hi schrauber,
ich denke, dass ich nichts auf dem PC habe, ich habe die einschränkungen an allen PCs hier, und wirklich nur dieser und ein andere sind im netzwerk und auf "gefährlichen" webseiten....
anbei die txt files:
FRST.txt
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2014
Ran by Marion (administrator) on ALDILAPTOP on 12-03-2014 16:19:58
Running from C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Downloads
Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: German Standard
Internet Explorer Version 6
Boot Mode: Normal
==================== Processes (Whitelisted) =================
() C:\WINDOWS\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\mdm.exe
() C:\Programme\CDBurnerXP\NMSAccessU.exe
(Wistron) C:\Programme\Launch Manager\HotkeyApp.exe
() C:\Programme\Launch Manager\LaunchAp.exe
() C:\Programme\Launch Manager\WButton.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [CtrlVol] - C:\Programme\Launch Manager\CtrlVol.exe [20480 2003-09-16] (Wistron)
HKLM\...\Run: [HotkeyApp] - C:\Programme\Launch Manager\HotkeyApp.exe [49152 2004-07-26] (Wistron)
HKLM\...\Run: [LaunchAp] - C:\Programme\Launch Manager\LaunchAp.exe [32768 2004-08-06] ()
HKLM\...\Run: [Wbutton] - C:\Programme\Launch Manager\WButton.exe [73728 2004-08-06] ()
HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
HKU\S-1-5-21-2364829053-3113332338-1208155509-1006\...\MountPoints2: {0147d7c0-5914-11e0-bda6-000e35516319} - G:\setup_vmc_lite.exe /checkApplicationPresence
HKU\S-1-5-21-2364829053-3113332338-1208155509-1006\...\MountPoints2: {4cd84d80-2720-11e2-8058-000e35516319} - G:\InstallTomTomHOME.exe
HKU\S-1-5-21-2364829053-3113332338-1208155509-1006\...\MountPoints2: {88460b47-71cd-11e2-80c6-000e35516319} - G:\LaunchU3.exe -a
HKU\S-1-5-21-2364829053-3113332338-1208155509-1006\...\MountPoints2: {9b349820-6a54-11e0-bdbf-000e35516319} - G:\InstallTomTomHOME.exe
HKU\S-1-5-21-2364829053-3113332338-1208155509-1006\...\MountPoints2: {b699e466-414c-11df-bbde-000e35516319} - G:\MediaManager.exe
AppInit_DLLs: C:\PROGRA~1\GEMEIN~1\JAKSTA~1\AUDIOC~1\jaudcap.dll => C:\Programme\Gemeinsame Dateien\Jaksta Technologies\Audio Capture\jaudcap.dll [268064 2013-05-10] (Jaksta Technologies Pty Ltd)
==================== Internet (Whitelisted) ====================
ProxyServer: 216.77.188.96:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.medion.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKCU - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} URL = hxxp://search.avg.com/route/?d=$instd$&v=$ver$&i=$dchid$&tp=chrome&q={searchTerms}&lng={moz:locale}&iy=&ychte=de
BHO: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programme\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No File
Toolbar: HKCU - No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
Toolbar: HKCU - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
DPF: {31435657-9980-0010-8000-00AA00389B71} hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {B07F54E6-0806-47DB-B5D8-398F240776F2} file://F:\viewer\ORDcmViewCD.ocx
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: AutorunsDisabled\skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Gemeinsame Dateien\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Programme\Gemeinsame Dateien\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default
FF NetworkProxy: "http", "213.209.107.179"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Programme\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Programme\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Programme\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @idsoftware.com/QuakeLive - C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Programme\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Programme\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 - C:\Programme\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 - C:\Programme\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Programme\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Programme\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/vbp;version=0.9.17 - C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Veetle\VLCBroadcast\npvbp.dll (Veetle Inc)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.17 - C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.17 - C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Programme\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @viewpoint.com/VMP - C:\Programme\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Dokumente und Einstellungen\Marion\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Dokumente und Einstellungen\Marion\Lokale Einstellungen\Anwendungsdaten\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npFoxitReaderPlugin.dll (Foxit Software Company)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Programme\mozilla firefox\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF SearchPlugin: C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Programme\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\searchplugins\avg_igeared.xml
FF SearchPlugin: C:\Programme\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Programme\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: DownloadHelper - C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-14]
FF Extension: eBesucher Surfbar - C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\Extensions\ebesucher-surfbar@kashiif.com.xpi [2013-07-24]
FF Extension: WEB.DE MailCheck - C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\Mozilla\Firefox\Profiles\zgrz2sz4.default\Extensions\toolbar@web.de.xpi [2013-03-08]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Programme\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Programme\Java\jre6\lib\deploy\jqs\ff [2010-11-25]
========================== Services (Whitelisted) =================
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [389120 2004-07-17] ()
S3 CA_LIC_CLNT; C:\Programme\CA\SharedComponents\CA_LIC\lic98rmt.exe [77824 2002-09-19] (Computer Associates)
S3 CA_LIC_SRVR; C:\Programme\CA\SharedComponents\CA_LIC\lic98rmtd.exe [77824 2002-09-19] (Computer Associates)
S4 gupdate; C:\Programme\Google\Update\GoogleUpdate.exe [136176 2012-01-31] (Google Inc.)
S4 gupdatem; C:\Programme\Google\Update\GoogleUpdate.exe [136176 2012-01-31] (Google Inc.)
S4 JavaQuickStarterService; C:\Programme\Java\jre6\bin\jqs.exe [153376 2011-02-02] (Sun Microsystems, Inc.)
