3 Tabs werden in Chrome geöffnet
Hallo, ich habe das hier befolgt und ein ähnliches Problem http://www.trojaner-board.de/153860-...hinweisen.html
Es ist ein relativ neu aufgesetzter win8.1 Rechner Acer 64bit, 32bit win mit Bing. Ich habe von Anfang an in srwareIron (chrome) das Problem, dass bei anklicken eines Weblinks sich gleich 3 Tabs öffnen. da ich relativ gut gegen Werbung geschützt bin durch die Hosts Datei, kommt zwar keine Werbung durch, aber lästig ist es trotzdem. Der erste Tab hat ein - in der Adresszeile, der zweite will den Cache öffnen, das gelingt aber nicht, es kommt aber ein Icon von T-Online davor. Und der dritte zeigt die angeklickte URL an. Es ist mir wohl gelungen diesen Effekt bei einfachen Weblinks zu eliminieren, aber in Alert-Boxen u Hinweisblasen des Betriebsssystems führt das Anklicken eines Links zu dem beschriebenen Effekt.
Die Suchläufe haben schon folgendes entfernt:
Malewarebyte: Code:
Registrierungsschlüssel: 1
Security.Hijack, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\avnotify.exe, In Quarantäne, [91b96bae6a206dc981b744036e96ed13],
Code:
Registrierungsdaten: 1
PUM.Hijack.HomePageControl, HKU\S-1-5-21-2704919929-3204641014-941289941-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\POLICIES\MICROSOFT\INTERNET EXPLORER\CONTROL PANEL|Homepage, 1, Gut: (0), Schlecht: (1),Löschen bei Neustart,[555432f0b1d93ef8c55cb52513f22cd4]
JRT: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.3 (03.01.2015:1)
OS: Windows 8.1 Connected x86
Ran by spiesarchiv on 08.03.2015 at 12:35:09,44
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
Successfully deleted: [File] C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2704919929-3204641014-941289941-1001
Successfully deleted: [File] C:\windows\System32\Tasks\Driver Booster Scan
Successfully deleted: [File] C:\windows\System32\Tasks\Driver Booster SkipUAC (spiesarchiv)
Successfully deleted: [File] C:\windows\System32\Tasks\Driver Booster Update
Successfully deleted: [File] C:\windows\prefetch\DRIVERBOOSTER.EXE-D482C02E.pf
~~~ Folders
Successfully deleted: [Folder] "C:\Program Files\hosts"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08.03.2015 at 12:39:24,31
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST:
Frst.txt Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-03-2015
Ran by spiesarchiv (administrator) on SWITCH on 07-03-2015 22:24:06
Running from C:\Program Files\FaberRecoveryScan
Loaded Profiles: spiesarchiv (Available profiles: spiesarchiv)
Platform: Microsoft Windows 8.1 mit Bing (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Kingsoft Corporation) C:\Program Files\cmcm\Clean Master\cmcore.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(IObit) C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Secunia) C:\Program Files\Secunia\PSI\psia.exe
(Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE
(StarWind Software) C:\Program Files\RAM Disk\StarRAMService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 5\Integrator.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files\DSL Soforthilfe\DSL_Soforthilfe.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 5\memdefrag.exe
(Nenad Hrg SoftwareOK) C:\Program Files\Tools\DesktopOK.exe
(Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe
( ) C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Acer Incorporated) C:\Program Files\Acer\Screen Grasp\GestureDetection.exe
(Acer Incorporated) C:\Program Files\Acer\Screen Grasp\Launch Screen Grasp.exe
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(FreeDownloadManager.ORG) C:\Program Files\Free Download Manager\Chrome\fdm_nativehost.exe
(SRWare) C:\Program Files\SRWare Iron\chrome.exe
(eM Client, Inc.) C:\Program Files\eM Client\MailClient.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\windows\System32\DptfPolicyLpmServiceHelper.exe [81336 2014-05-08] (Intel Corporation)
HKLM\...\Run: [RtkNGUI] => C:\Program Files\Realtek\Audio\AP\RtkNGUI.exe [7761920 2014-09-22] (Realtek Semiconductor)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [702768 2014-11-24] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [126712 2014-12-31] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [448856 2014-11-17] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [DSL Soforthilfe] => C:\Program Files\DSL Soforthilfe\DSL_Soforthilfe.exe [20585888 2013-11-21] ()
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-03-02] (Glarysoft Ltd)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\...\Run: [Glary Memory Optimizer] => C:\Program Files\Glary Utilities 5\memdefrag.exe [122656 2015-03-02] (Glarysoft Ltd)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\...\Run: [eM Client] => C:\Program Files\eM Client\MailClient.exe [15612200 2014-12-22] (eM Client, Inc.)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\...\Run: [DesktopOK] => C:\Program Files\Tools\DesktopOK.exe [174080 2014-12-23] (Nenad Hrg SoftwareOK)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Bubbles.scr [780288 2013-08-22] (Microsoft Corporation)
IFEO\apnstub.exe: [Debugger] dllhost.exe
IFEO\ipmgui.exe: [Debugger] dllhost.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility.exe ( )
BootExecute: autocheck autochk *
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\Software\Microsoft\Internet Explorer\Main,Start Page = google.de
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll [2015-01-27] (IObit)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-22] (Oracle Corporation)
BHO: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files\Free Download Manager\iefdm2.dll [2014-11-13] (FreeDownloadManager.ORG)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-22] (Oracle Corporation)
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-07] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\windows\system32\Adobe\Director\np32dsw_1216156.dll [2015-01-09] (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-11-21] (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-22] (Oracle Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.450 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll [2010-02-15] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.448 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll [2010-02-15] (RealNetworks, Inc.)
FF HKLM\...\Firefox\Extensions: [fdm_ffext@freedownloadmanager.org] - C:\Program Files\Free Download Manager\Firefox\Extension
FF Extension: Free Download Manager plugin - C:\Program Files\Free Download Manager\Firefox\Extension [2015-01-27]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [431920 2014-11-24] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [178424 2014-12-31] (Avira Operations GmbH & Co. KG)
R2 BTDevManager; C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe [70144 2014-03-12] () [File not signed]
R2 cmcore; c:\program files\cmcm\Clean Master\cmcore.exe [315240 2015-01-27] (Kingsoft Corporation)
S3 cphs; C:\windows\system32\IntelCpHeciSvc.exe [280680 2014-12-29] (Intel Corporation)
R2 DptfParticipantProcessorService; C:\windows\system32\DptfParticipantProcessorService.exe [83384 2014-05-08] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\windows\system32\DptfPolicyCriticalService.exe [97208 2014-05-08] (Intel Corporation)
R2 DptfPolicyLpmService; C:\windows\system32\DptfPolicyLpmService.exe [90552 2014-05-08] (Intel Corporation)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [1974504 2014-07-22] (Acer Incorporated)
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [280680 2014-12-29] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2635552 2015-01-27] (IObit)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [452840 2014-12-30] (Acer Incorporate)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169800 2014-04-04] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [179600 2014-04-04] (McAfee, Inc.)
