| Wolverine85 | 05.08.2015 09:16 |
Dann wünsche ich dir einen schönen Urlaub und vielen Dank für deine bisherige Hilfe, Dennis.
Hallo Schrauber, danke, dass du dich jetzt meinem Problem annimst.
Hier die gewünschten Dateien:
Search.txt Code:
Farbar Recovery Scan Tool (x86) Version:02-08-2015 01
durchgeführt von Windows (2015-08-05 10:02:50)
Gestartet von C:\Users\Windows\Desktop
Start-Modus: Normal
================== Search Files: "dllhost.exe
" =============
C:\Windows\winsxs\x86_microsoft-windows-com-surrogate_31bf3856ad364e35_6.1.7600.16385_none_43fa44d954d596e7\dllhost.exe
[2009-07-14 01:43][2009-07-14 03:14] 0007168 ____A (Microsoft Corporation) A63DC5C2EA944E6657203E0C8EDEAF61 [File is signed]
C:\Windows\System32\dllhost.exe
[2009-07-14 01:43][2009-07-14 03:14] 0007168 ____A (Microsoft Corporation) A63DC5C2EA944E6657203E0C8EDEAF61 [File is signed]
====== Ende von Suche ======
FRST Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:02-08-2015 01
durchgeführt von Windows (Administrator) auf WINDOWS-PC (05-08-2015 10:05:18)
Gestartet von C:\Users\Windows\Desktop
Geladene Profile: Windows (Verfügbare Profile: Windows)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(DATEV eG) C:\DATEV\SYSTEM\Datev.Framework.RemoteServiceModel.GenericService2010.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Pro Advanced\DTShellHlp.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Dropbox, Inc.) C:\Users\Windows\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Jeppesen) C:\Program Files\Jeppesen\JWC\JWC.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avpui.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Valve Corporation) C:\Program Files\Common Files\Steam\SteamService.exe
(DATEV eG) C:\DATEV\SYSTEM\Datev.Framework.RemoteServiceModel.GenericService2010.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157992 2015-07-11] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\Run: [HP Officejet 6600 (NET)] => C:\Program Files\HP\HP Officejet 6600\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\Run: [Steam] => C:\Program Files\Steam\Steam.exe [2895552 2015-07-24] (Valve Corporation)
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\Run: [Web Companion] => C:\Program Files\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\Run: [Dropbox Update] => C:\Users\Windows\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-25] (Dropbox, Inc.)
Startup: C:\Users\Windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-06-14]
ShortcutTarget: Dropbox.lnk -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-07-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-07-24] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-07-24] (Dropbox, Inc.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=https://de.yahoo.com/?fr=vmn&type=vmn__webcompa__1_0__ya__hp_WCYID10048_swoc_campaign_150203__yaie
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Content Blocker Plugin -> {03C04F0A-E2A3-4F7F-BA30-BFA06FFD1358} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2015-01-21] (Kaspersky Lab ZAO)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2015-06-09] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-01] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2015-06-09] (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {B5D5BB14-C8E2-478D-9C97-574AC10AF9E8} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2015-01-21] (Kaspersky Lab ZAO)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2015-06-16] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-01] (Oracle Corporation)
BHO: Safe Money Plugin -> {E3D96E85-529D-4269-AC6A-97CF9E2221E3} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\IEExt\ie_plugin.dll [2015-01-21] (Kaspersky Lab ZAO)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{C0F4F079-DC9A-48E9-8EAB-2DBA1E100394}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{FFF909BC-0FAE-4BC4-B065-B240B9AD897C}: [DhcpNameServer] 192.168.0.1 192.168.0.2
FireFox:
========
FF ProfilePath: C:\Users\Windows\AppData\Roaming\Mozilla\Firefox\Profiles\9cl1tnwj.default-1438761520311
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-01-06] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-01] (Oracle Corporation)
FF Plugin: @kaspersky.com/content_blocker_6418E0D362104DADA084DC312DFA8ABC -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2015-01-21] ()
FF Plugin: @kaspersky.com/online_banking_69A4E213815F42BD863D889007201D82 -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2015-01-21] ()
FF Plugin: @kaspersky.com/virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2015-01-21] ()
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-17] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-03-28] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Windows\AppData\Roaming\Mozilla\Firefox\Profiles\9cl1tnwj.default-1438761520311\user.js [2015-08-05]
FF HKLM\...\Firefox\Extensions: [content_blocker_6418E0D362104DADA084DC312DFA8ABC@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com [2015-01-21]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard_294FF26A1D5B455495946778FDE7CEDB@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com [2015-01-21]
FF HKLM\...\Firefox\Extensions: [online_banking_69A4E213815F42BD863D889007201D82@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com [2015-01-21]
Chrome:
=======
CHR dev: Chrome dev build erkannt! <======= ACHTUNG
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AVP15.0.1; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\avp.exe [234520 2014-08-30] (Kaspersky Lab ZAO)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1867448 2015-07-01] (Microsoft Corporation)
S3 DATEV Update-Service; C:\DATEV\PROGRAMM\INSTALL\DvInesASDSvc.Exe [161320 2013-08-02] (DATEV eG)
R2 Datev.Framework.RemoteServiceModel.EnablerService; C:\DATEV\SYSTEM\Datev.Framework.RemoteServiceModel.GenericService2010.exe [7208 2013-09-06] (DATEV eG)
R3 Datev.Framework.RemoteServices; C:\DATEV\SYSTEM\Datev.Framework.RemoteServiceModel.GenericService2010.exe [7208 2013-09-06] (DATEV eG)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2014-08-03] (Flexera Software, Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
R2 JWC; C:\Program Files\Jeppesen\JWC\JWC.exe [510512 2012-02-23] (Jeppesen)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2014-01-15] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [11944 2012-12-03] (Advanced Micro Devices Inc.)
R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [70424 2013-07-18] (Alcor Micro, Corp.)
R3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [111360 2013-08-16] (ASMedia Technology Inc)
R3 asmtxhci; C:\Windows\System32\DRIVERS\asmtxhci.sys [337152 2013-08-16] (ASMedia Technology Inc)
R0 cm_km_w; C:\Windows\System32\DRIVERS\cm_km_w.sys [189136 2013-01-14] (Kaspersky Lab UK Ltd)
S3 iaStorA; C:\Windows\system32\drivers\iaStorA.sys [489968 2013-07-02] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [24048 2013-07-02] (Intel Corporation)
S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [583664 2013-07-02] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [143968 2014-03-31] (Kaspersky Lab ZAO)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [36928 2014-07-02] (Kaspersky Lab ZAO)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [119816 2015-01-21] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [36536 2014-08-12] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [673976 2015-03-10] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [24672 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44992 2014-06-05] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [64200 2015-01-21] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [146240 2014-07-09] (Kaspersky Lab ZAO)
S3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28312 2013-05-23] (Logitech, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [98520 2015-08-05] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [13216 2009-07-16] ()
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [657408 2009-07-14] (Ralink Technology Corp.)