S4 MBAMService; C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MDM; C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Programme\Mozilla Maintenance Service\maintenanceservice.exe [113120 2012-07-17] (Mozilla Foundation)
R2 NMSAccess; C:\Programme\CDBurnerXP\NMSAccessU.exe [71096 2010-03-04] ()
S3 odserv; C:\Programme\Gemeinsame Dateien\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S3 ose; C:\Programme\Gemeinsame Dateien\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S4 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75064 2010-09-14] ()
S4 PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [214720 2010-09-13] ()
R2 TeamViewer9; C:\Programme\TeamViewer\Version9\TeamViewer_Service.exe [5341536 2013-12-17] (TeamViewer GmbH)
S3 x10nets; C:\Programme\Common Files\X10\Common\X10nets.exe [20480 2001-11-12] (X10)
S3 BsMobileCS; C:\Programme\IVT Corporation\BlueSoleil\BsMobileCS.exe [X]
S3 Irmon; %SystemRoot%\System32\irmon.dll [X]
S2 LogWatch; No ImagePath
S4 Nero BackItUp Scheduler 3; No ImagePath
S4 Nero BackItUp Scheduler 4.0; C:\Programme\Gemeinsame Dateien\Nero\Nero BackItUp 4\NBService.exe [X]
S3 NMIndexingService; "C:\Programme\Gemeinsame Dateien\Nero\Lib\NMIndexingService.exe" [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
==================== Drivers (Whitelisted) ====================
S3 3xHybrid; C:\WINDOWS\System32\DRIVERS\3xHybrid.sys [698368 2004-09-03] (Philips Semiconductors GmbH)
S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
R3 ALCXSENS; C:\WINDOWS\System32\drivers\ALCXSENS.SYS [400384 2004-02-24] (Sensaura)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [611820 2004-02-26] (Realtek Semiconductor Corp.)
S3 appliand; C:\WINDOWS\System32\DRIVERS\appliand.sys [28256 2011-06-26] (Applian Technologies Inc.)
R3 appliandMP; C:\WINDOWS\System32\DRIVERS\appliand.sys [28256 2011-06-26] (Applian Technologies Inc.)
R3 AVMWAN; C:\WINDOWS\System32\DRIVERS\avmwan.sys [37568 2001-08-17] (AVM GmbH)
R3 BlueletAudio; C:\WINDOWS\System32\DRIVERS\blueletaudio.sys [34704 2007-05-11] (IVT Corporation.)
R3 BlueletSCOAudio; C:\WINDOWS\System32\DRIVERS\BlueletSCOAudio.sys [27792 2007-03-05] (IVT Corporation.)
S3 BT; C:\WINDOWS\System32\DRIVERS\btnetdrv.sys [16272 2007-05-23] (IVT Corporation.)
S3 Btcsrusb; C:\WINDOWS\System32\Drivers\btcusb.sys [36496 2007-05-23] (IVT Corporation.)
R0 BtHidBus; C:\WINDOWS\System32\Drivers\BtHidBus.sys [20616 2008-07-31] (IVT Corporation.)
R0 BTHidEnum; C:\WINDOWS\System32\Drivers\vbtenum.sys [20880 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\WINDOWS\System32\Drivers\BTHidMgr.sys [35600 2007-03-05] (IVT Corporation.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [34760 2007-02-16] (SlySoft, Inc.)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [31088 2010-12-16] (Elaborate Bytes AG)
S3 fpcmbase; C:\WINDOWS\System32\DRIVERS\fpcmbase.sys [441728 2001-08-17] (AVM GmbH)
S3 gmer; C:\WINDOWS\System32\DRIVERS\gmer.sys [85969 2009-12-15] (GMER)
R1 Hotkey; C:\WINDOWS\system32\Drivers\Hotkey.sys [9867 2003-04-28] ()
S3 hwcdcmdm0; C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys [65152 2006-08-24] (QUALCOMM Incorporated)
S3 hwusbapp; C:\WINDOWS\System32\DRIVERS\ewusbapp.sys [65152 2006-08-24] (QUALCOMM Incorporated)
S3 hwusbser; C:\WINDOWS\System32\DRIVERS\ewusbser.sys [65152 2006-08-24] (QUALCOMM Incorporated)
R3 IntelC51; C:\WINDOWS\System32\DRIVERS\IntelC51.sys [1086853 2004-01-20] (Intel Corporation)
R3 IntelC52; C:\WINDOWS\System32\DRIVERS\IntelC52.sys [619369 2004-01-20] (Intel Corporation)
R3 IntelC53; C:\WINDOWS\System32\DRIVERS\IntelC53.sys [77925 2004-01-20] (Intel Corporation)
S3 IvtBtBUs; C:\WINDOWS\System32\Drivers\IvtBtBus.sys [26248 2008-07-02] (IVT Corporation.)
U0 kcxpf; C:\WINDOWS\System32\drivers\dknlu.sys [54016 2014-03-12] ()
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 mohfilt; C:\WINDOWS\System32\DRIVERS\mohfilt.sys [31440 2004-01-20] (Intel Corporation)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 nm; C:\WINDOWS\System32\DRIVERS\NMnt.sys [40320 2008-04-13] (Microsoft Corporation)
R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [50704 2009-10-20] (CACE Technologies, Inc.)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [10368 2003-12-05] (Padus, Inc.)
S3 PnkBstrK; C:\WINDOWS\system32\drivers\PnkBstrK.sys [139336 2010-09-13] ()
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 softctrl; C:\WINDOWS\System32\DRIVERS\softctrl.sys [10080 2005-12-21] (Alcor Micro Corp.)
R2 StarOpen; C:\WINDOWS\system32\Drivers\StarOpen.sys [5504 2009-11-12] ()
S3 teamviewervpn; C:\WINDOWS\System32\DRIVERS\teamviewervpn.sys [25088 2012-11-28] (TeamViewer GmbH)
R3 VComm; C:\WINDOWS\System32\DRIVERS\VComm.sys [34448 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\WINDOWS\System32\Drivers\VcommMgr.sys [44304 2007-03-05] (IVT Corporation.)
S3 VHidMinidrv; C:\WINDOWS\System32\drivers\VHIDMini.sys [19472 2007-03-05] (IVT Corporation.)
S3 w22n51; C:\WINDOWS\System32\DRIVERS\w22n51.sys [1646720 2004-01-02] (Intel® Corporation)
R3 w29n51; C:\WINDOWS\System32\DRIVERS\w29n51.sys [2216064 2008-01-07] (Intel® Corporation)
S3 wceusbsh; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [28672 2006-11-06] (Microsoft Corporation)
R3 X10UIF; C:\WINDOWS\System32\Drivers\x10uif.sys [10761 2001-11-14] (X10 Wireless Technology, Inc.)