S3 SandraAgentSrv; C:\Program Files\SiSoftware Sandra Lite 2015x\RpcAgentSrv.exe [73200 2014-12-17] (SiSoftware) [File not signed]
S3 ScDeviceEnum; C:\windows\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation)
R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1363160 2014-11-28] (Secunia)
R2 StarRAMService; C:\Program Files\RAM Disk\StarRAMService.exe [89088 2010-03-29] (StarWind Software) [File not signed]
R2 TouchToolsLaunchService; C:\Program Files\Acer\Acer Touch Tools\TouchToolsLaunchSvc.exe [247040 2014-12-29] (Acer Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [288128 2014-09-22] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\windows\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22192 2014-09-22] (Microsoft Corporation)
S3 workfolderssvc; C:\windows\system32\workfolderssvc.dll [1222144 2014-07-24] (Microsoft Corporation)
S2 McAfee SiteAdvisor Service; c:\PROGRA~1\mcafee\siteadvisor\mcsacore.exe [X]
S2 mfecore; "C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 ACC_SensorDriver; C:\windows\System32\drivers\ACC_SensorDriver.sys [12800 2014-12-29] (Intel Corporation)
S3 ALS_SensorDriver; C:\windows\System32\drivers\ALS_SensorDriver.sys [11264 2014-12-29] (Intel Corporation)
R2 avgntflt; C:\windows\System32\DRIVERS\avgntflt.sys [98160 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\windows\system32\DRIVERS\avipbb.sys [136216 2014-11-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\windows\system32\DRIVERS\avkmgr.sys [37352 2014-11-24] (Avira Operations GmbH & Co. KG)
S3 AX88179; C:\windows\system32\DRIVERS\ax88179_178a.sys [60816 2013-07-08] (ASIX Electronics Corp.)
R1 BasicRender; C:\windows\System32\drivers\BasicRender.sys [25600 2014-03-18] (Microsoft Corporation)
S3 BCMSDH43XX; C:\windows\system32\DRIVERS\bcmdhd63.sys [296664 2013-08-13] (Broadcom Corp)
R3 BthLEEnum; C:\windows\system32\DRIVERS\BthLEEnum.sys [186880 2014-03-18] (Microsoft Corporation)
R3 BthMini; C:\windows\System32\Drivers\BTHMINI.sys [24064 2013-08-22] (Microsoft Corporation)
R3 camera; C:\windows\system32\DRIVERS\camera.sys [462336 2014-12-29] (Intel Corporation)
S3 cfwids; C:\windows\System32\drivers\cfwids.sys [61400 2014-04-04] (McAfee, Inc.)
R3 CM3218x; C:\windows\system32\DRIVERS\WUDFRd.sys [188416 2014-12-29] (Microsoft Corporation)
R3 CPLMACPI; C:\windows\system32\DRIVERS\CPLMACPI.sys [16488 2014-12-29] (Capella Microsystems, Inc.)
S3 DptfDevAmbient; C:\windows\System32\drivers\DptfDevAmbient.sys [44472 2014-05-08] (Intel Corporation)
R3 DptfDevDBPT; C:\windows\System32\drivers\DptfDevPower.sys [25528 2014-05-08] (Intel Corporation)
R3 DptfDevDisplay; C:\windows\System32\drivers\DptfDevDisplay.sys [28088 2014-05-08] (Intel Corporation)
R3 DptfDevGen; C:\windows\System32\drivers\DptfDevGen.sys [36280 2014-05-08] (Intel Corporation)
R3 DptfDevProc; C:\windows\System32\drivers\DptfDevProc.sys [80824 2014-05-08] (Intel Corporation)
R3 DptfManager; C:\windows\System32\drivers\DptfManager.sys [182200 2014-05-08] (Intel Corporation)
R3 GPIO; C:\windows\System32\drivers\iaiogpioe.sys [23552 2014-05-05] (Intel Corporation)
R3 GpioVirtual; C:\windows\System32\drivers\iaiogpiovirtual.sys [16896 2014-03-22] (Intel Corporation)
R1 GUBootStartup; C:\windows\System32\drivers\GUBootStartup.sys [17344 2015-02-02] (Glarysoft Ltd)
S3 GYRO_SensorDriver; C:\windows\System32\drivers\GYRO_SensorDriver.sys [12800 2014-12-29] (Intel Corporation)
R1 HWiNFO32; C:\windows\system32\drivers\HWiNFO32.SYS [23840 2015-01-24] (REALiX(tm))
R3 iaioi2c; C:\windows\System32\drivers\iaioi2ce.sys [58368 2014-03-22] (Intel Corporation)
R3 iaiouart; C:\windows\System32\drivers\iaiouart.sys [87552 2015-01-24] (Intel Corporation)
S3 intaud_WaveExtensible; C:\windows\system32\drivers\intelaud.sys [32152 2014-12-29] (Intel Corporation)
R3 IntelSST; C:\windows\system32\drivers\isstrtc.sys [257024 2014-12-29] (Intel(R) Corporation)
R3 INVN_MotionApps; C:\windows\system32\DRIVERS\WUDFRd.sys [188416 2014-12-29] (Microsoft Corporation)
R3 iwdbus; C:\windows\System32\drivers\iwdbus.sys [23448 2014-12-29] (Intel Corporation)
R3 ksapi; C:\windows\system32\drivers\ksapi.sys [81768 2015-01-27] (Kingsoft Corporation)
R3 LMDriver; C:\windows\System32\drivers\LMDriver.sys [18232 2014-12-29] (Acer Incorporated)
S3 MAG_SensorDriver; C:\windows\System32\drivers\MAG_SensorDriver.sys [12288 2014-12-29] (Intel Corporation)
R0 MBI; C:\windows\System32\drivers\MBI.sys [21968 2014-03-16] (Intel Corporation)
S3 mfeapfk; C:\windows\System32\drivers\mfeapfk.sys [134600 2014-04-04] (McAfee, Inc.)
R3 mfeavfk; C:\windows\System32\drivers\mfeavfk.sys [236672 2014-04-04] (McAfee, Inc.)
S3 mfebopk; C:\windows\System32\drivers\mfebopk.sys [66408 2014-04-04] (McAfee, Inc.)
S0 mfeelamk; C:\windows\System32\drivers\mfeelamk.sys [58376 2014-04-04] (McAfee, Inc.)
R3 mfefirek; C:\windows\System32\drivers\mfefirek.sys [367776 2014-04-04] (McAfee, Inc.)
R0 mfehidk; C:\windows\System32\drivers\mfehidk.sys [574576 2014-04-04] (McAfee, Inc.)
R3 mfencbdc; C:\windows\system32\DRIVERS\mfencbdc.sys [345584 2014-03-18] (McAfee, Inc.)
S3 mfencrk; C:\windows\system32\DRIVERS\mfencrk.sys [81264 2014-03-18] (McAfee, Inc.)
R0 mfewfpk; C:\windows\System32\drivers\mfewfpk.sys [215624 2014-04-04] (McAfee, Inc.)
