013-12-19 08:56 - 00441865 _____ C:\WINDOWS\WindowsUpdate (1).log
2013-12-19 20:26 - 2013-02-10 10:54 - 00008192 __RSH C:\BOOTSECT.BAK
2013-12-19 19:39 - 2012-07-26 07:53 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-12-17 11:28 - 2013-09-30 22:20 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\vlc
2013-12-16 09:21 - 2013-12-16 09:06 - 57420430 _____ C:\Users\Tobias\Downloads\OODiskImage7ProfessionalGer.zip
2013-12-15 17:56 - 2013-03-24 20:12 - 00000000 ____D C:\Program Files\CCleaner
2013-12-14 10:27 - 2013-02-11 12:07 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-12 21:42 - 2012-07-26 05:17 - 00000188 _____ C:\WINDOWS\win.ini
2013-12-12 21:39 - 2013-08-14 18:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-12 21:38 - 2013-02-11 13:08 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-12 20:38 - 2013-04-30 09:06 - 00000000 ____D C:\Program Files\Recuva
2013-12-11 00:07 - 2013-12-11 00:07 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-07 23:28 - 2013-05-22 11:31 - 00880640 ___SH C:\Users\Tobias\Downloads\Thumbs.db
2013-12-04 21:38 - 2013-02-11 16:43 - 00000000 ____D C:\Program Files\Adobe Reader 11.0
2013-12-02 12:02 - 2013-02-11 10:20 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-28 13:09 - 2013-02-23 11:51 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Canon
2013-11-28 13:05 - 2013-02-23 11:46 - 00000000 ____D C:\Program Files\Canon
2013-11-28 13:04 - 2013-11-28 13:04 - 00000000 ___HD C:\ProgramData\CanonBJ
2013-11-28 13:03 - 2013-11-28 13:03 - 00000000 ___HD C:\Program Files\CanonBJ
2013-11-27 19:11 - 2013-08-02 07:58 - 00000000 ____D C:\Program Files\Samsung
2013-11-27 19:11 - 2013-07-15 15:18 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-11-27 19:09 - 2013-11-27 19:09 - 00000000 ___HD C:\ProgramData\CanonIJEPPEX2
2013-11-27 19:09 - 2013-11-27 19:09 - 00000000 ___HD C:\ProgramData\CanonEPP
2013-11-26 23:37 - 2013-08-27 09:02 - 00001948 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-11-26 23:37 - 2013-07-29 15:12 - 00000000 ____D C:\Users\Tobias\AppData\Local\Downloaded Installations
2013-11-26 23:16 - 2013-11-26 23:16 - 00000000 ____D C:\Program Files\MarkAny
2013-11-26 23:14 - 2013-08-02 09:58 - 00000000 ____D C:\Users\Tobias\Documents\SelfMV
2013-11-26 22:58 - 2013-11-26 22:58 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-26 22:57 - 2013-08-02 08:03 - 00000000 ____D C:\Users\Tobias\AppData\Roaming\Samsung
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe
[2013-11-14 09:11] - [2013-11-14 09:11] - 2065448 ____A (Microsoft Corporation) 1A0BC9598E4A58FC84570FFF5A108E58
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-19 21:03
==================== End Of Log ============================
--- --- ---
Addition: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-12-2013 02
Ran by Tobias at 2013-12-20 21:29:56
Running from C:\Users\Tobias\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
7-Zip 9.22beta
Adobe AIR (Version: 3.8.0.870)
Adobe Bridge 1.0 (Version: 001.000.001)
Adobe Common File Installer (Version: 1.00.001)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Help Center 1.0 (Version: 1.0.1)
Adobe Illustrator CS2 (Version: 12.000.000)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader XI (11.0.05) - Deutsch (Version: 11.0.05)
Adobe Stock Photos 1.0 (Version: 1.0.1)
Adobe SVG Viewer 3.0 (Version: 3.0)
Amazon MP3-Downloader 1.0.17 (Version: 1.0.17)
Auslogics Disk Defrag (Version: 3.6)
Canon MP Navigator EX 1.0
Canon MP610 series Benutzerregistrierung
Canon My Printer
CCleaner (Version: 3.28)
Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000)
Dropbox (HKCU Version: 2.0.22)
ElsterFormular (Version: 14.0.0.10960)
Intel(R) Processor Graphics (Version: 9.17.10.3347)
IrfanView (remove only) (Version: 4.35)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mobile Partner (Version: 16.002.03.04.800)
Mozilla Firefox 26.0 (x86 de) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MyMicroBalance (Version: 2.5.5)
PDFCreator (Version: 1.6.2)
Realtek Card Reader (Version: 6.2.9200.39052)
Recuva (Version: 1.46)
Samsung Kies (Version: 2.6.0.13074_14)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0)
Screenshot Captor 3.08.01
TrueCrypt (Version: 7.1a)
Unity Web Player (HKCU Version: )
VLC media player 2.0.8 (Version: 2.0.8)
==================== Restore Points =========================
==================== Hosts content: ==========================
2013-08-22 07:13 - 2013-08-22 07:13 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {00BC77BF-3352-4FE8-9617-4F1B27BEC19A} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {0107A273-B704-4C78-B48A-10045CCE5180} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-02-19] (Piriform Ltd)