R3 Serenum; C:\Windows\System32\DRIVERS\nuvserenum.sys [17920 2014-01-12] (Windows (R) Win 7 DDK provider)
R3 Serial; C:\Windows\System32\DRIVERS\nuvserial.sys [76288 2014-01-12] (Nuvoton Technology Corp.)
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2014-04-27] (Duplex Secure Ltd.)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [565424 2013-12-16] (VIA Technologies, Inc.)
S3 eapihdrv; \??\C:\Users\Windows\AppData\Local\Temp\ehdrv.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-05 10:02 - 2015-08-05 10:04 - 00000675 _____ C:\Users\Windows\Desktop\Search.txt
2015-08-04 19:22 - 2015-08-04 19:22 - 00000000 ____D C:\Users\Windows\AppData\Local\GWX
2015-08-03 23:11 - 2015-08-03 23:11 - 00001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-08-03 23:11 - 2015-08-03 23:11 - 00001101 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-08-03 23:11 - 2015-08-03 23:11 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-03 23:11 - 2015-08-03 23:11 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-03 23:09 - 2015-08-03 23:09 - 00242928 _____ C:\Users\Windows\Downloads\Firefox Setup Stub 39.0.exe
2015-08-03 22:56 - 2015-08-04 08:45 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\368C7430.sys
2015-08-01 11:00 - 2015-08-01 11:00 - 00000000 ____D C:\Program Files\Common Files\Java
2015-08-01 10:56 - 2015-08-01 10:57 - 37348448 _____ (Oracle Corporation) C:\Users\Windows\Downloads\jre-8u51-windows-i586.exe
2015-07-31 11:17 - 2015-07-31 11:17 - 00000998 _____ C:\Users\Windows\Desktop\checkup.txt
2015-07-31 11:13 - 2015-07-31 11:13 - 00852684 _____ C:\Users\Windows\Desktop\SecurityCheck.exe
2015-07-31 10:14 - 2015-07-31 10:14 - 02870984 _____ (ESET) C:\Users\Windows\Downloads\esetsmartinstaller_deu.exe
2015-07-30 12:28 - 2015-07-30 12:28 - 00000000 ____D C:\Users\Windows\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-07-29 22:43 - 2015-08-05 10:02 - 00000000 ____D C:\Users\Windows\Desktop\FRST-OlderVersion
2015-07-29 22:42 - 2015-07-29 22:42 - 00001335 _____ C:\Users\Windows\Desktop\JRT.txt
2015-07-29 22:34 - 2015-07-30 09:02 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\4FA65C5E.sys
2015-07-29 11:28 - 2015-07-29 11:29 - 01798176 _____ (Malwarebytes Corporation) C:\Users\Windows\Desktop\JRT.exe
2015-07-29 11:28 - 2015-07-29 11:28 - 00001721 _____ C:\Users\Windows\Desktop\AdwCleaner[S3].txt
2015-07-29 11:22 - 2015-07-29 11:22 - 02248704 _____ C:\Users\Windows\Downloads\AdwCleaner_4.208(1).exe
2015-07-29 11:18 - 2015-08-01 10:35 - 00001635 _____ C:\Users\Windows\Desktop\MBAM.txt
2015-07-29 10:52 - 2015-08-05 08:39 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-29 10:52 - 2015-07-29 10:53 - 00001056 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-29 10:52 - 2015-07-29 10:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-29 10:52 - 2015-07-29 10:53 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-07-29 10:52 - 2015-07-29 10:52 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-29 10:52 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-07-29 10:52 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-07-29 10:52 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-07-29 10:51 - 2015-07-29 10:52 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Windows\Downloads\mbam-setup-2.1.6.1022.exe
2015-07-29 10:40 - 2015-07-29 10:40 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Windows\Downloads\revosetup95.exe
2015-07-29 10:40 - 2015-07-29 10:40 - 00001218 _____ C:\Users\Windows\Desktop\Revo Uninstaller.lnk
2015-07-29 10:40 - 2015-07-29 10:40 - 00000000 ____D C:\Program Files\VS Revo Group
2015-07-29 10:05 - 2015-07-25 19:51 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-29 10:05 - 2015-07-25 19:47 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-29 10:05 - 2015-07-25 19:47 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-29 10:05 - 2015-07-25 19:46 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-29 10:05 - 2015-07-25 19:46 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-29 10:05 - 2015-07-25 19:46 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-29 10:05 - 2015-07-25 19:46 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-29 10:05 - 2015-07-25 19:40 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-27 16:35 - 2015-07-27 16:35 - 00070577 _____ C:\Users\Windows\Desktop\Gmer.log
2015-07-27 16:22 - 2015-07-27 16:22 - 00380416 _____ C:\Users\Windows\Desktop\Gmer-19357.exe
2015-07-27 16:19 - 2015-07-27 16:19 - 00058303 _____ C:\Users\Windows\Desktop\Addition.txt
2015-07-27 16:18 - 2015-08-05 10:05 - 00017993 _____ C:\Users\Windows\Desktop\FRST.txt
2015-07-27 16:18 - 2015-08-05 10:05 - 00000000 ____D C:\FRST
2015-07-27 16:17 - 2015-08-05 10:02 - 01673728 _____ (Farbar) C:\Users\Windows\Desktop\FRST.exe
2015-07-27 16:11 - 2015-07-27 16:11 - 00000666 _____ C:\Users\Windows\Desktop\defogger_disable.log
2015-07-27 16:11 - 2015-07-27 16:11 - 00000204 _____ C:\Users\Windows\defogger_reenable
2015-07-27 16:09 - 2015-07-27 16:09 - 00050477 _____ C:\Users\Windows\Desktop\Defogger.exe
2015-07-22 13:49 - 2015-07-22 13:49 - 00000000 ____D C:\Users\Windows\AppData\Local\CEF
2015-07-21 10:07 - 2015-07-21 10:07 - 02248704 _____ C:\Users\Windows\Downloads\AdwCleaner_4.208.exe
2015-07-20 19:36 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-07-20 19:36 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 19:36 - 2015-07-15 04:55 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-07-20 19:36 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-07-20 19:36 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-19 21:40 - 2015-07-19 21:40 - 00001753 _____ C:\Users\Public\Desktop\iTunes.lnk
2015-07-19 21:40 - 2015-07-19 21:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-07-19 21:40 - 2015-07-19 21:40 - 00000000 ____D C:\Program Files\iTunes
2015-07-19 21:40 - 2015-07-19 21:40 - 00000000 ____D C:\Program Files\iPod
2015-07-15 08:58 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-15 08:58 - 2015-07-01 22:46 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-15 08:58 - 2015-07-01 22:46 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-15 08:58 - 2015-07-01 22:30 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-07-15 08:58 - 2015-07-01 22:30 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-07-15 08:58 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-07-15 08:58 - 2015-07-01 22:29 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-07-15 08:58 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-07-15 08:58 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-07-15 08:58 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-07-15 08:58 - 2015-07-01 21:18 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-15 08:58 - 2015-07-01 21:18 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-15 08:58 - 2015-07-01 21:18 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-15 08:58 - 2015-06-25 10:46 - 02383872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-15 08:58 - 2015-06-15 23:47 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-07-15 08:58 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-15 08:58 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-15 08:58 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-07-15 08:58 - 2015-06-15 23:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-07-15 08:58 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-15 