R3 ov2722; C:\windows\System32\drivers\ov2722.sys [49152 2014-12-29] (Intel Corporation)
R3 PMIC; C:\windows\System32\drivers\PMIC.sys [48128 2014-03-16] (Intel Corporation)
R3 PSI; C:\windows\System32\DRIVERS\psi_mf_x86.sys [16024 2014-11-28] (Secunia)
R3 RadioShim; C:\windows\System32\drivers\RadioShim.sys [13112 2014-12-29] (Acer Incorporated)
R3 rtii2sac; C:\windows\system32\DRIVERS\rtii2sac.sys [174808 2014-12-29] (Realtek Semiconductor Corp.)
R3 RtkUart; C:\windows\System32\drivers\RtkUart.sys [507608 2014-12-29] (Realtek Semiconductor Corporation)
R3 RtlWlans; C:\windows\system32\DRIVERS\rtwlans.sys [2748120 2014-07-18] (Realtek Semiconductor Corporation )
S3 SANDRA; C:\Program Files\SiSoftware Sandra Lite 2015x\WNt600x86\Sandra.sys [23112 2009-08-07] (SiSoftware)
S3 SensorFusion; C:\windows\System32\drivers\HIDFusion.sys [52736 2014-12-29] (Intel Corporation)
R3 SensorsServiceDriver; C:\windows\system32\DRIVERS\WUDFRd.sys [188416 2014-12-29] (Microsoft Corporation)
S3 Spyder4; C:\windows\System32\drivers\dccmtr.sys [12288 2011-06-02] (Datacolor)
S1 ssmdrv; C:\windows\system32\DRIVERS\ssmdrv.sys [28520 2014-11-24] (Avira GmbH)
R1 StarRAM; C:\windows\System32\drivers\StarRAM.sys [54744 2010-03-29] (StarWind Software)
R3 SynRMIHID; C:\windows\System32\drivers\SynRMIHID.sys [36080 2014-02-20] (Synaptics Incorporated)
R3 TXEI; C:\windows\System32\drivers\TXEI.sys [75792 2015-01-24] (Intel Corporation)
S3 WdNisDrv; C:\windows\System32\Drivers\WdNisDrv.sys [84800 2014-09-22] (Microsoft Corporation)
R0 Wof; C:\windows\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation)
U4 RAMDiskVE; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-07 22:21 - 2015-03-07 22:24 - 00000000 ____D () C:\Program Files\FaberRecoveryScan
2015-03-06 02:22 - 2015-03-06 02:22 - 00002149 _____ () C:\Users\spiesarchiv\Desktop\Spyder4Express 4.5.4.lnk
2015-03-06 02:22 - 2015-03-06 02:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Datacolor
2015-03-06 02:22 - 2008-01-30 17:36 - 00090112 _____ (MindVision Software) C:\windows\unvise32.exe
2015-03-06 02:21 - 2015-03-06 02:22 - 00000000 ____D () C:\Program Files\Datacolor
2015-03-04 00:49 - 2015-03-06 15:33 - 00001027 _____ () C:\windows\setupact.log
2015-03-04 00:49 - 2015-03-04 00:49 - 00404976 _____ () C:\windows\system32\FNTCACHE.DAT
2015-03-04 00:49 - 2015-03-04 00:49 - 00000000 _____ () C:\windows\setuperr.log
2015-03-04 00:06 - 2015-03-04 00:07 - 00000000 ____D () C:\Program Files\Tools
2015-03-03 17:03 - 2015-03-03 17:06 - 00000000 ____D () C:\Program Files\TempClean
2015-03-03 17:01 - 2015-03-03 17:01 - 00448512 _____ (OldTimer Tools) C:\Users\spiesarchiv\Desktop\TFC.exe
2015-03-03 16:00 - 2015-03-03 16:08 - 00000000 ____D () C:\ProgramData\TEMP
2015-03-03 16:00 - 2015-03-03 16:07 - 00000000 ____D () C:\Program Files\SpywareBlaster
2015-03-03 16:00 - 2015-03-03 16:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2015-03-03 16:00 - 2015-03-03 16:00 - 00000000 ____D () C:\ProgramData\Licenses
2015-03-03 16:00 - 2011-11-04 05:13 - 01070352 _____ (Microsoft Corporation) C:\windows\system32\MSCOMCTL.OCX
2015-03-03 16:00 - 2009-03-24 12:52 - 00129872 _____ (Microsoft Corporation) C:\windows\system32\MSSTDFMT.DLL
2015-03-03 15:58 - 2015-03-03 15:58 - 00001047 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2015-03-03 15:58 - 2015-03-03 15:58 - 00000000 ____D () C:\Program Files\Secunia
2015-03-03 15:46 - 2015-03-03 17:54 - 00001864 _____ () C:\Users\spiesarchiv\Desktop\Deinstall.jpg.lnk
2015-03-03 15:45 - 2015-03-03 15:45 - 00000000 ____D () C:\Program Files\Delfix
2015-03-03 15:43 - 2015-03-03 15:43 - 00000523 ____C () C:\DelFix.txt
2015-03-03 15:43 - 2015-03-03 15:43 - 00000000 ____D () C:\windows\ERUNT
2015-03-03 13:55 - 2015-03-03 13:55 - 00001621 _____ () C:\Users\spiesarchiv\Desktop\JRT.txt
2015-03-03 13:53 - 2015-03-03 13:58 - 00000000 ____D () C:\Program Files\JRT
2015-03-03 00:50 - 2015-03-03 00:52 - 00035317 _____ () C:\Users\spiesarchiv\Downloads\Addition.txt
2015-03-03 00:49 - 2015-03-03 00:52 - 00043947 _____ () C:\Users\spiesarchiv\Downloads\FRST.txt
2015-03-03 00:48 - 2015-03-07 22:24 - 00000000 ___DC () C:\FRST
2015-03-03 00:47 - 2015-03-03 00:47 - 00000567 _____ () C:\Users\spiesarchiv\Desktop\Download.lnk
2015-03-03 00:38 - 2015-03-03 00:38 - 01132032 _____ (Farbar) C:\Users\spiesarchiv\Downloads\FRST.exe
2015-03-02 00:17 - 2015-03-02 00:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOfficeDev 4.4
2015-03-02 00:16 - 2015-03-02 00:16 - 00000000 ____D () C:\Program Files\LibreOfficeDev 4
2015-03-01 17:21 - 2014-11-17 21:23 - 00529352 _____ (Microsoft Corporation) C:\windows\system32\MDMAgent.exe
2015-03-01 17:21 - 2014-11-17 21:23 - 00224168 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlows.exe
2015-03-01 17:21 - 2014-11-14 06:04 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsDatabase.dll
2015-03-01 17:21 - 2014-11-14 06:01 - 00366592 _____ (Microsoft Corporation) C:\windows\system32\SystemSettings.Handlers.dll
2015-03-01 17:21 - 2014-11-14 05:55 - 01619968 _____ (Microsoft Corporation) C:\windows\system32\SystemSettingsAdminFlowUI.dll
2015-03-01 17:21 - 2014-11-14 05:53 - 00790528 _____ (Microsoft Corporation) C:\windows\system32\MrmCoreR.dll
2015-03-01 17:21 - 2014-11-14 05:51 - 02241024 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers.dll
2015-02-28 22:42 - 2015-02-28 22:42 - 130961408 _____ () C:\Users\spiesarchiv\Downloads\libo-44~2015-02-28_20.24.37_LibreOfficeDev_4.4.2.0.0_Win_x86.msi
2015-02-28 12:57 - 2015-03-07 22:23 - 00000000 ____D () C:\Users\spiesarchiv\Desktop\Service
2015-02-28 11:26 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-02-28 11:26 - 2015-01-19 19:36 - 01192552 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2015-02-28 11:26 - 2014-10-13 03:37 - 00108864 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2015-02-28 11:26 - 2014-10-11 01:53 - 03607040 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2015-02-28 11:26 - 2014-10-08 07:44 - 00089600 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2015-02-28 11:26 - 2014-10-08 07:27 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2015-02-28 11:26 - 2014-10-08 06:19 - 02459136 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2015-02-28 11:26 - 2014-04-16 00:35 - 00028352 _____ (Microsoft Corporation) C:\windows\system32\aspnet_counters.dll