Task: {17233BE9-87E9-40B0-B003-AE9D2B92CBBE} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {247BD142-0549-4E91-84B0-172C25563718} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {2BE65564-89D1-4396-A5CC-D7D9283FC4A1} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {392EB017-207C-42BF-A061-F3BE721F456C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {4B7EF56A-8A42-4BD2-BB5C-7C389AC54A37} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {5700ACE8-D0AF-4BA7-98B6-1033521A877A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {6E84A59B-1863-4B21-8BD8-C9B20FD15484} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {770D3655-0596-42F2-9C66-7C7139CFEC87} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {7C7CF1DA-F461-4850-96B2-ADCA8A67E59C} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {8B5819AE-7B44-478B-A3D3-8846AF160A8F} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {8B821DE3-C507-4892-9F68-B6C6B5B87EC9} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\System32\oobe\setupsqm.exe [2013-08-22] (Microsoft Corporation)
Task: {92ED6570-4654-4BFA-9A6C-1084C6939C16} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {997C8BBD-710B-4E66-B5BC-CC09575A58D2} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {A5D45ED3-F524-4574-8F39-527F3729D1E2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {C0D0F7C4-419F-41B3-90A2-FE79270B828A} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {CF5A1DDC-D14D-4D59-AD49-A19A645B087B} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DCF55BED-B1DF-4ABF-8D85-6542C7007799} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E4C8774A-2818-45A4-8A6D-11DDF6348886} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {F7217E62-6F97-491F-A19B-413BDD5879FF} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {FAB49829-3EE7-4234-BE84-277862F2A57C} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2003-07-11 02:09 - 2003-07-11 02:09 - 00048192 _____ () C:\Program Files\Common Files\Microsoft Shared\Web Folders\1031\nsextint.dll
2013-12-11 00:07 - 2013-12-11 00:07 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2012-12-14 02:02 - 2012-12-14 02:02 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2013-03-13 21:48 - 2013-03-13 21:48 - 24978944 _____ () C:\Users\Tobias\AppData\Roaming\Dropbox\bin\libcef.dll
2013-12-10 22:41 - 2013-12-10 22:41 - 16242056 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\WINDOWS\system32\Drivers\ew_usbenumfilter.sys:Microsoft_Appcompat_ReinstallUpgrade
AlternateDataStreams: C:\Users\Tobias\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/20/2013 08:50:02 PM) (Source: Application Hang) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1948
Startzeit: 01cefdbbd858eba1
Endzeit: 4294967295
Anwendungspfad: C:\WINDOWS\system32\backgroundTaskHost.exe
Berichts-ID: cc9a6008-69af-11e3-9716-c0143dd8b648
Vollständiger Name des fehlerhaften Pakets: Microsoft.BingSports_3.0.1.174_x86__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppexSports
Error: (12/20/2013 07:45:28 PM) (Source: Application Hang) (User: )
Description: Programm backgroundTaskHost.exe, Version 6.3.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1424
Startzeit: 01cefdaf45a1278b
Endzeit: 4294967295
Anwendungspfad: C:\WINDOWS\system32\backgroundTaskHost.exe
Berichts-ID: 39b4e754-69a3-11e3-9716-c0143dd8b648
Vollständiger Name des fehlerhaften Pakets: Microsoft.BingNews_3.0.1.174_x86__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: AppexNews
Error: (12/20/2013 05:13:27 PM) (Source: Application Hang) (User: )
Description: Programm LiveComm.exe, Version 17.4.9600.16384 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 18d4
Startzeit: 01cefd9c698f8ea7
Endzeit: 4294967295
Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x86__8wekyb3d8bbwe\LiveComm.exe
Berichts-ID: 5d57a572-6990-11e3-9716-c0143dd8b648
Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.4.9600.16384_x86__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
Error: (12/19/2013 10:57:59 PM) (Source: ESENT) (User: )
Description: WinMail (3408) WindowsMail0: Die Sicherung wurde abgebrochen, weil sie vom Client angehalten wurde, oder weil die Verbindung mit dem Client unterbrochen wurde.
Error: (12/19/2013 10:57:59 PM) (Source: ESENT) (User: )
Description: WinMail (3408) WindowsMail0: Fehler (-1032) während der Sicherung einer Datenbank (Datei C:\Users\Tobias\AppData\Local\Microsoft\Windows Mail\WindowsMail.MSMessageStore). Die Datenbank kann nicht wiederhergestellt werden.
Error: (12/19/2013 10:57:59 PM) (Source: ESENT) (User: )
Description: WinMail (3408) WindowsMail0: Versuch, Datei "C:\Users\Tobias\AppData\Local\Microsoft\Windows Mail\WindowsMail.pat" zu erstellen, ist mit Systemfehler 5 (0x00000005): "Zugriff verweigert " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Erstellen von Dateien.
Error: (12/19/2013 09:38:15 PM) (Source: Microsoft-Windows-Defrag) (User: )
Description: Das Volume "(C:)" wurde aufgrund eines Fehlers nicht optimiert: Falscher Parameter. (0x80070057)
Error: (12/19/2013 02:07:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: MACHTZENTRUM)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147023174. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/16/2013 08:32:43 AM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt.
Error: (12/14/2013 10:26:07 AM) (Source: Application Hang) (User: )
Description: Programm Minecraft.exe, Version 1.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1d00
Startzeit: 01cef8ae76bb170d
Endzeit: 23
Anwendungspfad: C:\Users\Tobias\AppData\Roaming\.minecraft\Minecraft.exe
Berichts-ID: ba7cc958-64a1-11e3-afd5-c0143dd8b648
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
System errors:
=============
Error: (12/20/2013 10:00:01 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (12/19/2013 09:22:40 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BranchCache" wurde mit dem folgenden dienstspezifischen Fehler beendet:
%%1260
Error: (12/19/2013 09:22:34 PM) (Source: NETLOGON) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.
Error: (12/19/2013 09:15:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DCService.exe" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Error: (12/19/2013 09:11:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" wurde mit dem folgenden dienstspezifischen Fehler beendet:
%%2148007941
Error: (12/19/2013 09:11:41 PM) (Source: Microsoft-Windows-Bits-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Starten des BITS-Dienstes. Fehler: 2148007941.
Error: (12/19/2013 09:11:41 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
Error: (12/19/2013 09:09:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet:
%%21
Error: (12/19/2013 09:09:41 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
Error: (12/19/2013 09:07:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde mit folgendem Fehler beendet:
%%21
Microsoft Office Sessions:
=========================
Error: (12/20/2013 08:50:02 PM) (Source: Application Hang)(User: )
Description: backgroundTaskHost.exe6.3.9600.16384194801cefdbbd858eba14294967295C:\WINDOWS\system32\backgroundTaskHost.execc9a6008-69af-11e3-9716-c0143dd8b648Microsoft.BingSports_3.0.1.174_x86__8wekyb3d8bbweAppexSports
Error: (12/20/2013 07:45:28 PM) (Source: Application Hang)(User: )
Description: backgroundTaskHost.exe6.3.9600.16384142401cefdaf45a1278b4294967295C:\WINDOWS\system32\backgroundTaskHost.exe39b4e754-69a3-11e3-9716-c0143dd8b648Microsoft.BingNews_3.0.1.174_x86__8wekyb3d8bbweAppexNews
Error: (12/20/2013 05:13:27 PM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.4.9600.1638418d401cefd9c698f8ea74294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x86__8wekyb3d8bbwe\LiveComm.exe5d57a572-6990-11e3-9716-c0143dd8b648microsoft.windowscommunicationsapps_17.4.9600.16384_x86__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
Error: (12/19/2013 10:57:59 PM) (Source: ESENT)(User: )
Description: WinMail3408WindowsMail0:
Error: (12/19/2013 10:57:59 PM) (Source: ESENT)(User: )
Description: WinMail3408WindowsMail0: -1032C:\Users\Tobias\AppData\Local\Microsoft\Windows Mail\WindowsMail.MSMessageStore
Error: (12/19/2013 10:57:59 PM) (Source: ESENT)(User: )
Description: WinMail3408WindowsMail0: C:\Users\Tobias\AppData\Local\Microsoft\Windows Mail\WindowsMail.pat-1032 (0xfffffbf8)5 (0x00000005)Zugriff verweigert
Error: (12/19/2013 09:38:15 PM) (Source: Microsoft-Windows-Defrag)(User: )
Description: (C:)Falscher Parameter. (0x80070057)
Error: (12/19/2013 02:07:57 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: MACHTZENTRUM)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147023174
Error: (12/16/2013 08:32:43 AM) (Source: Desktop Window Manager)(User: )
Description: 0x8898008d
Error: (12/14/2013 10:26:07 AM) (Source: Application Hang)(User: )
Description: Minecraft.exe1.0.0.01d0001cef8ae76bb170d23C:\Users\Tobias\AppData\Roaming\.minecraft\Minecraft.exeba7cc958-64a1-11e3-afd5-c0143dd8b648
==================== Memory info ===========================
Percentage of memory in use: 55%
Total physical RAM: 3238.36 MB
Available physical RAM: 1445.82 MB
Total Pagefile: 4582.36 MB
Available Pagefile: 2413 MB
Total Virtual: 2047.88 MB
Available Virtual: 1864.27 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.88 GB) (Free:179.56 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Daten) (Fixed) (Total:232.88 GB) (Free:175.35 GB) NTFS
Drive f: (ROYAL SCOTS) (Removable) (Total:1.95 GB) (Free:1.8 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: C3FFC3FF)
Partition 1: (Active) - (Size=233 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=233 GB) - (Type=OF Extended)
========================================================
Disk: 1 (Size: 2 GB) (Disk ID: A21645D0)
Partition 1: (Active) - (Size=2 GB) - (Type=06)
==================== End Of Log ============================
Beau |
Regeln zum Ablauf der Bereinigung
FRST 32-Bit | FRST 64-Bit