S3 CBEN5; system32\DRIVERS\cben5.sys [X]
S3 ImDisk; \??\C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Downloads\imdisk.sys [X]
S2 irda; system32\DRIVERS\irda.sys [X]
S4 mailKmd; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S4 wanatw; system32\DRIVERS\wanatw4.sys [X]
S4 Wbutton; \SystemRoot\system32\drivers\Wbutton.sys [X]
U1 WS2IFSL;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-12 16:18 - 2014-03-12 16:19 - 00000000 ___DC () C:\FRST
2014-03-12 15:07 - 2014-03-12 15:07 - 00054016 _____ () C:\WINDOWS\system32\Drivers\dknlu.sys
2014-02-26 08:59 - 2014-02-26 08:59 - 00000707 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\Hard Disk Low Level Format Tool.lnk
2014-02-26 08:59 - 2014-02-26 08:59 - 00000001 _____ () C:\Dokumente und Einstellungen\XXX\Lokale Einstellungen\Anwendungsdaten\llftool.4.12.agreement
2014-02-26 08:59 - 2014-02-26 08:59 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HDD Low Level Format Tool
2014-02-26 08:59 - 2014-02-26 08:59 - 00000000 ____D () C:\Programme\HDDGURU LLF Tool
2014-02-23 17:51 - 2014-02-24 18:12 - 00000021 _____ () C:\Dokumente und Einstellungen\XXX\Eigene Dateien\TIMESET.txt
2014-02-12 13:55 - 2014-02-12 13:55 - 00000922 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\AVS4YOU Software Navigator.lnk
2014-02-12 13:55 - 2014-02-12 13:55 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Startmenü\Programme\AVS4YOU
2014-02-12 13:54 - 2014-02-12 13:55 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\AVS4YOU
2014-02-12 13:54 - 2014-02-12 13:54 - 00000768 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\AVS Video Converter 6.lnk
2014-02-12 13:51 - 2014-02-12 13:55 - 00000000 ____D () C:\Programme\AVS4YOU
2014-02-12 13:51 - 2008-08-13 10:22 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc70.dll
2014-02-12 13:26 - 2014-02-12 13:26 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Anwendungsdaten\AVS4YOU
2014-02-12 13:23 - 2014-02-27 16:07 - 00012974 _____ () C:\WINDOWS\FaxSetup.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00008637 _____ () C:\WINDOWS\ocgen.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00006283 _____ () C:\WINDOWS\tsoc.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00004294 _____ () C:\WINDOWS\comsetup.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00002806 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00001956 _____ () C:\WINDOWS\iis6.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00001917 _____ () C:\WINDOWS\imsins.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00000767 _____ () C:\WINDOWS\ocmsn.log
2014-02-12 13:23 - 2014-02-27 16:07 - 00000739 _____ () C:\WINDOWS\msgsocm.log
2014-02-12 13:23 - 2014-02-12 13:55 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\AVSMedia
2014-02-12 13:23 - 2014-02-12 13:23 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2014-02-12 13:22 - 2014-02-12 17:34 - 00034544 _____ () C:\WINDOWS\spupdsvc.log
2014-02-12 13:22 - 2014-02-12 13:22 - 00000712 _____ () C:\WINDOWS\updspapi.log
2014-02-12 13:22 - 2014-02-12 13:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWMFDist11$
2014-02-12 13:20 - 2014-02-12 13:57 - 00040683 _____ () C:\WINDOWS\WMFDist11.log
2014-02-12 13:17 - 2014-02-12 13:26 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVS4YOU
==================== One Month Modified Files and Folders =======
2014-03-12 16:19 - 2014-03-12 16:18 - 00000000 ___DC () C:\FRST
2014-03-12 16:04 - 2010-01-08 12:16 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Anwendungsdaten\Spider Player
2014-03-12 15:07 - 2014-03-12 15:07 - 00054016 _____ () C:\WINDOWS\system32\Drivers\dknlu.sys
2014-03-12 15:07 - 2006-02-10 09:47 - 00000000 ____D () C:\WINDOWS\pss
2014-03-12 09:03 - 2009-09-01 11:23 - 00002409 ____C () C:\Dokumente und Einstellungen\All Users\Desktop\Paint Shop Pro 7.lnk
2014-03-12 08:42 - 2009-06-08 21:46 - 00000157 _____ () C:\WINDOWS\wiadebug.log
2014-03-12 08:42 - 2009-06-08 21:46 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-03-11 22:04 - 2013-06-09 20:59 - 00036761 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-11 22:04 - 2004-10-21 17:46 - 00000190 ___SH () C:\Dokumente und Einstellungen\XXX\ntuser.ini
2014-03-11 17:51 - 2010-10-01 10:11 - 00000282 _____ () C:\Dokumente und Einstellungen\XXX\Eigene Dateien\Bookmarks2010101.html
2014-03-11 14:53 - 2010-02-19 12:11 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Anwendungsdaten\vlc
2014-03-10 19:44 - 2008-10-25 11:53 - 00182105 _____ () C:\Dokumente und Einstellungen\XXX\Eigene Dateien\zugänge.htm
2014-03-10 17:11 - 2004-10-21 17:55 - 00001479 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\Windows-Explorer.lnk
2014-03-10 15:13 - 2008-11-04 10:30 - 00002525 ____C () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\Microsoft FrontPage.lnk