08:58 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-07-15 08:58 - 2015-06-11 19:57 - 06131200 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-07-15 08:58 - 2015-06-11 19:57 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-07-15 08:58 - 2015-06-11 19:57 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-07-15 08:58 - 2015-06-11 17:20 - 00355840 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-07-15 08:57 - 2015-07-09 19:43 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-15 08:57 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-15 08:57 - 2015-07-09 19:42 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-15 08:57 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-15 08:57 - 2015-07-09 19:42 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-15 08:57 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-15 08:57 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-15 08:57 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-15 08:57 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-15 08:57 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-15 08:57 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-15 08:57 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-07-15 08:57 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-15 08:57 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-07-15 08:57 - 2015-06-19 20:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-07-15 08:57 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-15 08:57 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-07-15 08:57 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-15 08:57 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-07-15 08:57 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-15 08:57 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-15 08:57 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-07-15 08:57 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-15 08:57 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-15 08:57 - 2015-06-19 20:13 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-07-15 08:57 - 2015-06-19 20:06 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-15 08:57 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-15 08:57 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-15 08:57 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-15 08:57 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-15 08:57 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-15 08:57 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-15 08:57 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-15 08:57 - 2015-06-19 19:40 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-07-15 08:57 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-07-15 08:57 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-15 08:57 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-15 08:57 - 2015-06-17 19:39 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-15 08:57 - 2015-06-09 21:35 - 02745856 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-15 08:57 - 2015-06-09 21:35 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 08:57 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-15 08:57 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-15 08:57 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-15 08:57 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-15 08:57 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-08-05 09:40 - 2015-06-25 09:27 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1553175452-9795684-1435174660-1000UA.job
2015-08-05 09:38 - 2014-05-14 09:18 - 00334336 ___SH C:\Users\Windows\Documents\Thumbs.db
2015-08-05 09:36 - 2014-03-25 16:56 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-05 09:21 - 2009-07-14 06:34 - 00028896 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-05 09:21 - 2009-07-14 06:34 - 00028896 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-05 08:56 - 2014-04-02 09:10 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2015-08-05 08:42 - 2014-03-25 15:33 - 01712917 _____ C:\Windows\WindowsUpdate.log
2015-08-05 08:39 - 2014-05-13 10:45 - 00000000 ___RD C:\Users\Windows\Dropbox
2015-08-05 08:39 - 2014-05-13 10:26 - 00000000 ____D C:\Users\Windows\AppData\Roaming\Dropbox
2015-08-05 08:38 - 2014-07-25 17:13 - 00000000 ____D C:\Program Files\Steam
2015-08-05 08:38 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-05 08:38 - 2009-07-14 06:39 - 00146983 _____ C:\Windows\setupact.log
2015-08-04 21:40 - 2015-06-25 09:27 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1553175452-9795684-1435174660-1000Core.job
2015-08-04 08:44 - 2010-11-20 23:48 - 00267526 _____ C:\Windows\PFRO.log
2015-08-03 23:06 - 2014-11-12 20:53 - 00000000 __SHD C:\Users\Windows\AppData\Local\EmieBrowserModeList
2015-08-03 23:06 - 2014-04-25 09:24 - 00000000 __SHD C:\Users\Windows\AppData\Local\EmieUserList
2015-08-03 23:06 - 2014-04-25 09:24 - 00000000 __SHD C:\Users\Windows\AppData\Local\EmieSiteList
2015-08-03 22:28 - 2015-04-04 16:36 - 00000000 ___SD C:\Windows\system32\GWX
2015-08-02 20:34 - 2015-01-23 21:17 - 00000000 ____D C:\Users\Windows\Documents\Kosmetikstudio
2015-08-02 11:27 - 2009-07-14 06:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-01 10:59 - 2014-03-25 16:57 - 00000000 ____D C:\ProgramData\Oracle
2015-08-01 10:57 - 2014-12-23 12:29 - 00096352 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-08-01 10:57 - 2014-12-23 12:29 - 00000000 ____D C:\Program Files\Java
2015-08-01 10:50 - 2010-11-20 23:01 - 01628312 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-01 10:12 - 2014-05-10 23:28 - 00000000 ____D C:\Windows\ATPL Mass and Balance
2015-07-31 11:14 - 2015-06-03 15:08 - 00000000 ____D C:\Users\Windows\Desktop\RYR
2015-07-29 14:54 - 2015-02-04 01:49 - 00000000 ____D C:\Users\Windows\Documents\Hochzeit
2015-07-29 11:31 - 2014-05-06 11:15 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-29 11:23 - 2014-12-11 16:16 - 00000000 ____D C:\AdwCleaner
2015-07-29 10:48 - 2014-03-31 11:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
2015-07-27 16:11 - 2014-03-25 15:42 - 00000000 ____D C:\Users\Windows
2015-07-26 19:29 - 2014-07-25 17:13 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-07-26 09:21 - 2015-03-08 10:25 - 00000000 ____D C:\Users\Windows\AppData\Roaming\Apple Computer
2015-07-22 08:50 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2015-07-22 08:46 - 2014-03-26 20:24 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-07-22 08:44 - 2014-03-28 11:46 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-07-21 08:36 - 2009-07-14 06:33 - 00460880 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-19 21:40 - 2015-04-20 11:13 - 00000000 ____D C:\ProgramData\B0FFCDD9-5261-4e59-B29A-17A4FABDEBAB
2015-07-19 21:40 - 2015-03-08 10:22 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-07-16 10:02 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2015-07-16 08:39 - 2014-12-11 22:45 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-16 08:39 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2015-07-15 10:55 - 2014-03-25 16:45 - 00000000 ____D C:\Windows\system32\MRT
2015-07-15 10:36 - 2014-03-25 16:56 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-15 10:36 - 2014-03-25 16:56 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-15 09:00 - 2014-03-25 17:00 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2014-03-30 10:11 - 2014-08-23 21:15 - 0000170 _____ () C:\Users\Windows\AppData\Roaming\WB.CFG