2015-02-28 11:25 - 2014-12-19 09:25 - 00602776 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2015-02-28 11:25 - 2014-12-13 22:29 - 00513488 _____ () C:\windows\system32\locale.nls
2015-02-28 11:25 - 2014-12-09 00:11 - 00391526 _____ () C:\windows\system32\ApnDatabase.xml
2015-02-28 11:25 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\windows\system32\DeviceSetupStatusProvider.dll
2015-02-28 11:25 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2015-02-28 11:25 - 2014-10-29 02:04 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\Windows.Globalization.dll
2015-02-28 11:25 - 2014-10-29 02:04 - 00200704 _____ (Microsoft Corporation) C:\windows\system32\GlobCollationHost.dll
2015-02-27 10:25 - 2015-03-01 16:11 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\Familienbande
2015-02-27 10:25 - 2015-02-27 10:25 - 00001472 _____ () C:\Users\spiesarchiv\Desktop\Familienbande.lnk
2015-02-27 10:20 - 2015-02-27 23:34 - 00000000 ____D () C:\Program Files\Familienbande
2015-02-22 19:51 - 2015-02-22 20:00 - 33782255 _____ () C:\Users\spiesarchiv\Downloads\Wireless LAN_Broadcom_5.93.99.204_W81x86_A.zip
2015-02-22 19:10 - 2015-02-22 19:11 - 00000000 ____D () C:\Users\spiesarchiv\Documents\Archiv
2015-02-22 17:52 - 2015-02-22 17:52 - 00000000 ____D () C:\windows\Sun
2015-02-22 17:14 - 2015-02-22 17:14 - 00096680 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2015-02-22 17:14 - 2015-02-22 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-02-22 17:14 - 2015-02-22 17:14 - 00000000 ____D () C:\Program Files\Common Files\Java
2015-02-22 17:13 - 2015-02-22 17:13 - 00001090 _____ () C:\Users\spiesarchiv\Desktop\notepad.exe.lnk
2015-02-22 17:13 - 2015-02-22 17:13 - 00000000 ____D () C:\Program Files\Java
2015-02-22 17:02 - 2015-02-22 17:03 - 00676624 _____ (RealNetworks, Inc.) C:\Users\spiesarchiv\Downloads\RealPlayer_de.exe
2015-02-17 14:13 - 2015-02-17 14:19 - 00000000 ____D () C:\ProgramData\mquadr.at
2015-02-17 14:10 - 2015-02-17 14:12 - 00000000 __HDC () C:\ProgramData\{CD3330DC-8B86-4AE3-B2E4-09E56CB3E702}
2015-02-17 14:10 - 2015-02-17 14:10 - 00001139 _____ () C:\Users\spiesarchiv\AppData\Roaming\Microsoft\Windows\Start Menu\DSL Soforthilfe.lnk
2015-02-17 14:10 - 2015-02-17 14:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\o2
2015-02-17 14:10 - 2015-02-17 14:10 - 00000000 ____D () C:\Program Files\DSL Soforthilfe
2015-02-17 14:10 - 2013-11-21 21:56 - 03748800 ____N (mquadr.at software engineering und consulting GmbH) C:\windows\system32\M2ElevatedCalls.dll
2015-02-17 14:10 - 2013-11-21 21:56 - 00962528 ____N (mquadr.at software engineering) C:\windows\system32\M2ElevatedNetworkAdapters.dll
2015-02-17 14:10 - 2012-12-03 14:57 - 00238592 ____N (Nicomsoft Ltd.) C:\windows\system32\WiFiMan.dll
2015-02-15 11:38 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-02-15 11:38 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-02-15 11:38 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-02-15 11:38 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-02-15 11:38 - 2015-01-12 02:55 - 00664064 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-02-15 11:38 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-02-15 11:38 - 2015-01-12 02:34 - 00128000 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2015-02-15 11:38 - 2015-01-12 02:30 - 00880128 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2015-02-15 11:38 - 2015-01-12 02:25 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2015-02-15 11:38 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-02-15 11:38 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-02-15 11:38 - 2015-01-12 02:23 - 00684544 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-02-15 11:38 - 2015-01-12 02:23 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-02-15 11:38 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-02-15 11:38 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-02-15 11:38 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-02-15 11:38 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-02-15 11:37 - 2015-01-15 23:37 - 00478776 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2015-02-15 11:37 - 2015-01-15 23:37 - 00148288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-02-15 11:37 - 2015-01-13 23:04 - 01489072 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2015-02-15 11:37 - 2015-01-10 09:28 - 05769024 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-02-15 11:37 - 2015-01-10 09:28 - 01468408 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-02-15 11:37 - 2015-01-10 08:38 - 03550720 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-02-15 11:37 - 2015-01-10 07:38 - 00359424 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-02-15 11:37 - 2014-12-09 04:45 - 00393728 _____ (Microsoft Corporation) C:\windows\system32\scesrv.dll
2015-02-15 11:37 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2015-02-15 11:37 - 2014-10-29 03:06 - 00736768 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-02-15 11:37 - 2014-10-29 03:06 - 00154112 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-02-15 11:37 - 2014-10-29 02:03 - 01117696 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-02-12 18:46 - 2015-02-12 18:46 - 00001401 _____ () C:\Users\spiesarchiv\Desktop\Em-Client.lnk
2015-02-12 18:21 - 2015-03-07 13:08 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\eM Client
2015-02-12 18:17 - 2015-02-12 18:17 - 00000940 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2015-02-12 18:17 - 2015-02-12 18:17 - 00000000 ____D () C:\Program Files\eM Client
2015-02-08 23:40 - 2015-02-08 23:40 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\Apple Computer
2015-02-08 23:28 - 2015-02-08 23:28 - 00000000 ___SD () C:\Program Files\SiSoftware Sandra Lite 2015x
2015-02-08 23:28 - 2015-02-08 23:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiSoftware
2015-02-08 23:28 - 2014-12-12 14:11 - 14397440 _____ () C:\Users\spiesarchiv\AppData\Roaming\Sandra.mdb
2015-02-07 23:41 - 2015-02-07 23:41 - 00000000 ____D () C:\ProgramData\GlarySoft
2015-02-07 23:33 - 2015-02-08 23:40 - 00000000 ____D () C:\Users\spiesarchiv\Desktop\Media
2015-02-07 23:31 - 2015-02-07 23:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Real Alternative
2015-02-07 23:31 - 2015-02-07 23:31 - 00000000 ____D () C:\Program Files\Real Alternative
2015-02-07 23:31 - 2010-02-15 19:00 - 00278528 _____ (Real Networks, Inc) C:\windows\system32\pncrt.dll