2014-03-08 11:40 - 2009-02-27 16:48 - 00000000 ____D () C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Anleitungen-Handbücher
2014-03-07 21:39 - 2013-06-14 11:26 - 00162965 _____ () C:\WINDOWS\setupapi.log
2014-03-06 20:33 - 2004-10-21 17:46 - 00000000 ___RD () C:\Dokumente und Einstellungen\XXX\Eigene Dateien\Eigene Musik
2014-03-04 11:32 - 2004-10-21 17:46 - 00148992 _____ () C:\Dokumente und Einstellungen\XXX\Lokale Einstellungen\Anwendungsdaten\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-01 22:28 - 2009-12-18 09:55 - 00001434 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\shutdown.exe.lnk
2014-02-28 11:58 - 2013-07-02 08:56 - 00001500 _____ () C:\WINDOWS\setupact.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00012974 _____ () C:\WINDOWS\FaxSetup.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00008637 _____ () C:\WINDOWS\ocgen.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00006283 _____ () C:\WINDOWS\tsoc.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00004294 _____ () C:\WINDOWS\comsetup.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00002806 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00001956 _____ () C:\WINDOWS\iis6.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00001917 _____ () C:\WINDOWS\imsins.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00000767 _____ () C:\WINDOWS\ocmsn.log
2014-02-27 16:07 - 2014-02-12 13:23 - 00000739 _____ () C:\WINDOWS\msgsocm.log
2014-02-27 15:58 - 2009-01-22 12:49 - 00000000 ____D () C:\Programme\SRWare Iron
2014-02-26 10:42 - 2010-09-23 10:43 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Eigene Dateien\e-Book-Paper
2014-02-26 08:59 - 2014-02-26 08:59 - 00000707 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\Hard Disk Low Level Format Tool.lnk
2014-02-26 08:59 - 2014-02-26 08:59 - 00000001 _____ () C:\Dokumente und Einstellungen\XXX\Lokale Einstellungen\Anwendungsdaten\llftool.4.12.agreement
2014-02-26 08:59 - 2014-02-26 08:59 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\HDD Low Level Format Tool
2014-02-26 08:59 - 2014-02-26 08:59 - 00000000 ____D () C:\Programme\HDDGURU LLF Tool
2014-02-26 08:59 - 2004-08-17 17:33 - 00000000 ___RD () C:\Programme
2014-02-26 08:59 - 2004-08-17 17:32 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme
2014-02-25 23:47 - 2008-10-21 09:55 - 00065536 _____ () C:\WINDOWS\system32\config\ODiag.evt
2014-02-24 18:12 - 2014-02-23 17:51 - 00000021 _____ () C:\Dokumente und Einstellungen\XXX\Eigene Dateien\TIMESET.txt
2014-02-21 17:24 - 2004-10-21 17:46 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX
2014-02-16 16:20 - 2009-02-02 11:29 - 00000068 ____C () C:\Dokumente und Einstellungen\XXX\Desktop\Aktien Derivate.txt
2014-02-14 08:12 - 2004-08-18 01:19 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-12 17:34 - 2014-02-12 13:22 - 00034544 _____ () C:\WINDOWS\spupdsvc.log
2014-02-12 17:33 - 2013-10-26 09:49 - 00004287 ____C () C:\WINDOWS\wmsetup.log
2014-02-12 13:57 - 2014-02-12 13:20 - 00040683 _____ () C:\WINDOWS\WMFDist11.log
2014-02-12 13:55 - 2014-02-12 13:55 - 00000922 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\AVS4YOU Software Navigator.lnk
2014-02-12 13:55 - 2014-02-12 13:55 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Startmenü\Programme\AVS4YOU
2014-02-12 13:55 - 2014-02-12 13:54 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Startmenü\Programme\AVS4YOU
2014-02-12 13:55 - 2014-02-12 13:51 - 00000000 ____D () C:\Programme\AVS4YOU
2014-02-12 13:55 - 2014-02-12 13:23 - 00000000 ____D () C:\Programme\Gemeinsame Dateien\AVSMedia
2014-02-12 13:54 - 2014-02-12 13:54 - 00000768 _____ () C:\Dokumente und Einstellungen\XXX\Desktop\AVS Video Converter 6.lnk
2014-02-12 13:26 - 2014-02-12 13:26 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Anwendungsdaten\AVS4YOU
2014-02-12 13:26 - 2014-02-12 13:17 - 00000000 ___DC () C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\AVS4YOU
2014-02-12 13:25 - 2004-10-21 17:46 - 00000000 ____D () C:\Dokumente und Einstellungen\XXX\Startmenü\Programme
2014-02-12 13:23 - 2014-02-12 13:23 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2014-02-12 13:23 - 2004-08-17 16:43 - 00316640 ____C () C:\WINDOWS\WMSysPr9.prx
2014-02-12 13:23 - 2004-08-17 16:42 - 00000000 _SHDC () C:\Dokumente und Einstellungen\All Users\DRM
2014-02-12 13:22 - 2014-02-12 13:22 - 00000712 _____ () C:\WINDOWS\updspapi.log
2014-02-12 13:22 - 2014-02-12 13:22 - 00000000 __HDC () C:\WINDOWS\$NtUninstallWMFDist11$
2014-02-11 09:57 - 2004-10-21 17:46 - 00077488 ____C () C:\Dokumente und Einstellungen\XXX\Lokale Einstellungen\Anwendungsdaten\GDIPFONTCACHEV1.DAT
Files to move or delete:
====================
C:\Dokumente und Einstellungen\Marion\Anwendungsdaten\sversion.ini
==================== Bamital & volsnap Check =================
C:\WINDOWS\explorer.exe