2014-08-03 16:48 - 2014-08-03 16:48 - 0007605 _____ () C:\Users\Windows\AppData\Local\Resmon.ResmonCfg
2014-05-12 20:08 - 2014-05-12 20:08 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-04-01 09:26 - 2014-04-01 09:31 - 0000376 _____ () C:\ProgramData\hpzinstall.log
2014-03-26 20:23 - 2014-03-27 10:38 - 0000227 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-01-06 16:57 - 2015-01-23 09:43 - 0000534 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
Einige Dateien in TEMP:
====================
C:\Users\Windows\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp58gk9k.dll
==================== Bamital & volsnap Check =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-04 09:28
==================== Ende vom log ============================
Addition Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:02-08-2015 01
durchgeführt von Windows (2015-08-05 10:05:50)
Gestartet von C:\Users\Windows\Desktop
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1553175452-9795684-1435174660-500 - Administrator - Disabled)
Gast (S-1-5-21-1553175452-9795684-1435174660-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1553175452-9795684-1435174660-1005 - Limited - Enabled)
Windows (S-1-5-21-1553175452-9795684-1435174660-1000 - Administrator - Enabled) => C:\Users\Windows
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
737 Pilot in Command (FSX - Vista) (HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\737 Pilot in Command (FSX - Vista)) (Version: - )
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.1 (HKLM\...\{C1575982-F1CA-46DC-A77D-43FF12F2EFC7}) (Version: 4.1.2 - Adobe)
Adobe Reader XI (11.0.12) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
aerosoft's - Mega Airport Frankfurt X (HKLM\...\{BAEE0C24-C8C2-4820-9DF4-887909F1A286}) (Version: 1.01 - aerosoft)
Airframes, Systems and Emergency Equipment (HKLM\...\Airframes, Systems and Emergency Equipment1.0) (Version: 1.0 - OAAmedia)
Apple Application Support (32-Bit) (HKLM\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{538227C6-C74B-4A74-99E1-2C0B4F9DA5E1}) (Version: 8.2.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATPL AC Electrics (HKLM\...\ATPL AC Electrics1.0) (Version: 1.0 - OAAmedia)
ATPL Air Law (HKLM\...\ATPL Air Law1.0) (Version: 1.0 - OAAmedia)
ATPL Aircraft Performance (HKLM\...\ATPL Aircraft Performance1.0) (Version: 1.0 - OAAmedia)
ATPL Autoflight (HKLM\...\ATPL Autoflight1.0) (Version: 1.0 - OAAmedia)
ATPL DC Electrics (HKLM\...\ATPL DC Electrics1.0) (Version: 1.0 - OAAmedia)
ATPL Exam Preparation (HKLM\...\ATPL Exam Preparation1.5) (Version: 1.5 - OAAmedia)
ATPL Flight Instruments (HKLM\...\ATPL Flight Instruments1.0) (Version: 1.0 - OAAmedia)
ATPL Flight Planning (HKLM\...\ATPL Flight Planning1.0) (Version: 1.0 - OAAmedia)
ATPL Gas Turbine Engines (HKLM\...\ATPL Gas Turbine Engines1.1) (Version: 1.1 - OAAmedia)
ATPL General Navigation (HKLM\...\ATPL General Navigation1.0) (Version: 1.0 - OAAmedia)
ATPL Human Performance (Part 1) (HKLM\...\ATPL Human Performance (Part 1)1.0) (Version: 1.0 - OATmedia)
ATPL Human Performance (Part 2) (HKLM\...\ATPL Human Performance (Part 2)1.0) (Version: 1.0 - OAA Media)
ATPL Mass and Balance (HKLM\...\ATPL Mass and Balance1.0) (Version: 1.0 - OAAmedia)
ATPL Meteorology (HKLM\...\ATPL Meteorology3.0) (Version: 3.0 - OAAmedia)
ATPL Operational Procedures (HKLM\...\ATPL Operational Procedures1.0) (Version: 1.0 - OAAmedia)
ATPL Piston Engines (HKLM\...\ATPL Piston Engines1.1) (Version: 1.1 - OAAmedia)
ATPL Principles of Flight (HKLM\...\ATPL Principles of Flight1.0) (Version: 1.0 - OAAmedia)
ATPL Radio Navigation (HKLM\...\ATPL Radio Navigation1.0) (Version: 1.0 - OAAmedia)
ATPL Warning and Recording (HKLM\...\ATPL Warning and Recording1.0) (Version: 1.0 - OAAmedia)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 5.5.0.0388 - Disc Soft Ltd)
DAEMON Tools Pro Advanced (HKLM\...\DAEMON Tools Pro Advanced) (Version: - )
Dropbox (HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\Dropbox) (Version: 3.8.5 - Dropbox, Inc.)
ElsterFormular (HKLM\...\ElsterFormular) (Version: 15.2.20140326 - Landesfinanzdirektion Thüringen)
Flight Simulator X (HKLM\...\RTMshadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: - )
Flight Simulator X Service Pack 1 (HKLM\...\SP1shadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: - )
Free Studio version 6.5.0.301 (HKLM\...\Free Studio_is1) (Version: 6.5.0.301 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.54.128 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.54.128 - DVDVideoSoft Ltd.)
Full Spectrum Warrior Ten Hammers (HKLM\...\{239643AC-81F1-4CE9-A87F-8B1E83AD7466}) (Version: 1.0.0 - Pandemic Studios LLC)
HP FWUpdateEDO2 (HKLM\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet 6600 - Grundlegende Software für das Gerät (HKLM\...\{48C5B91E-E794-4179-9FBF-A9A1635B9F66}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 6600 Hilfe (HKLM\...\{2FA81482-5570-4CF0-9A10-D61D2F164916}) (Version: 140.0.2.2 - Hewlett Packard)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0001 - Microsoft) Hidden
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IFR RT Communications (HKLM\...\IFR RT Communications1.1) (Version: 1.1 - OAAmedia)
iTunes (HKLM\...\{9DBBE7B8-EE7A-4FD9-9C7F-35E69A4C19D8}) (Version: 12.2.1.16 - Apple Inc.)
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Jeppesen Format Print Driver (HKLM\...\{986090B3-C3B8-4DD4-8BB1-6561F74915FF}) (Version: 1.1.0.5 - Jeppesen)
Jeppesen Program and Data Installation (HKLM\...\{4173F0BF-2363-4DC3-92A9-446B69DBB134}) (Version: 1.0.0.0 - Jeppesen)
Jeppesen Services (HKLM\...\{2B0DF49C-FC06-4B2B-934A-92E2DCE20C4C}) (Version: 1.00.000 - Jeppesen)
Jeppesen Services (Version: 1.00.000 - Jeppesen) Hidden
Jeppesen Weather Service (HKLM\...\{3E1D1CE6-FF37-4A5D-9714-D6F48CFD589D}) (Version: 2.4.1.1 - Jeppesen)
Kaspersky Internet Security (HKLM\...\InstallWIX_{8ED07EBD-22AD-415A-B71E-C1AD86862C2E}) (Version: 15.0.1.415 - Kaspersky Lab)
Kaspersky Internet Security (Version: 15.0.1.415 - Kaspersky Lab) Hidden
Mafia II (HKLM\...\Steam App 50130) (Version: - 2K Czech)
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.52213 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.52213 - Microsoft Corporation)
Microsoft Flight Simulator X: Acceleration (HKLM\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 15.0.4737.1003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: - )
Mozilla Firefox 39.0 (x86 de) (HKLM\...\Mozilla Firefox 39.0 (x86 de)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 39.0 - Mozilla)
MSXML 4.0 SP2 Parser und SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NetBet Poker (HKU\S-1-5-21-1553175452-9795684-1435174660-1000\...\Netbet Poker) (Version: - )
novaPDF for SDK v7 (novaPDF 7.2 printer) (HKLM\...\novaPDF for SDK v7_is1) (Version: - Softland)
NVIDIA PhysX (HKLM\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4737.1003 - Microsoft Corporation) Hidden
Office Animation Runtime (HKLM\...\{AEEB3643-71DE-414d-9E3F-1159177FE211}) (Version: 11.0.5510.0 - Microsoft Corporation)
Pixum Fotobuch (HKLM\...\Pixum Fotobuch) (Version: 5.1.7 - CEWE Stiftung u Co. KGaA)
PMDG 737 6700 NGX RTM (HKLM\...\{C7EE862A-D83D-4A9F-B746-CBDE39BD7001}) (Version: 1.00.3219 - PMDG Simulations, LLC.)