2015-02-07 23:31 - 2010-02-15 19:00 - 00185920 _____ (RealNetworks, Inc.) C:\windows\system32\rmoc3260.dll
2015-02-07 23:31 - 2010-02-15 19:00 - 00006656 _____ (RealNetworks, Inc.) C:\windows\system32\pndx5016.dll
2015-02-07 23:31 - 2010-02-15 19:00 - 00005632 _____ (RealNetworks, Inc.) C:\windows\system32\pndx5032.dll
2015-02-07 23:31 - 2004-01-11 23:00 - 00348160 _____ (Microsoft Corporation) C:\windows\system32\msvcr71.dll
2015-02-07 23:31 - 2003-03-19 04:14 - 00499712 _____ (Microsoft Corporation) C:\windows\system32\msvcp71.dll
2015-02-07 23:02 - 2015-02-07 23:07 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\DivX
2015-02-07 23:02 - 2015-02-07 23:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2015-02-07 23:02 - 2015-02-07 23:02 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2015-02-07 22:46 - 2015-02-07 22:46 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\Real
2015-02-07 22:35 - 2015-02-07 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-02-07 22:35 - 2015-02-07 22:35 - 00000000 ____D () C:\ProgramData\Apple Computer
2015-02-07 22:35 - 2015-02-07 22:35 - 00000000 ____D () C:\Program Files\QuickTime
2015-02-07 22:34 - 2015-02-07 22:34 - 00002535 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-02-07 22:34 - 2015-02-07 22:34 - 00000000 ____D () C:\ProgramData\Apple
2015-02-07 22:34 - 2015-02-07 22:34 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-02-07 22:34 - 2015-02-07 22:34 - 00000000 ____D () C:\Program Files\Apple Software Update
2015-02-07 22:10 - 2015-02-07 23:03 - 00000000 ____D () C:\Program Files\DivX
2015-02-07 22:09 - 2015-02-07 23:05 - 00000000 ____D () C:\ProgramData\DivX
2015-02-07 21:48 - 2015-03-07 21:55 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-03-07 22:00 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\system32\sru
2015-03-07 21:36 - 2015-01-24 22:06 - 01997481 _____ () C:\windows\WindowsUpdate.log
2015-03-06 20:12 - 2014-03-18 08:40 - 01776918 _____ () C:\windows\system32\PerfStringBackup.INI
2015-03-06 15:34 - 2015-02-02 01:02 - 00000348 _____ () C:\windows\Tasks\GlaryInitialize 5.job
2015-03-06 15:34 - 2015-02-02 01:02 - 00000000 ____D () C:\Program Files\Glary Utilities 5
2015-03-06 15:33 - 2015-01-24 22:16 - 00000000 ____D () C:\Users\spiesarchiv
2015-03-06 15:33 - 2013-08-22 08:23 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2015-03-06 05:59 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\Microsoft.NET
2015-03-06 01:48 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\system32\NDF
2015-03-05 05:40 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\AppReadiness
2015-03-04 22:21 - 2014-10-17 02:52 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-03-04 01:17 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\rescache
2015-03-04 00:48 - 2013-08-22 07:13 - 00262144 ___SH () C:\windows\system32\config\BBI
2015-03-03 23:18 - 2015-01-27 22:38 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\Free Download Manager
2015-03-03 22:50 - 2014-10-17 02:51 - 00000000 __HDC () C:\OEM
2015-03-03 22:49 - 2014-10-17 02:52 - 00000000 ____D () C:\Program Files\Acer
2015-03-03 21:29 - 2013-08-22 09:05 - 00000000 ____D () C:\windows\CbsTemp
2015-03-03 20:48 - 2015-02-03 22:38 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\Foxit Software
2015-03-03 20:41 - 2014-10-17 02:52 - 00000000 ____D () C:\ProgramData\OEM
2015-03-03 20:23 - 2015-01-27 21:24 - 00000292 _____ () C:\windows\Tasks\Uninstaller_SkipUac_spiesarchiv.job
2015-03-03 13:33 - 2015-02-02 01:02 - 00001066 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-03-03 13:25 - 2013-08-22 09:17 - 00000000 ___RD () C:\windows\ImmersiveControlPanel
2015-03-03 13:25 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\system32\de-DE
2015-03-03 13:24 - 2015-02-01 21:48 - 00000000 ___DC () C:\AdwCleaner
2015-03-03 11:27 - 2015-02-01 22:09 - 00114904 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2015-03-03 00:28 - 2015-01-24 20:20 - 00000000 ____D () C:\ProgramData\ProductData
2015-03-02 00:52 - 2015-01-25 05:29 - 00000000 ____D () C:\Program Files\SRWare Iron
2015-02-28 23:37 - 2013-08-22 09:17 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-02-28 11:41 - 2015-01-27 21:11 - 00000000 ____D () C:\windows\system32\MRT
2015-02-28 11:32 - 2015-01-27 21:11 - 113756392 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-02-22 17:15 - 2015-01-29 00:24 - 00000000 ____D () C:\ProgramData\Oracle
2015-02-22 16:59 - 2015-02-01 18:37 - 00000000 ____D () C:\ProgramData\{fa9afc74-19df-1381-fa9a-afc7419df1d0}
2015-02-18 13:41 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\system32\sr-Latn-RS
2015-02-18 13:41 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\system32\sr-Latn-CS
2015-02-15 11:39 - 2015-02-02 01:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-02-09 12:06 - 2015-01-24 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2
2015-02-07 23:37 - 2015-02-01 21:15 - 00000000 ____D () C:\Users\spiesarchiv\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Download.am
2015-02-07 17:35 - 2013-08-22 09:17 - 00000000 ____D () C:\windows\system32\LogFiles
==================== Files in the root of some directories =======
2015-02-08 23:28 - 2014-12-12 14:11 - 14397440 _____ () C:\Users\spiesarchiv\AppData\Roaming\Sandra.mdb
2015-03-03 22:56 - 2015-03-03 22:59 - 0008665 _____ () C:\Users\spiesarchiv\AppData\Local\HWVendorDetection.log
2015-01-28 16:08 - 2015-01-28 16:08 - 0000000 _____ () C:\Users\spiesarchiv\AppData\Local\StarPort.log
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-04 01:00
==================== End Of Log ============================
Addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-03-2015
Ran by spiesarchiv at 2015-03-07 22:25:17
Running from C:\Program Files\FaberRecoveryScan
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Care Center (HKLM\...\{A424844F-CDB3-45E2-BB77-1DDE4A091E76}) (Version: 1.00.3012 - Acer Incorporated)
Acer Launch Manager (HKLM\...\{C18D55BD-1EC6-466D-B763-8EEDDDA9100E}) (Version: 8.00.8115 - Acer Incorporated)
Acer Power Management (HKLM\...\{89943901-4CD5-42AB-A55B-E5395FE27748}) (Version: 7.00.8106.0 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{D6B57AF2-2406-49E4-B219-EAA8B0B9F3CF}) (Version: 6.00.8108 - Acer Incorporated)
Acer Screen Grasp (HKLM\...\{84443E5D-0767-438B-B1C8-6A52FAB2101B}) (Version: 1.02.3006 - Acer Incorporated)
Acer System Information (HKLM\...\{72199E33-4F2A-4B7F-8E25-95DDDD50A678}) (Version: 1.0.0 - Acer)