[2004-08-04 13:00] - [2008-04-14 06:52] - 1036800 ____A (Microsoft Corporation) 418045a93cd87a352098ab7dabe1b53e
C:\WINDOWS\system32\winlogon.exe
[2009-12-14 17:49] - [2008-04-14 06:53] - 0513024 ____A (Microsoft Corporation) f09a527b422e25c478e38caa0e44417a
C:\WINDOWS\system32\svchost.exe
[2004-08-04 13:00] - [2008-04-14 06:53] - 0014336 ____A (Microsoft Corporation) 4fbc75b74479c7a6f829e0ca19df3366
C:\WINDOWS\system32\services.exe
[2004-08-04 13:00] - [2008-04-14 06:53] - 0109056 ____A (Microsoft Corporation) 4bb6a83640f1d1792ad21ce767b621c6
C:\WINDOWS\system32\User32.dll
[2004-08-04 13:00] - [2008-04-14 06:52] - 0580096 ____A (Microsoft Corporation) b0050cc5340e3a0760dd8b417ff7aebd
C:\WINDOWS\system32\userinit.exe
[2009-12-14 17:49] - [2008-04-14 06:53] - 0026624 ____A (Microsoft Corporation) 788f95312e26389d596c0fa55834e106
C:\WINDOWS\system32\rpcss.dll
[2004-08-04 13:00] - [2008-04-14 06:52] - 0399360 ____A (Microsoft Corporation) e970c2296916bf4a2f958680016fe312
ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 13:00] - [2008-04-14 06:22] - 0053760 ___AC (Microsoft Corporation) a5a712f4e880874a477af790b5186e1d
==================== End Of Log ============================ --- --- ---
--- --- ---
addition.txt Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 11-03-2014
Ran by Marion at 2014-03-12 16:22:17
Running from C:\Dokumente und Einstellungen\Marion\Eigene Dateien\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
==================== Installed Programs ======================
7-Zip 4.65 (HKLM\...\7-Zip) (Version: - )
Active@ UNDELETE 7 Enterprise (HKLM\...\Active@ UNDELETE 7 Enterprise) (Version: - )
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.42.34 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.5.502.146 - Adobe Systems Incorporated)
AllDup 3.2.10 (HKLM\...\AllDup_is1) (Version: 3.2.10 - Michael Thummerer Software Design)
ATI - Dienstprogramm zur Deinstallation der Software (HKLM\...\All ATI Software) (Version: 6.14.10.1009 - )
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5117 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.04-040717a-017603C - )
AVS Update Manager 1.0 (HKLM\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Converter 6 (HKLM\...\AVS4YOU Video Converter 6_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
BASE & E-Plus Notebook Card (HKLM\...\{C2F7854C-A88B-462D-B383-85685EE20837}) (Version: - )
Bluesoleil2.6.0.9 Release 070606 (HKLM\...\{846AC73B-9394-48B9-B941-8F7F472F0047}) (Version: 2.6.0.9 Release 070606 - IVT Corporation)
Broadcom 440x 10/100 Integrated Controller (HKLM\...\InstallShield_{52504CE6-E909-4113-B232-4AFEC6543A61}) (Version: 5.50.01 - Broadcom)
Broadcom 440x 10/100 Integrated Controller (Version: 5.50.01 - Broadcom) Hidden
CA Licensing (Version: 1.52 - Computer Associates International, Inc.) Hidden
Canon iP90 (HKLM\...\CANONBJ_Deinstall_CNMCP71.DLL) (Version: - )
Canon iP90 series Benutzerregistrierung (HKLM\...\Canon iP90 series Benutzerregistrierung) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 3.03 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP)
CIB pdf brewer 2.5.22 (HKLM\...\{F0312AC6-988B-11DA-9C49-000476F770CC}) (Version: 2.5.22 - CIB software GmbH)
CloneCD (HKLM\...\CloneCD) (Version: - SlySoft)
CloneDVD2 (HKLM\...\CloneDVD2) (Version: 2.9.3.0 - Elaborate Bytes)
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 6.8.2 - )
DivX-Setup (HKLM\...\DivX Setup.divx.com) (Version: 2.1.2.2 - DivX, Inc. )
Duplicate Finder v4.2.0.0 (HKLM\...\Duplicate Finder - Free Edition_is1) (Version: - Ashisoft)
Easy HTML To Any Script Converter (HKLM\...\Easy HTML To Any Script Converter) (Version: 3.0.0 - easy HTools)
ffdshow v1.2.4422 [2012-04-09] (HKLM\...\ffdshow_is1) (Version: 1.2.4422.0 - )
FlvRecorder (HKLM\...\Flv Recorder_is1) (Version: - )
Foxit Advanced PDF Editor 3 (HKLM\...\B521582C-6BE3-491D-BCC8-FFB8301298E9_is1) (Version: 3.0.0.0 - Foxit Corporation)
Foxit Reader (HKLM\...\Foxit Reader) (Version: 4.3.0.1110 - Foxit Corporation)
Google Drive (HKLM\...\{7A21C722-F259-4976-B7AA-6658E5FDEDAF}) (Version: 1.7.4018.3496 - Google, Inc.)
Google Update Helper (Version: 1.3.21.135 - Google Inc.) Hidden
Hard Disk Low Level Format Tool 4.12 (HKLM\...\Hard Disk Low Level Format Tool_is1) (Version: - HDDGURU)
HighMAT-Erweiterung für den Microsoft Windows XP-Assistenten zum Schreiben von CDs (HKLM\...\{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}) (Version: 1.1.1905.1 - Microsoft Corporation)
HijackThis 2.0.2 (HKLM\...\HijackThis) (Version: 2.0.2 - TrendMicro)
Hotfix für Windows XP (KB932716-v2) (HKLM\...\KB932716-v2) (Version: 2 - Microsoft Corporation)
iFunbox (v2.6.2375.747), iFunbox DevTeam (HKLM\...\iFunbox_is1) (Version: v2.6.2375.747 - )
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.5.0 - LIGHTNING UK!)