PMDG 737 8900 NGX (HKLM\...\{20708FD5-E94D-4097-A21E-E28564CDBC06}) (Version: 1.00.3219 - PMDG Simulations, LLC.)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM\...\RealPlayer 17.0) (Version: 17.0.11 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RollerCoaster Tycoon 2 (HKLM\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version: - )
RollerCoaster Tycoon 3 (HKLM\...\RollerCoaster Tycoon 3_is1) (Version: - Atari)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
UK Supplement (HKLM\...\UK Supplement2.1) (Version: 2.1 - OAAmedia)
UpdateService (Version: 1.0.0 - RealNetworks, Inc.) Hidden
VFR RT Communications (HKLM\...\VFR RT Communications2.5) (Version: 2.5 - OAAmedia)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{0A368B9B-3566-4730-B40E-EAF6858A53AF}\InprocServer32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{0F130AC8-CDF1-4DAA-AA9B-7B4083F49EA4}\InprocServer32 -> C:\Users\Windows\AppData\Local\NetBet Poker\widgetbar\PtContainerUI.dll (Playtech Ltd)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{3059C9E6-9EDC-4C89-933E-C65623F8FD60}\localserver32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{492042A2-4432-44A1-9A39-85B2D3C0119E}\InprocServer32 -> C:\Users\Windows\AppData\Local\NetBet Poker\widgetbar\PtContainerUI.dll (Playtech Ltd)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{49BBAA3C-C574-419E-8378-783C362E9C15}\InprocServer32 -> C:\Program Files\HP\Common\FWUpdateEDO2.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{876FA801-2B5E-4201-9E6B-2EF2C05A5C6B}\InprocServer32 -> C:\Users\Windows\AppData\Local\NetBet Poker\widgetbar\WidgetbarAPI.dll (Playtech)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{87DC457B-B35D-48AC-BD42-BDF35EF623CE}\localserver32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{89425F5E-A2BD-44CD-9E4F-F1498522F0E5}\InprocServer32 -> C:\Users\Windows\AppData\Local\NetBet Poker\widgetbar\WidgetbarManagerUI.dll (Playtech Ltd)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{999937BC-30FE-11D4-BA52-00C04F6843FA}\InprocServer32 -> C:\Program Files\Common Files\Microsoft Shared\MSORun\MSORUN.DLL (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{9FAA38ED-5635-44F7-9BE0-8CAFE29B3783}\localserver32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{C0DD324D-A74F-4533-84AD-030F76771C77}\localserver32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{C32E3EEC-3C10-426E-95F3-38C7F139FADD}\localserver32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.33\DropboxUpdateOnDemand.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{D166BD15-03AF-413A-BEFD-0679FF410B49}\InprocServer32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.29\psuser.dll Keine Datei
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{F6F8856F-374D-4397-BB1C-80AB57E60529}\InprocServer32 -> C:\Users\Windows\AppData\Local\NetBet Poker\widgetbar\WidgetbarAPI.dll (Playtech)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Windows\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1553175452-9795684-1435174660-1000_Classes\CLSID\{FE819BE5-BADF-4370-9913-6FB84ABA6FB1}\InprocServer32 -> C:\Users\Windows\AppData\Local\Dropbox\Update\1.3.27.33\psuser.dll (Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
20-07-2015 20:34:43 Windows Update
24-07-2015 08:44:48 Windows Update
29-07-2015 10:02:47 Windows Update
29-07-2015 10:42:00 Revo Uninstaller's restore point - 888poker
29-07-2015 10:47:35 Revo Uninstaller's restore point - RealDownloader
29-07-2015 11:30:27 Windows Update
29-07-2015 22:38:12 JRT Pre-Junkware Removal
03-08-2015 23:02:27 Revo Uninstaller's restore point - Mozilla Firefox 39.0 (x86 de)
04-08-2015 19:34:43 Windows Update
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {030EC5A1-4B1C-4460-9347-46B6219A0D19} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1553175452-9795684-1435174660-1000Core => C:\Users\Windows\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-25] (Dropbox, Inc.)
Task: {05BC4C40-4BEC-4AF0-80B6-07A8F8C67151} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-05-12] (Microsoft Corporation)
Task: {115B85F9-F813-4B65-9F04-B3391B8359F2} - System32\Tasks\{C56D1F24-96B8-4E4A-9E42-86BEB2C2CD82} => pcalua.exe -a O:\setup.exe -d O:\
Task: {1A7F3EAB-CF8E-4288-B8EB-D4C58288E617} - System32\Tasks\{FF5CF888-3057-4F67-B86C-70150E80DD4F} => pcalua.exe -a O:\setup.exe -d O:\
Task: {1E690581-DC79-43F8-B322-3AA027BEE9D2} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1553175452-9795684-1435174660-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {219E5B9D-9CFA-4981-80FF-772A42953854} - System32\Tasks\HP AR Program Upload - b042023d16604c82b52577d852065f86705fdf8d0eed4bf1a883d4b1e1ad48b4 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {292D9ED2-4BFD-4D92-9096-6FFC5D1BC46F} - System32\Tasks\HP AR Program Upload - 976cccbec8b74ecf98192f84c961644759c320b95c364836841384d466175f33 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {2F24D145-1C60-4991-8970-47089FED05AD} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-07-01] (Microsoft Corporation)
Task: {2F835DA0-7067-4A55-BCCA-BE7D3501BC0B} - System32\Tasks\{596199E6-9C23-4571-B41F-E9AAE47D00FD} => pcalua.exe -a E:\SetupLauncher.exe -d E:\
Task: {3E45E920-49F3-4147-8767-71CFFA6B10A1} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-06-09] (Microsoft Corporation)
Task: {400B2829-9E7E-47D1-A66D-EFC73020B21F} - System32\Tasks\HP AR Program Upload - e49ea52981f94373b251c5c1727e9b1baab61f704885486bbfc1bf248f28bd11 => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {45766161-0122-425F-B98C-4C98C482DD72} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1553175452-9795684-1435174660-1000UA => C:\Users\Windows\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-25] (Dropbox, Inc.)