Acer Touch Tools (HKLM\...\{BB1F8130-3CB3-4896-9D28-770DFFFDE59C}) (Version: 1.01.3001 - Acer Incorporated)
Acer Video Player (HKLM\...\{B6846F20-4821-11E3-8F96-0800200C9A66}) (Version: 1.00.2010.3 - Acer Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.6.156 - Adobe Systems, Inc.)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira (HKLM\...\{2c18809c-4097-4b51-a4d0-3deade730ef3}) (Version: 1.1.29.22350 - Avira Operations & Co. KG)
Avira (Version: 1.1.29.22350 - Avira Operations & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.7.468 - Avira)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Clean Master (HKLM\...\Clean Master) (Version: 1.0 - Cheetah Mobile)
Copernic Agent Personal (HKLM\...\Copernic Agent Personal) (Version: - Copernic)
DivX-Setup (HKLM\...\DivX Setup) (Version: 2.7.0.31 - DivX, LLC)
Driver Booster 2.2 (HKLM\...\Driver Booster_is1) (Version: 2.2 - IObit)
DSL Soforthilfe (HKLM\...\DSL Soforthilfe) (Version: 1.1.0.51 - Telefónica Germany GmbH & Co. OHG)
eM Client (HKLM\...\{BD061BFF-676B-443C-88FC-6376BB322317}) (Version: 6.0.21372.0 - eM Client Inc.)
Free Download Manager 3.9.4 (HKLM\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
FreeCommander XE (HKLM\...\FreeCommander XE_is1) (Version: Preview - Marek Jasinski)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Glary Utilities 5.20 (HKLM\...\Glary Utilities 5) (Version: 5.20.0.35 - Glarysoft Ltd)
HostsServer 2.1.62 (32-bit) (HKLM\...\{7BD0B841-7498-4B2B-80A3-2BF301D1D06F}_is1) (Version: 2.1.62.0 - abelhadigital.com)
HUAWEI DataCard Driver 4.25.38.04 (HKLM\...\HUAWEI DataCard Driver) (Version: 4.25.38.04 - Huawei technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3910 - Intel Corporation)
IObit Uninstaller (HKLM\...\IObitUninstall) (Version: 4.2.6.1 - IObit)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
LibreOffice 4.4.0.3 (HKLM\...\{8BEE1CDD-F95D-4759-952D-6B38DF99D1F0}) (Version: 4.4.0.3 - The Document Foundation)
LibreOfficeDev 4.4.2.0.0 (HKLM\...\{34181EDA-9B6C-4554-8C61-3136F51797F9}) (Version: 4.4.2.0.0 - tinderbox)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Office (HKLM\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Paragon Partition Manager™ 14 Free (HKLM\...\{47E5588F-C3A0-11DE-9857-005056C00008}) (Version: 90.00.0003 - Paragon Software)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Real Alternative 2.0.2 (HKLM\...\RealAlt_is1) (Version: 2.0.2 - )
REALTEK Bluetooth (HKLM\...\InstallShield_{192979A0-37F4-4703-B1BB-62052142CE44}) (Version: 1.0.53.40723 - Realtek Semiconductor Corp.)
REALTEK Bluetooth (Version: 1.0.53.40723 - Ihr Firmenname) Hidden
Realtek I2S Audio (HKLM\...\{89A448AA-3301-46AA-AFC3-34F2D7C670E8}) (Version: 0.27 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM\...\{33AABC60-A52F-41FF-B2B9-17321240CD5}) (Version: 1.01.0243 - REALTEK Semiconductor Corp.)
Registrar Registry Manager 7.70 (HKLM\...\RegistrarHome_is1) (Version: - Resplendence Software Projects Sp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Secunia PSI (3.0.0.10004) (HKLM\...\Secunia PSI) (Version: 3.0.0.10004 - Secunia)
SiSoftware Sandra Lite 2015x (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2496}_is1) (Version: 21.15.2015.1 - SiSoftware)
Spyder4Express (HKLM\...\Spyder4Express) (Version: - )
SpywareBlaster 5.0 (HKLM\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
SRWare Iron Version SRWare Iron 40.2150.0 (HKLM\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 40.2150.0 - SRWare)
StarWind RAM Disk (build 2010-03-10) (HKLM\...\StarWind RAM Disk_is1) (Version: - StarWind Software)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
04-03-2015 01:16:52 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 07:13 - 2015-02-28 03:58 - 00522709 ____A C:\windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 fr.a2dfp.net
0.0.0.0 m.fr.a2dfp.net
0.0.0.0 mfr.a2dfp.net
0.0.0.0 ad.a8.net
0.0.0.0 asy.a8ww.net
0.0.0.0 static.a-ads.com
0.0.0.0 atlas.aamedia.ro
0.0.0.0 abcstats.com
0.0.0.0 ad4.abradio.cz
0.0.0.0 a.abv.bg
0.0.0.0 adserver.abv.bg
0.0.0.0 adv.abv.bg
0.0.0.0 bimg.abv.bg
0.0.0.0 ca.abv.bg
0.0.0.0 www2.a-counter.kiev.ua
0.0.0.0 track.acclaimnetwork.com
0.0.0.0 accuserveadsystem.com
0.0.0.0 www.accuserveadsystem.com
0.0.0.0 achmedia.com
0.0.0.0 csh.actiondesk.com
0.0.0.0 ads.activepower.net
0.0.0.0 app.activetrail.com
0.0.0.0 stat.active24stats.nl #[Tracking.Cookie]
0.0.0.0 traffic.acwebconnecting.com
0.0.0.0 office.ad1.ru
0.0.0.0 cms.ad2click.nl
0.0.0.0 ad2games.com
0.0.0.0 ads.ad2games.com
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {05706E77-7F9A-4229-B784-09CF41F292C2} - System32\Tasks\Driver Booster SkipUAC (spiesarchiv) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe [2015-02-05] (IObit)
Task: {07DEBE0A-EED4-4E80-BBA2-BFC9F7A5E009} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2015-02-05] (IObit)
Task: {0C4FFD4A-056D-4E5E-8A6C-5B6F45C255B7} - System32\Tasks\Screen Grasp GestureDetection => C:\Program Files\Acer\Screen Grasp\GestureDetection.exe [2014-12-29] (Acer Incorporated)
Task: {0D2DC727-FDD9-4284-91F7-56FF1F6378AB} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-07] (Adobe Systems Incorporated)
Task: {0F1E2873-17D1-4E1A-9DD1-4DF0C3E87F40} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2015-02-04] (IObit)
Task: {2EA8154C-9A0F-4D49-BDEA-F49EC9CF9855} - System32\Tasks\Uninstaller_SkipUac_spiesarchiv => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-01-25] (IObit)
Task: {3BCF15F6-FDBD-42D0-B0CE-AE1B6641B51C} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTrayLauncher.exe [2014-07-22] (Acer Incorporated)
Task: {423163BC-B830-49E2-A880-AB047D7B4C3E} - System32\Tasks\Prelauncher => C:\Program Files\Acer\Screen Grasp\InputTask.exe [2014-12-29] (Acer Incorporated)
Task: {541C069D-60F8-4456-A7FA-86B01B0D7027} - System32\Tasks\prelauncher_First => C:\Program Files\Acer\Screen Grasp\InputTask.exe [2014-12-29] (Acer Incorporated)
Task: {5F3564A8-6ABF-4074-BECD-B14DB766B369} - \Optimize Start Menu Cache Files-S-1-5-21-2704919929-3204641014-941289941-500 No Task File <==== ATTENTION
Task: {608CDFAD-2660-4734-8196-D099ABD4C679} - System32\Tasks\GU5SkipUAC => C:\Program Files\Glary Utilities 5\Integrator.exe [2015-03-02] (Glarysoft Ltd)
Task: {6E666CD1-D695-45B5-AD68-84F36262F6F0} - System32\Tasks\ACC => C:\Program Files\Acer\Care Center\LiveUpdateChecker.exe [2014-08-29] ()