Informationen über Ihren PC (HKLM\...\{3D1A6B70-3E02-49BC-88B0-916C80274632}) (Version: - )
Intel(R) 537EA Modem (HKLM\...\Intel(R) 537EA Modem) (Version: - )
Java Auto Updater (Version: 2.0.3.1 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 24 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216023FF}) (Version: 6.0.240 - Oracle)
Launch Manager V1.1.3 (HKLM\...\{D0846526-66DD-4DC9-A02C-98F9A2806812}) (Version: - )
MakeMKV v1.7.0 (HKLM\...\MakeMKV) (Version: v1.7.0 - GuinpinSoft inc)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Medi@Show (HKLM\...\MediaShow) (Version: - )
MediaInfo 0.7.60 (HKLM\...\MediaInfo) (Version: 0.7.60 - MediaArea.net)
Microsoft .NET Framework 2.0 (HKLM\...\Microsoft .NET Framework 2.0) (Version: - Microsoft Corporation)
Microsoft .NET Framework 2.0 (Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office XP Professional mit FrontPage (HKLM\...\{90280407-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.2701.0 - Microsoft Corporation)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (HKLM\...\{90120000-00B2-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Software Update for Web Folders (German) 12 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mobile Master Copy Station (Version: 8.6.5 - Jumping Bytes) Hidden
Mobile Master Copy Station 8.6.5 (HKLM\...\Mobile Master Copy Station) (Version: 8.6.5 - Jumping Bytes)
Mozilla Firefox 13.0.1 (x86 de) (HKLM\...\Mozilla Firefox 13.0.1 (x86 de)) (Version: 13.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 13.0.1 - Mozilla)
MSXML 6.0 Parser (KB933579) (HKLM\...\{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}) (Version: 6.10.1200.0 - Microsoft Corporation)
MUSICMATCH® Jukebox (HKLM\...\{45EBDA59-D33B-433A-956E-B2F236468B56}) (Version: - )
neroxml (Version: 1.0.0 - Nero AG) Hidden
OpenAL (HKLM\...\OpenAL) (Version: - )
Paint Shop Pro 7 Try And Buy (HKLM\...\{D6DE02C7-1F47-11D4-9515-00105AE4B89A}) (Version: 7.0.4.0000 - Jasc Software Inc)
PC Inspector File Recovery (HKLM\...\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}) (Version: 4.0 - )
PDF Editor 2 (HKLM\...\PDF Editor 2) (Version: - )
PDF24 Creator 4.6.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.206.0 - Tracker Software Products Ltd)
PlayFLV (HKLM\...\FLVCodec) (Version: - )
PokerStars (HKLM\...\PokerStars) (Version: - PokerStars)
PowerCinema 3.0 (HKLM\...\{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: - )
PowerDirector (HKLM\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: - )
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
PowerProducer (HKLM\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: - )
pschmid.net Ltd. - RibbonCustomizer Add-In (HKLM\...\{895294B6-0495-461D-B3A1-DA819C6E6A76}) (Version: 1.1.0.0 - pschmid.net Ltd.)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
QT Lite 2.9.0 (HKLM\...\qt7lite_is1) (Version: 2.9.0 - )
Quake Live Mozilla Plugin (HKLM\...\{2BEB102E-F9CD-4881-984B-E288F66FD394}) (Version: 1.0.382 - id Software)
RAR Password Recovery Magic v6.1.1.263 (HKLM\...\RAR Password Recovery Magic_is1) (Version: - Password Recovery Magic Studio Ltd.)
ratDVD 0.78.1444 (HKLM\...\ratDVD) (Version: 0.78.1444 - ratDVD)
Real Alternative 1.9.0 (HKLM\...\RealAlt_is1) (Version: 1.9.0 - )
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: - )
Recuva (HKLM\...\Recuva) (Version: 1.35 - Piriform)
Replay Media Catcher 4 (4.4.3) (HKLM\...\Replay Media Catcher 4) (Version: 4.4.3 - Applian Technologies)
Replay Media Catcher 5 (5.0.0.89) (HKLM\...\Replay Media Catcher 5) (Version: 5.0.0.89 - Applian Technologies)
Revo Uninstaller 1.92 (HKLM\...\Revo Uninstaller) (Version: 1.92 - VS Revo Group)
SDFormatter (HKLM\...\{5A347920-4AFC-11D5-9FB0-800649886934}) (Version: - )
Shockwave (HKLM\...\Shockwave) (Version: - )
SIM-MAX Platinum (HKLM\...\{E2CB73C3-FD14-462A-9994-F33953D423BC}) (Version: 1.01.0000 - SIM MAX Technology)
SnagIt 8 (HKLM\...\{DA0BF7AB-88EB-4675-8FA1-531EAD938821}) (Version: 8.2.3 - TechSmith Corporation)
Spider Player 2.5.3 (HKLM\...\Spider Player_is1) (Version: 2.5.3.0 - VIT Software, LLC)
SRWare Iron Version 23.0.1300.0 (HKLM\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: 23.0.1300.0 - SRWare)
StreamTransport version: 1.1.0.2 (HKLM\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - )
SUPER © Version 2010.bld.37 (Jan 2, 2010) (HKLM\...\SUPER ©) (Version: Version 2010.bld.37 (Jan 2, 2010) - eRightSoft)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 7.6.1.0 - )
synedra View Personal 3.1.0.4 (HKLM\...\synedraViewPersonal) (Version: 3.1.0.4 - synedra it GmbH)
System Requirements Lab (HKLM\...\SystemRequirementsLab) (Version: - )
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
Texas Instruments PCIxx21/x515 drivers. (HKLM\...\InstallShield_{C9D90376-50C8-4907-AFA2-CA77364A8D51}) (Version: 1.02.0000 - Texas Instruments Inc.)
TIxx21/x515 (Version: 1.02.0000 - Texas Instruments Inc.) Hidden
UBitMenü (HKLM\...\{CBCFD97D-FE82-43F4-A978-996CACF71E6B}_is1) (Version: 01.03 - UBit Schweiz AG)
URL Snooper v2.22.02 (HKLM\...\URLSnooper 2_is1) (Version: - DonationCoder.com)
USB to UART Bridge Controller (HKLM\...\InstallShield_{B39C475A-77A7-446D-B423-8051E976D910}) (Version: 1.33.232.02 - Alcor Micro)
USB to UART Bridge Controller (Version: 1.33.232.02 - Alcor Micro) Hidden
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
Veetle TV 0.9.17 (HKLM\...\Veetle TV) (Version: 0.9.17 - Veetle, Inc)
videon (HKLM\...\{261D0486-9127-4071-BA1D-FE784310752E}) (Version: 3.5 - muvee Technologies)
Viewpoint Media Player (HKLM\...\ViewpointMediaPlayer) (Version: - )
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Format 11 runtime (Version: - Microsoft Corporation) Hidden
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031514 - Microsoft Corporation)
Windows-Sicherungsprogramm (HKLM\...\{76EFFC7C-17A6-479D-9E47-8E658C1695AE}) (Version: 5.1 - Microsoft Corporation)
WinFF 1.3.2 (HKLM\...\WinFF_is1) (Version: - WinFF.org)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
WinUtilities 9.76 Free Edition (HKLM\...\{FC274982-5AAD-4C20-848D-4424A5043010}_is1) (Version: - YL Computing, Inc)
X10 Hardware(TM) (HKLM\...\X10Hardware) (Version: - )
XMedia Recode 2.2.7.7 (HKLM\...\XMedia Recode) (Version: 2.2.7.7 - Sebastian Dörfler)
XMedia Recode Version 3.1.7.2 (HKLM\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.7.2 - XMedia Recode)
XP Codec Pack (HKLM\...\XP Codec Pack) (Version: - )
xp-AntiSpy 3.97-3 (HKLM\...\xp-AntiSpy) (Version: - Christian Taubenheim)
Xvid 1.2.2 final uninstall (HKLM\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
Zattoo4 4.0.5 (HKLM\...\Zattoo4) (Version: 4.0.5 - Zattoo Inc.)