Task: {4BB7F9E4-CDB4-49C4-99D8-9A5463DAFFBF} - System32\Tasks\{291E9B9B-DB7B-48A9-8FFE-FCBC9056E558} => pcalua.exe -a O:\Run.exe -d O:\
Task: {60FD3157-43C5-4833-9EE9-D4C4913FBC4B} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Windows-PC-Windows Windows-PC => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-06-02] (Microsoft Corporation)
Task: {68194CC8-ED22-4128-974D-769A80992C59} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-07-01] (Microsoft Corporation)
Task: {6AFFC0A6-F3A8-4750-ADA2-0138536AA93D} - System32\Tasks\{65FE2E3F-43A5-4021-9AD1-E32F0BD53458} => pcalua.exe -a "E:\Install Lightroom 4.exe" -d E:\
Task: {9368A8B7-2B2C-44D6-A1B4-1D07B2EEB334} - System32\Tasks\{606A67F0-6F87-465A-8F55-F4F7D90254E0} => pcalua.exe -a "L:\Flight_Training\B777\B777 CBT ALTEON\B777 ALTEON CD1\install.exe" -d "L:\Flight_Training\B777\B777 CBT ALTEON\B777 ALTEON CD1"
Task: {96CCC5DA-6C35-4A90-9DBE-1D6730CF3D39} - System32\Tasks\{583A9394-A4A6-47AC-9D04-9A6383660BEE} => pcalua.exe -a C:\Windows\UniFish3.exe -c C:\Program Files\Hasbro Interactive\RollerCoaster Tycoon\RollerCoaster Tycoon.log
Task: {9800A0C1-23BB-465B-9CF7-4EB6751B4E96} - System32\Tasks\DATEV eG\DATEV Update-Monitor => C:\DATEV\PROGRAMM\Install\DvInesASDMon.Exe [2013-08-02] (DATEV eG)
Task: {9F9789CC-2CC8-48CA-BBA4-FFAD9F6E838B} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1553175452-9795684-1435174660-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe
Task: {A0038F0B-48FB-4B54-95A3-91E0A5AFFDE9} - System32\Tasks\HP AR Program Upload - dd9cc53286ac48d49ee2ddfcc3ca464fe3a7637659bf4819bc10ff454c7114ba => C:\Program Files\HP\HP Officejet 6600\bin\HPRewards.exe [2012-10-17] (TODO: <Company name>)
Task: {AE0E0225-6916-4C6E-B5EA-2BD416909957} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1553175452-9795684-1435174660-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {AE8DB4DB-75AF-4B58-BF6E-EC568B63C249} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {AF34CFFD-9091-479E-820D-E63D55AAE146} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {AF637652-D193-4359-AD1D-9CA71CEBEB35} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-15] (Adobe Systems Incorporated)
Task: {B7B9878E-5CB1-4494-82F8-06EF7C452713} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1553175452-9795684-1435174660-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe
Task: {BCA7F688-FB2D-412F-B612-5143F760A834} - System32\Tasks\{D555903A-E131-4AE8-B58C-584B5BEE44D6} => pcalua.exe -a C:\Users\Windows\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=irs <==== ACHTUNG
Task: {C8BD2364-C8F3-4268-8D91-3E23632A3715} - System32\Tasks\{CE83529F-E719-4DB8-9FB5-A1F0DE66C430} => pcalua.exe -a D:\737PICXVista_Full_CD_2a.exe -d D:\
Task: {D2A1A6BF-75AE-4C10-B37B-93E75419D9CA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2015-05-12] (Microsoft Corporation)
Task: {D4C25FD2-62DC-49D8-82A1-8863C58F8918} - System32\Tasks\{8B42C97E-F813-40BD-8EE9-75EB88963FB9} => pcalua.exe -a "E:\Install Lightroom 4.exe" -d E:\
Task: {D95301F6-4BD7-44DB-9659-C8A25A24D77F} - System32\Tasks\{78B410D1-E97E-461A-844F-2AEA40564690} => pcalua.exe -a E:\SetupLauncher.exe -d E:\
Task: {E3F980AB-0F8A-43D2-A47F-BAB6D0032FFD} - System32\Tasks\{B882CE79-D80F-49D8-8637-E9777EB52240} => pcalua.exe -a "E:\Install Lightroom 4.exe" -d E:\
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1553175452-9795684-1435174660-1000Core.job => C:\Users\Windows\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1553175452-9795684-1435174660-1000UA.job => C:\Users\Windows\AppData\Local\Dropbox\Update\DropboxUpdate.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-03-25 15:58 - 2014-02-08 19:11 - 00107808 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2015-02-13 05:20 - 2015-02-13 05:20 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-05-15 16:27 - 2015-05-15 16:27 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-06-26 14:40 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files\Steam\SDL2.dll
2015-01-21 11:14 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files\Steam\v8.dll
2015-01-21 11:14 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files\Steam\icui18n.dll
2015-01-21 11:14 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files\Steam\icuuc.dll
2014-07-15 18:28 - 2015-07-24 01:24 - 02410176 _____ () C:\Program Files\Steam\video.dll
2014-08-29 03:18 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files\Steam\libavcodec-56.dll
2014-08-29 03:18 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files\Steam\libavutil-54.dll
2014-08-29 03:18 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files\Steam\libavformat-56.dll
2014-08-29 03:18 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files\Steam\libavresample-2.dll
2014-08-29 03:18 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files\Steam\libswscale-3.dll
2014-07-15 18:28 - 2015-07-24 01:23 - 00703168 _____ () C:\Program Files\Steam\bin\chromehtml.DLL
2015-07-22 13:49 - 2015-07-07 22:41 - 00169984 _____ () C:\Program Files\Steam\bin\openvr_api.dll
2015-08-05 08:38 - 2015-08-05 08:38 - 00071168 _____ () c:\users\windows\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp58gk9k.dll
2015-03-04 23:45 - 2015-07-17 02:31 - 00012800 _____ () C:\Users\Windows\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 23:45 - 2015-07-17 02:31 - 00779776 _____ () C:\Users\Windows\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-07-30 12:28 - 2015-07-17 02:31 - 00056320 _____ () C:\Users\Windows\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-03-04 23:45 - 2015-07-17 02:31 - 00012288 _____ () C:\Users\Windows\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2014-08-30 18:12 - 2014-08-30 18:12 - 01269952 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\kpcengine.2.3.dll
2014-03-28 11:46 - 2014-05-20 03:11 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2014-05-01 15:35 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files\Steam\bin\libcef.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00012800 _____ () C:\Program Files\Jeppesen\JWC\boost_system-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00045056 _____ () C:\Program Files\Jeppesen\JWC\boost_date_time-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00699904 _____ () C:\Program Files\Jeppesen\JWC\boost_regex-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00046592 _____ () C:\Program Files\Jeppesen\JWC\boost_thread-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00053760 _____ () C:\Program Files\Jeppesen\JWC\boost_iostreams-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00065024 _____ () C:\Program Files\Jeppesen\JWC\boost_zlib-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:42 - 00130048 _____ () C:\Program Files\Jeppesen\JWC\boost_filesystem-vc90-mt-1_46_1.dll
2014-06-14 21:59 - 2012-02-23 15:47 - 00084480 _____ () C:\Program Files\Jeppesen\JWC\plugins\JVNavData.dll