Task: {70B7E71E-4B7C-409A-B51B-81F553169A10} - System32\Tasks\Launch Manager => C:\Program Files\Acer\Acer Launch Manager\LMLauncher.exe [2014-12-30] (Acer Incorporate)
Task: {75E086DF-AF5D-4B68-8156-BF2D87C5E9D9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {86AB9AD4-D0FD-497E-B9DC-1B84A69A66B5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2014-06-08] (Acer Incorporated)
Task: {A29BEC78-2625-410C-8364-47AB7FE8EC90} - System32\Tasks\ACCAgent => C:\Program Files\Acer\Care Center\LiveUpdateAgent.exe [2014-08-29] ()
Task: {AD2360F9-9873-4872-BD71-2E85AE1F1EE8} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2015-02-28] (Microsoft Corporation)
Task: {C92A1BD2-113F-496A-93AD-3886490EB61A} - System32\Tasks\GlaryInitialize 5 => C:\Program Files\Glary Utilities 5\Initialize.exe [2015-03-02] (Glarysoft Ltd)
Task: {CE8DC38F-D8CA-432C-9EF1-29CFC5318C85} - System32\Tasks\Launch Screen Grasp_First => C:\Program Files\Acer\Screen Grasp\Launch Screen Grasp.exe [2014-12-29] (Acer Incorporated)
Task: {D66C2129-D6C8-497B-A835-0B2D9EF66528} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files\CHIP Updater\CHIPUpdater.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GlaryInitialize 5.job => C:\Program Files\Glary Utilities 5\Initialize.exe
Task: C:\windows\Tasks\Uninstaller_SkipUac_spiesarchiv.job => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
==================== Loaded Modules (whitelisted) ==============
2014-12-29 00:06 - 2014-03-12 13:31 - 00070144 _____ () C:\Program Files\REALTEK\REALTEK Bluetooth\BTDevMgr.exe
2015-01-25 01:25 - 2015-01-25 01:25 - 00622880 _____ () C:\Program Files\IObit\LiveUpdate\ProductStatistics.dll
2015-03-02 06:39 - 2015-03-02 06:39 - 00080160 _____ () C:\Program Files\Glary Utilities 5\zlib1.dll
2014-01-10 06:26 - 2014-01-10 06:26 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe
2014-01-10 06:28 - 2014-01-10 06:28 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2015-02-17 14:10 - 2013-11-21 21:57 - 20585888 ____N () C:\Program Files\DSL Soforthilfe\DSL_Soforthilfe.exe
2011-08-09 16:06 - 2012-02-07 14:59 - 00139264 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\Appearance Pak.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 00151552 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\RegEx.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 12977947 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\RBScript.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 00098304 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\Shell.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 00761856 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\XML.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 00274432 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\CGamma.dll
2011-08-09 16:06 - 2012-02-07 14:59 - 00086016 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\CSensor.dll
2011-09-22 15:22 - 2012-02-07 14:59 - 00039936 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\MBSRegistrationPlugin16724.dll
2011-09-22 15:22 - 2012-02-07 14:59 - 00025600 _____ () C:\Program Files\Datacolor\Spyder4Express\Utility\SpyderUtility Libs\MBSPluginVersionPlugin16724.dll
2015-01-25 06:07 - 2015-01-27 17:54 - 01402368 _____ () C:\Program Files\SRWare Iron\libglesv2.dll
2015-01-25 06:07 - 2015-01-27 17:55 - 00212480 _____ () C:\Program Files\SRWare Iron\libegl.dll
2015-01-25 06:07 - 2015-02-03 11:43 - 09464320 _____ () C:\Program Files\SRWare Iron\pdf.dll
2015-03-01 00:27 - 2015-03-01 00:27 - 00132096 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\MailClient.1d52ed9e#\2f3f835083fdff55899aedd638369fd6\MailClient.Collections.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00490496 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\MailClient.Mail\56176c034900af4f9a372fe98250fc26\MailClient.Mail.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00933888 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\HTMLEditorControl\d62c5955a841b5e134fff4e0a42305df\HTMLEditorControl.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00020992 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\MailClient.Interop\d9f02ae66580231508da8b27143116de\MailClient.Interop.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00571392 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\MailClient.Common.UI\14c55713940be48e26407cef9c221e5e\MailClient.Common.UI.ni.dll
2015-03-01 00:27 - 2015-03-01 00:27 - 00548864 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\LinqBridge\e37aeb740348f40292457021e3ea52c3\LinqBridge.ni.dll
2014-11-21 16:47 - 2014-11-21 16:47 - 00642016 _____ () C:\Program Files\eM Client\SQLite\x86\sqlite3.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00097792 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\MailClient.Sasl\3050524841c7b64b2000008a857a7f80\MailClient.Sasl.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00674304 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\HtmlInterop\b8c3145a295ad010eed1b8453a19fcf4\HtmlInterop.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00083456 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\SystemCoreTimeZone\ddf0a1955afc96a8c94f12ff2ffd9bab\SystemCoreTimeZone.ni.dll
2015-03-01 00:29 - 2015-03-01 00:29 - 01575424 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\WindowsAPICodePack\3026e19236841bc6c0ddf9d2ea5f5513\WindowsAPICodePack.ni.dll
2015-03-01 00:28 - 2015-03-01 00:28 - 00249344 _____ () C:\windows\assembly\NativeImages_v4.0.30319_32\MailClient.Imap.Base\bfddb17bc56578422af6adbcdbd46039\MailClient.Imap.Base.ni.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\Control Panel\Desktop\\Wallpaper -> C:\windows\Web\Wallpaper\acer02.jpg
DNS Servers: 192.168.178.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run: => "cmsc"
HKU\S-1-5-21-2704919929-3204641014-941289941-1001\...\StartupApproved\StartupFolder: => "OptimizerProInstaller.lnk"
==================== Accounts: =============================
Administrator (S-1-5-21-2704919929-3204641014-941289941-500 - Administrator - Disabled)
Gast (S-1-5-21-2704919929-3204641014-941289941-501 - Limited - Disabled)
spiesarchiv (S-1-5-21-2704919929-3204641014-941289941-1001 - Administrator - Enabled) => C:\Users\spiesarchiv