==================== Restore Points =========================
12-02-2014 12:20:26 Installed Windows Media Format Runtime
12-02-2014 12:52:32 Installed Windows Media Format Runtime
==================== Hosts content: ==========================
2004-08-18 01:19 - 2009-12-15 20:33 - 00000865 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 applian.securesites.com
==================== Scheduled Tasks (whitelisted) =============
Task: C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job => C:\Programme\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1ce0462e1bbc40.job => C:\Programme\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2364829053-3113332338-1208155509-1006Core1cce03f9fa57bc0.job => C:\Dokumente und Einstellungen\Marion\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2004-07-17 21:06 - 2004-07-17 21:06 - 00389120 _____ () C:\WINDOWS\system32\Ati2evxx.exe
2010-04-06 16:20 - 2010-03-15 10:28 - 00141824 _____ () C:\Programme\WinRAR\rarext.dll
2011-10-12 10:45 - 2010-03-04 22:38 - 00071096 _____ () C:\Programme\CDBurnerXP\NMSAccessU.exe
2004-08-17 09:37 - 2004-08-06 13:04 - 00032768 _____ () C:\Programme\Launch Manager\LaunchAp.exe
2004-08-17 09:37 - 2004-08-06 13:49 - 00073728 _____ () C:\Programme\Launch Manager\WButton.exe
2013-01-18 12:07 - 2012-11-08 17:46 - 01400846 _____ () C:\Programme\SRWare Iron\avcodec-54.dll
2013-01-18 12:07 - 2012-11-08 17:46 - 00151054 _____ () C:\Programme\SRWare Iron\avutil-51.dll
2013-01-18 12:07 - 2012-11-08 17:46 - 00222734 _____ () C:\Programme\SRWare Iron\avformat-54.dll
2013-01-18 12:18 - 2013-01-18 12:18 - 14586888 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\WINDOWS:AstInfo
AlternateDataStreams: C:\WINDOWS:E69FF1045D1DB734
AlternateDataStreams: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:C8B8CEBD
AlternateDataStreams: C:\Dokumente und Einstellungen\All Users\Anwendungsdaten\TEMP:F4CA4D70
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm.sys => ""="Driver"
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupreg: Ask and Record FLV Service => "C:\Programme\Replay Media Catcher\FLVSrvc.exe" /run
MSCONFIG\startupreg: ATIPTA => C:\Programme\ATI Technologies\ATI Control Panel\atiptaxx.exe
MSCONFIG\startupreg: BtTray =>
MSCONFIG\startupreg: ccleaner => "C:\Programme\CCleaner\CCleaner.exe" /AUTO
MSCONFIG\startupreg: CloneCDTray => "C:\Programme\SlySoft\CloneCD\CloneCDTray.exe" /s
MSCONFIG\startupreg: ctfmon.exe => C:\WINDOWS\system32\ctfmon.exe
MSCONFIG\startupreg: CtrlVol => C:\Programme\Launch Manager\CtrlVol.exe
MSCONFIG\startupreg: Easy-PrintToolBox =>
MSCONFIG\startupreg: Google Update => "C:\Dokumente und Einstellungen\Marion\Lokale Einstellungen\Anwendungsdaten\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: H/PC Connection Agent => "C:\Programme\Microsoft ActiveSync\wcescomm.exe"
MSCONFIG\startupreg: HKCU => C:\WINDOWS\system32\System32\Windows_Updater.exe
MSCONFIG\startupreg: HKLM => C:\WINDOWS\system32\System32\Windows_Updater.exe
MSCONFIG\startupreg: HornetMonitor => C:\Programme\Gemeinsame Dateien\Hornet\MntrHrnt.exe
MSCONFIG\startupreg: KernelFaultCheck => %systemroot%\system32\dumprep 0 -k
MSCONFIG\startupreg: LaunchAp => C:\Programme\Launch Manager\LaunchAp.exe
MSCONFIG\startupreg: LMgrOSD => C:\Programme\Launch Manager\OSD.exe
MSCONFIG\startupreg: Load => C:\WINDOWS\system32\Vxmtpq32.exe
MSCONFIG\startupreg: MSMSGS => "C:\Programme\Messenger\msmsgs.exe" /background
MSCONFIG\startupreg: NBKeyScan =>
MSCONFIG\startupreg: PCMService => "C:\Programme\Home Cinema\PowerCinema\PCMService.exe"
MSCONFIG\startupreg: PDFPrint => C:\Programme\PDF24\pdf24.exe
MSCONFIG\startupreg: POL Agent =>
MSCONFIG\startupreg: SoundMan => SOUNDMAN.EXE
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Programme\Gemeinsame Dateien\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => C:\Programme\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: SynTPLpr => C:\Programme\Synaptics\SynTP\SynTPLpr.exe
MSCONFIG\startupreg: THGuard =>
MSCONFIG\startupreg: Wbutton => "C:\Programme\Launch Manager\Wbutton.exe"
==================== Faulty Device Manager Devices =============
Name: Broadcom 440x 10/100 Integrated Controller
Description: Broadcom 440x 10/100 Integrated Controller
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Broadcom
Service: bcm4sbxp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Bluetooth PAN Network Adapter
Description: Bluetooth PAN Network Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: IVT Corporation
Service: BT
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/25/2014 09:16:03 PM) (Source: Microsoft Office 12) (User: )
Description: EventType officelifeboathang, P1 winword.exe, P2 12.0.4518.1014, P3 wwlib.dll, P4 12.0.4518.1014, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 officelifeboathang0, P10 officelifeboathang1.
Error: (02/17/2014 11:55:11 AM) (Source: crypt32) (User: )
Description: Der automatische Aktualisierungsabruf des Drittanbieterstammzertifikats von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/132D0D45534B6997CDB2D5C339E25576609B5CC6.crt> ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.
Error: (02/16/2014 06:25:17 PM) (Source: crypt32) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.
Error: (02/12/2014 01:53:34 PM) (Source: MsiInstaller) (User: ALDILAPTOP)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable -- Error 1312.Ordner "C:\WINDOWS\winsxs\Policies\x86_policy.8.0.Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_x-ww_0f75c32e" kann nicht erstellt werden. Eine Datei mit diesem Namen existiert bereits. Benennen Sie die Datei um oder entfernen Sie die Datei, und klicken Sie dann auf "Wiederholen". Oder klicken Sie auf "Abbrechen", um das Programm zu beenden.
Error: (02/12/2014 01:51:43 PM) (Source: MsiInstaller) (User: ALDILAPTOP)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable -- Error 1312.Ordner "C:\WINDOWS\winsxs\Policies\x86_policy.8.0.Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_x-ww_0f75c32e" kann nicht erstellt werden. Eine Datei mit diesem Namen existiert bereits. Benennen Sie die Datei um oder entfernen Sie die Datei, und klicken Sie dann auf "Wiederholen". Oder klicken Sie auf "Abbrechen", um das Programm zu beenden.
Error: (02/12/2014 01:19:22 PM) (Source: MsiInstaller) (User: ALDILAPTOP)
Description: Produkt: Microsoft Visual C++ 2005 Redistributable -- Error 1312.Ordner "C:\WINDOWS\winsxs\Policies\x86_policy.8.0.Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_x-ww_0f75c32e" kann nicht erstellt werden. Eine Datei mit diesem Namen existiert bereits. Benennen Sie die Datei um oder entfernen Sie die Datei, und klicken Sie dann auf "Wiederholen". Oder klicken Sie auf "Abbrechen", um das Programm zu beenden.
Error: (01/30/2014 10:57:33 AM) (Source: Microsoft Office 12) (User: )
Description: Accepted Safe Mode action : Microsoft Office Word.
Error: (01/29/2014 04:11:03 PM) (Source: Microsoft Office 12) (User: )
Description: Rejected Safe Mode action : Microsoft Office Word.
Error: (12/22/2013 05:50:42 PM) (Source: crypt32) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.
Error: (10/28/2013 03:47:11 PM) (Source: crypt32) (User: )
Description: Der automatische Aktualisierungsabruf der Drittanbieterstammlisten-Sequenznummer von <hxxp://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ist fehlgeschlagen mit dem Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.
System errors:
=============
Error: (03/12/2014 03:06:51 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context ist für C:\Programme\TechSmith\SnagIt 8\SnagItShellExt.dll fehlgeschlagen.
Referenzfehlermeldung: Der Vorgang wurde erfolgreich beendet.
.
Error: (03/12/2014 03:06:51 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly ist für Microsoft.VC80.MFC fehlgeschlagen.
Referenzfehlermeldung: Der Verzeichnisname ist ungültig.
.
Error: (03/12/2014 03:06:16 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context ist für C:\Programme\TechSmith\SnagIt 8\SnagItShellExt.dll fehlgeschlagen.
Referenzfehlermeldung: Der Vorgang wurde erfolgreich beendet.
.
Error: (03/12/2014 03:06:16 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly ist für Microsoft.VC80.MFC fehlgeschlagen.
Referenzfehlermeldung: Der Verzeichnisname ist ungültig.
.
Error: (03/12/2014 03:03:18 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context ist für C:\Programme\TechSmith\SnagIt 8\SnagItShellExt.dll fehlgeschlagen.
Referenzfehlermeldung: Der Vorgang wurde erfolgreich beendet.
.
Error: (03/12/2014 03:03:18 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly ist für Microsoft.VC80.MFC fehlgeschlagen.
Referenzfehlermeldung: Der Verzeichnisname ist ungültig.
.
Error: (03/12/2014 02:59:10 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context ist für C:\Programme\TechSmith\SnagIt 8\SnagItShellExt.dll fehlgeschlagen.
Referenzfehlermeldung: Der Vorgang wurde erfolgreich beendet.
.
Error: (03/12/2014 02:59:10 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly ist für Microsoft.VC80.MFC fehlgeschlagen.
Referenzfehlermeldung: Der Verzeichnisname ist ungültig.
.
Error: (03/12/2014 02:37:46 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context ist für C:\Programme\TechSmith\SnagIt 8\SnagItShellExt.dll fehlgeschlagen.
Referenzfehlermeldung: Der Vorgang wurde erfolgreich beendet.
.
Error: (03/12/2014 02:37:46 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly ist für Microsoft.VC80.MFC fehlgeschlagen.
Referenzfehlermeldung: Der Verzeichnisname ist ungültig.
.
Microsoft Office Sessions:
=========================
Error: (01/08/2014 08:56:01 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1250 seconds with 420 seconds of active time. This session ended with a crash.
Error: (08/16/2013 07:40:06 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 197 seconds with 180 seconds of active time. This session ended with a crash.
Error: (03/30/2013 08:46:59 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 994 seconds with 960 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Percentage of memory in use: 84%
Total physical RAM: 1278.98 MB
Available physical RAM: 200.82 MB
Total Pagefile: 1923.96 MB
Available Pagefile: 658.47 MB
Total Virtual: 2047.88 MB
Available Virtual: 1964 MB
==================== Drives ================================
Drive c: (BOOT) (Fixed) (Total:37.27 GB) (Free:0.84 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (BACKUP) (Fixed) (Total:29.45 GB) (Free:0.61 GB) NTFS
Drive e: (RECOVER) (Fixed) (Total:7.8 GB) (Free:0.18 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 75 GB) (Disk ID: 73557355)
Partition 1: (Active) - (Size=37 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=37 GB) - (Type=OF Extended)
========================================================
Disk: 1 (Size: 2 GB) (Disk ID: 6E652072)
No partition Table on disk 1.
==================== End Of Log ============================ |