2014-06-14 21:59 - 2012-02-23 15:48 - 00231936 _____ () C:\Program Files\Jeppesen\JWC\plugins\JWCConnect.dll
2014-08-30 18:12 - 2015-01-21 11:53 - 00459048 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\content_blocker@kaspersky.com\npcontentblocker.dll
2014-08-30 18:12 - 2015-01-21 11:53 - 00332584 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\online_banking@kaspersky.com\nponlinebanking.dll
2014-08-30 18:12 - 2015-01-21 11:53 - 00587048 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\FFExt\virtual_keyboard@kaspersky.com\npvkplugin.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer trusted/restricted ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1553175452-9795684-1435174660-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Windows\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{EA2E281C-4BCE-4391-ABCB-983DA77213F4}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{48D37DCF-C3B8-4FDC-B8E7-D7B87E4D5342}] => (Allow) C:\DATEV\PROGRAMM\Sws\LimaService.exe
FirewallRules: [{917179B8-2828-421F-BF1F-1E1BDD799EF1}] => (Allow) C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Game.exe
FirewallRules: [{B6E95F00-D6E7-4CBD-8ADA-CE19A236AD78}] => (Allow) C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Game.exe
FirewallRules: [{C0D9E0A5-D124-4274-ABA2-F2EFA43D30C1}] => (Allow) C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Launcher.exe
FirewallRules: [{AAE4659B-717F-44CC-95E5-5E2CD493359F}] => (Allow) C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas\Binaries\R6Vegas_Launcher.exe
FirewallRules: [{2D8C8866-0E61-488F-B019-B9C353145E4F}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{F4978272-C841-4A67-B192-D1AE8709474D}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{136A0220-CFD7-46E7-903C-E2070E9C84E6}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [TCP Query User{425FE012-725D-4BC9-B213-D9392657A9B7}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [UDP Query User{01E55F0A-D085-424F-9008-0966A2F41F62}C:\program files\real\realplayer\realplay.exe] => (Allow) C:\program files\real\realplayer\realplay.exe
FirewallRules: [{FF0DBA3A-4062-4934-BFD7-2274FC49D005}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{15C0F717-B469-470A-B9D8-2C9456714BDD}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{2BF0AA0B-0C0A-480E-B140-175A78AB5471}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{E43E42C0-011B-43CE-BB7E-B2F32AEF3414}] => (Allow) C:\Program Files\HP\HP Officejet 6600\bin\FaxApplications.exe
FirewallRules: [{8720CE0A-57FB-4111-BB68-D1F2752A24C7}] => (Allow) C:\Program Files\HP\HP Officejet 6600\bin\DigitalWizards.exe
FirewallRules: [{C9531EE3-C978-4C85-BE18-16CAAA69C382}] => (Allow) C:\Program Files\HP\HP Officejet 6600\bin\SendAFax.exe
FirewallRules: [{7883EE2D-4D62-48BC-AF95-FF6DD4F693D9}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\DeviceSetup.exe
FirewallRules: [{461CD3DF-51A0-4F14-8987-F2416E407D0C}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{6DE06E9D-B3BD-4A45-8614-32757DB80EA0}] => (Allow) C:\Program Files\HP\HP Officejet 6600\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{81110821-1EE8-49B9-9A1D-3ABC6D2F050A}] => (Allow) C:\Users\Windows\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{98E30CA0-E4E2-438E-AD09-1B8DE936FFCB}] => (Allow) C:\Users\Windows\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{ADFCCA78-172B-4077-8DA6-8164F323B911}] => (Allow) c:\program files\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{E007FBF5-D450-45C3-9490-5E96B46864FF}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{5F1C8D4A-351F-42CA-9709-10CFA2108D58}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{85E6DD16-3DA2-4D05-9678-D0CFBF89D0E0}] => (Allow) C:\Program Files\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [{71D7B692-B557-43A3-83EC-ADE3F00EB3F1}] => (Allow) C:\Program Files\Steam\SteamApps\common\Mafia II\pc\mafia2.exe
FirewallRules: [TCP Query User{3163CCE7-81AA-4159-8882-0D4307D31C0E}C:\users\windows\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\windows\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{D37B5B0E-FD4D-4681-BD99-5BC3AE0C6D4E}C:\users\windows\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\windows\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{0FF70218-4906-45A2-BFF1-D0AF3528E697}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{F705113B-D03C-4679-A44B-5F63CBB800ED}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{03B930F9-7116-4213-AFFC-637615E9B2ED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{94CFD6A3-F3A7-4054-80D1-86D1ED299160}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6FCC83E1-FE98-4929-8A6B-801BF3ADF630}] => (Allow) C:\Program Files\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{14F40169-579F-4CFF-B8F1-2E423FAC99EF}] => (Allow) C:\Program Files\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{E2AF496F-5906-4AF2-8454-886A8E67BA6C}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{E5510136-39A4-4873-B957-C35F49EC0215}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{429ED263-D7E9-4DF0-8D20-984C4325A642}] => (Allow) C:\Program Files\iTunes\iTunes.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (08/05/2015 09:15:43 AM) (Source: Datev.Framework.RemoteServiceModel.EnablerService) (EventID: 0) (User: )
Description: 05.08.2015 09:15:40 3 Error Datev.Framework.RemoteServiceModel
**************************************************************************
Datev.Framework.RemoteServiceModel.GenericService2010.exe Exception - Message
05.08.2015 09:15:40 Platform Target: x86 de-DE
DFL 4.0.0.0(4.31.4249.0) .Net 4.0.30319.36213
#DFL00301
Es ist ein lokales Verbindungsproblem zur Adresse 'net.pipe://localhost/Datev/Framework/Messaging/CentralMessagingService' auf der Maschine 'WINDOWS-PC' aufgetreten.
**************************************************************************
ExceptionType: Datev.Framework.RemoteServiceModel.RemoteServiceCommunicationException
#DFL00301
Es ist ein lokales Verbindungsproblem zur Adresse 'net.pipe://localhost/Datev/Framework/Messaging/CentralMessagingService' auf der Maschine 'WINDOWS-PC' aufgetreten.
--------------------------------------------------------------------------
ExceptionSource
--------------------------------------------------------------------------
Datev.Framework.RemoteServiceModel.EnablerService
--------------------------------------------------------------------------
Details:
--------------------------------------------------------------------------
SecureMessageText: True
ReasonId: 0
Priority: High
--------------------------------------------------------------------------
ExceptionCollection RemoteServiceCommunicationException
**************************************************************************
Exception 1 in Collection:
--------------------------------------------------------------------------
ExceptionType: System.ArgumentException
#EXC485748116
Async End hat einen Aufruf auf dem falschen Kanal platziert.
Parametername: result
--------------------------------------------------------------------------
ExceptionSource
--------------------------------------------------------------------------
System.ServiceModel
--------------------------------------------------------------------------
TargetSite
--------------------------------------------------------------------------
System.Object EndCall(System.String, System.Object[], System.IAsyncResult)
--------------------------------------------------------------------------
Details:
--------------------------------------------------------------------------
ParamName: result
--------------------------------------------------------------------------
StackTrace
--------------------------------------------------------------------------
bei System.ServiceModel.Channels.ServiceChannel.EndCall(String action, Object[] outs, IAsyncResult result)
bei System.ServiceModel.Channels.ServiceChannelProxy.InvokeEndService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
bei System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
----------------------------
Application Information
----------------------------
TimeStamp=Mittwoch, 5. August 2015, 09:15:41
EntryModule=C:\DATEV\SYSTEM\Datev.Framework.RemoteServiceModel.GenericService2010.exe, 06.09.2013 16:44:36
KernelModule=Datev.Framework.MicroKernel, 26.03.2014 19:16:56
--------------------------------------------------------------------------
Error: (08/05/2015 09:15:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 426772
Error: (08/05/2015 09:15:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 426772
Error: (08/05/2015 09:15:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/05/2015 08:40:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (08/04/2015 08:28:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.17923, Zeitstempel: 0x55945712
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18869, Zeitstempel: 0x55636303
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00032214
ID des fehlerhaften Prozesses: 0x17c8
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Error: (08/04/2015 08:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49187
Error: (08/04/2015 08:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49187
Error: (08/04/2015 08:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/04/2015 09:32:45 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15601
Systemfehler:
=============
Error: (08/04/2015 07:22:45 PM) (Source: Microsoft-Windows-Eventlog) (EventID: 23) (User: NT-AUTORITÄT)
Description: Der Ereignisprotokollierungsdienst hat einen Fehler (Auflösung=32) beim Initialisieren der Protokollierung der Ressourcen für Kanal "Microsoft-Windows-Diagnosis-Scripted/Operational" erkannt.
Error: (08/02/2015 11:36:31 AM) (Source: Schannel) (EventID: 4119) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung empfangen: 40.
Error: (08/01/2015 10:42:19 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Diagnostics Tracking Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/31/2015 09:46:56 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definition Update for Windows Defender - KB915597 (Definition 1.203.913.0)
Error: (07/30/2015 12:37:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Diagnostics Tracking Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/30/2015 11:26:37 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Diagnostics Tracking Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/29/2015 11:33:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Diagnostics Tracking Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/29/2015 10:39:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (07/29/2015 10:39:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "iPod-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (07/29/2015 10:39:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "VIA Karaoke digital mixer Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Microsoft Office:
=========================
Error: (08/05/2015 09:15:43 AM) (Source: Datev.Framework.RemoteServiceModel.EnablerService) (EventID: 0) (User: )
Description: 05.08.2015 09:15:40 3 Error Datev.Framework.RemoteServiceModel
**************************************************************************
Datev.Framework.RemoteServiceModel.GenericService2010.exe Exception - Message
05.08.2015 09:15:40 Platform Target: x86 de-DE
DFL 4.0.0.0(4.31.4249.0) .Net 4.0.30319.36213
#DFL00301
Es ist ein lokales Verbindungsproblem zur Adresse 'net.pipe://localhost/Datev/Framework/Messaging/CentralMessagingService' auf der Maschine 'WINDOWS-PC' aufgetreten.
**************************************************************************
ExceptionType: Datev.Framework.RemoteServiceModel.RemoteServiceCommunicationException
#DFL00301
Es ist ein lokales Verbindungsproblem zur Adresse 'net.pipe://localhost/Datev/Framework/Messaging/CentralMessagingService' auf der Maschine 'WINDOWS-PC' aufgetreten.
--------------------------------------------------------------------------
ExceptionSource
--------------------------------------------------------------------------
Datev.Framework.RemoteServiceModel.EnablerService
--------------------------------------------------------------------------
Details:
--------------------------------------------------------------------------
SecureMessageText: True
ReasonId: 0
Priority: High
--------------------------------------------------------------------------
ExceptionCollection RemoteServiceCommunicationException
**************************************************************************
Exception 1 in Collection:
--------------------------------------------------------------------------
ExceptionType: System.ArgumentException
#EXC485748116
Async End hat einen Aufruf auf dem falschen Kanal platziert.
Parametername: result
--------------------------------------------------------------------------
ExceptionSource
--------------------------------------------------------------------------
System.ServiceModel
--------------------------------------------------------------------------
TargetSite
--------------------------------------------------------------------------
System.Object EndCall(System.String, System.Object[], System.IAsyncResult)
--------------------------------------------------------------------------
Details:
--------------------------------------------------------------------------
ParamName: result
--------------------------------------------------------------------------
StackTrace
--------------------------------------------------------------------------
bei System.ServiceModel.Channels.ServiceChannel.EndCall(String action, Object[] outs, IAsyncResult result)
bei System.ServiceModel.Channels.ServiceChannelProxy.InvokeEndService(IMethodCallMessage methodCall, ProxyOperationRuntime operation)
bei System.ServiceModel.Channels.ServiceChannelProxy.Invoke(IMessage message)
----------------------------
Application Information
----------------------------
TimeStamp=Mittwoch, 5. August 2015, 09:15:41
EntryModule=C:\DATEV\SYSTEM\Datev.Framework.RemoteServiceModel.GenericService2010.exe, 06.09.2013 16:44:36
KernelModule=Datev.Framework.MicroKernel, 26.03.2014 19:16:56
--------------------------------------------------------------------------
Error: (08/05/2015 09:15:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 426772
Error: (08/05/2015 09:15:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 426772
Error: (08/05/2015 09:15:36 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/05/2015 08:40:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (08/04/2015 08:28:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.1792355945712ntdll.dll6.1.7601.1886955636303c00000050003221417c801d0cee3519d96d8C:\Windows\System32\GWX\GWXUX.exeC:\Windows\SYSTEM32\ntdll.dll91318f24-3ad6-11e5-a43c-d850e6bcab9a
Error: (08/04/2015 08:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 49187
Error: (08/04/2015 08:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 49187
Error: (08/04/2015 08:18:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/04/2015 09:32:45 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15601
CodeIntegrity:
===================================
Date: 2015-03-11 09:50:01.081
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-11 09:50:01.013
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-11 09:13:51.358
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-11 09:13:51.280
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-10 16:29:53.892
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-10 16:29:53.876
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-10 09:32:42.174
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-10 09:32:42.158
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-10 09:30:06.970
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2015-03-10 09:30:06.892
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.1\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: AMD Athlon(tm) II X3 460 Processor
Percentage of memory in use: 45%
Total physical RAM: 3582.12 MB
Available physical RAM: 1964.58 MB
Total Virtual: 7162.55 MB
Available Virtual: 4701.2 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:780.99 GB) NTFS
Drive e: (RCT3) (CDROM) (Total:0.61 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D6013F58)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== Ende vom log ============================
Ich probiere jetzt mal aus, ob das Problem auch im Internet Explorer auftritt. |