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/06/2015 06:03:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/06/2015 06:03:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/06/2015 06:03:13 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/06/2015 06:01:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/06/2015 06:00:54 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/06/2015 06:00:51 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/04/2015 01:04:06 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/04/2015 01:03:04 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/04/2015 01:03:00 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (03/04/2015 01:02:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: PSIA.exe, Version: 3.0.0.10004, Zeitstempel: 0x54784a82
Name des fehlerhaften Moduls: PSIA.exe, Version: 3.0.0.10004, Zeitstempel: 0x54784a82
Ausnahmecode: 0xc0000409
Fehleroffset: 0x00093524
ID des fehlerhaften Prozesses: 0x280
Startzeit der fehlerhaften Anwendung: 0xPSIA.exe0
Pfad der fehlerhaften Anwendung: PSIA.exe1
Pfad des fehlerhaften Moduls: PSIA.exe2
Berichtskennung: PSIA.exe3
Vollständiger Name des fehlerhaften Pakets: PSIA.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: PSIA.exe5
System errors:
=============
Error: (03/07/2015 01:02:49 PM) (Source: DCOM) (EventID: 10010) (User: switch)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (03/06/2015 03:33:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee Anti-Malware Core" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (03/06/2015 03:33:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (03/06/2015 03:33:21 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 06.03.2015 um 12:11:51 unerwartet heruntergefahren.
Error: (03/06/2015 06:00:01 AM) (Source: DCOM) (EventID: 10010) (User: switch)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (03/06/2015 05:59:31 AM) (Source: DCOM) (EventID: 10010) (User: switch)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (03/06/2015 02:21:18 AM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "WINDOWHUSCH",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF25E66-F975-4E78-8EE6-B6520D-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (03/06/2015 02:15:57 AM) (Source: disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR10 gefunden.
Error: (03/06/2015 01:50:30 AM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "WINDOWHUSCH",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{6FF25E66-F975-4E78-8EE6-B6520D-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (03/05/2015 05:41:26 AM) (Source: DCOM) (EventID: 10010) (User: switch)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Microsoft Office Sessions:
=========================
Error: (03/06/2015 06:03:26 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\IObit\Driver Booster\DpInst\x64\dpinst.exe
Error: (03/06/2015 06:03:14 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Glary Utilities 5\DPInst64.exe
Error: (03/06/2015 06:03:13 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\SiSoftware Sandra Lite 2015x\WNt600x64\RpcSandraSrv.exe
Error: (03/06/2015 06:01:31 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\IObit\Driver Booster\DpInst\x64\dpinst.exe
Error: (03/06/2015 06:00:54 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Glary Utilities 5\DPInst64.exe
Error: (03/06/2015 06:00:51 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\SiSoftware Sandra Lite 2015x\WNt600x64\RpcSandraSrv.exe
Error: (03/04/2015 01:04:06 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\IObit\Driver Booster\DpInst\x64\dpinst.exe
Error: (03/04/2015 01:03:04 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\Glary Utilities 5\DPInst64.exe
Error: (03/04/2015 01:03:00 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Program Files\SiSoftware Sandra Lite 2015x\WNt600x64\RpcSandraSrv.exe
Error: (03/04/2015 01:02:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82PSIA.exe3.0.0.1000454784a82c00004090009352428001d0560cb419ae98C:\Program Files\Secunia\PSI\PSIA.exeC:\Program Files\Secunia\PSI\PSIA.exec643da4b-c201-11e4-9758-40e2302dd396
CodeIntegrity Errors:
===================================
Date: 2015-03-06 15:33:04.279
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-03-04 00:49:09.339
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-03-03 17:10:15.418
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-03-03 13:25:42.293
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-28 23:38:25.433
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-28 00:26:33.537
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-23 13:44:24.819
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-19 00:51:58.272
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-19 00:37:50.333
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2015-02-18 16:26:43.146
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\Drivers\ssmdrv.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Processor: Intel(R) Atom(TM) CPU Z3735F @ 1.33GHz
Percentage of memory in use: 82%
Total physical RAM: 1953.49 MB
Available physical RAM: 332.57 MB
Total Pagefile: 3906.49 MB
Available Pagefile: 916.92 MB
Total Virtual: 2047.88 MB
Available Virtual: 1900.98 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:51.02 GB) (Free:37.58 GB) NTFS
Drive d: (RAM_DISK) (Fixed) (Total:0.2 GB) (Free:0.19 GB) FAT
Drive e: (DATA) (Fixed) (Total:465.76 GB) (Free:465.07 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 58.2 GB) (Disk ID: 8D23E77F)
Partition: GPT Partition Type.
========================================================
Disk: 1 (Size: 200 MB) (Disk ID: AC048DAC)
Partition 1: (Active) - (Size=200 MB) - (Type=06)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 618C0922)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End Of Log ============================
und search.txt Code:
Farbar Recovery Scan Tool (x86) Version: 07-03-2015
Ran by spiesarchiv at 2015-03-08 01:53:39
Running from C:\Program Files\FaberRecoveryScan
Boot Mode: Normal
================== Search Registry: "HKU\S-1-5-21-2704919929-3204641014-941289941-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" ===========
====== End Of Search ======
Aber der Effekt ist noch immer da. Gerne mache ich auch die ganze Prozedur noch einmal, falls das noch nicht genügt. Ich hatte alle im obigen Thread empfohlenen Programme durchlaufen lassen. Habe Avira, Spybot und Spyware Bluster, sowie die MVU Hosts installiert.
Mit der herzlichen Bitte um Hilfe
David |
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und: