Satan-chan | 14.07.2014 15:42 | das problem besteht seit 10 minuten und seitdem hab ich noch nichts gemacht, weil ich erst fragen wollte...ihr seit schnell^^
ich mach dann jetzt die logs und poste sie Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlauf Datum: 14.07.2014
Suchlauf-Zeit: 16:21:49
Logdatei: Mbam.txt
Administrator: Ja
Version: 2.00.2.1012
Malware Datenbank: v2014.07.14.05
Rootkit Datenbank: v2014.07.09.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x86
Dateisystem: NTFS
Benutzer: Satan-chan
Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 250767
Verstrichene Zeit: 4 Min, 4 Sek
Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 1
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, 4660, Löschen bei Neustart, [026bffa0601b270f4b4d06572ad74db3]
Module: 1
PUP.Optional.Skytech.A, C:\Program Files\SupTab\DpInterface32.dll, Löschen bei Neustart, [77f6811e5e1dc373c60d99f38c755fa1],
Registrierungsschlüssel: 12
PUP.Optional.IePluginService.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IePluginServices, In Quarantäne, [026bffa0601b270f4b4d06572ad74db3],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{917CAAE9-DD47-4025-936E-1414F07DF5B8}, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SupTab.A, HKU\S-1-5-21-4274282739-1397590971-2346679203-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SupTab.A, HKLM\SOFTWARE\CLASSES\CLSID\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}\INPROCSERVER32, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.WPM.A, HKLM\SOFTWARE\supWindowsMangerProtect, In Quarantäne, [8be2534c90eb280e41f52debbf45f010],
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\webssearchesSoftware, In Quarantäne, [86e7732cf388a096ec85478e966c0000],
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, In Quarantäne, [cba2dec1f08b6acccae3867da65eb749],
PUP.Optional.Qone8, HKU\S-1-5-21-4274282739-1397590971-2346679203-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{33BB0A4E-99AF-4226-BDF6-49120163DE86}, In Quarantäne, [ee7f2f7099e2c1753f6d986b8a7a9b65],
Registrierungswerte: 0
(No malicious items detected)
Registrierungsdaten: 8
PUP.Optional.Skytech.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS|AppInit_DLLs, C:\PROGRA~1\SupTab\SEARCH~1.DLL, Gut: (), Schlecht: (C:\PROGRA~1\SupTab\SEARCH~1.DLL),Ersetzt,[91dc7e212b50d264dbf899f39d64738d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\IEXPLORE.EXE\SHELL\OPEN\COMMAND, C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389, Gut: (iexplore.exe), Schlecht: (C:\Program Files\Internet Explorer\iexplore.exe hxxp://istart.webssearches.com/?type=sc&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389),Ersetzt,[fe6f405f116a64d2bfb34e47ac58dc24]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://istart.webssearches.com/web/?type=ds&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/web/?type=ds&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389&q={searchTerms}),Ersetzt,[432ae7b8bbc013233c2d1d7824e035cb]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389),Ersetzt,[e18cb9e6de9d7eb83a2dace9976d837d]
PUP.Optional.WebsSearches.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389),Ersetzt,[aac3cdd26813072f36356431f1132cd4]
PUP.Optional.Qone8, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES|DefaultScope, {33BB0A4E-99AF-4226-BDF6-49120163DE86}, Gut: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}), Schlecht: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}),Ersetzt,[c8a5851afb8059dd207a118ea95b7c84]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-4274282739-1397590971-2346679203-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389),Ersetzt,[086546595d1e2b0bf874aee79a6a7888]
PUP.Optional.WebsSearches.A, HKU\S-1-5-21-4274282739-1397590971-2346679203-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389, Gut: (www.google.com), Schlecht: (hxxp://istart.webssearches.com/?type=hp&ts=1405344511&from=wld&uid=WDCXWD5002ABYS-01B1B0_WD-WMASY438438984389),Ersetzt,[3835a3fcceadf93d3d2b920392725ca4]
Ordner: 30
PUP.Optional.SupTab.A, C:\Program Files\SupTab, Löschen bei Neustart, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\weather, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\en-US, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-419, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-ES, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-BE, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CA, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CH, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-FR, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-LU, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-CH, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-IT, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pl, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt-BR, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru-MO, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\tr-TR, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\vi-VI, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-CN, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-TW, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices, Löschen bei Neustart, [fe6f336ca2d946f0fcc61d97b0527789],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update, In Quarantäne, [fe6f336ca2d946f0fcc61d97b0527789],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, In Quarantäne, [8edfadf24833092d4bebcfe8798953ad],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\log, In Quarantäne, [8edfadf24833092d4bebcfe8798953ad],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, In Quarantäne, [8edfadf24833092d4bebcfe8798953ad],
Dateien: 65
PUP.Optional.IePluginService.A, C:\ProgramData\IePluginServices\PluginService.exe, Löschen bei Neustart, [026bffa0601b270f4b4d06572ad74db3],
PUP.Optional.Skytech.A, C:\Program Files\SupTab\DpInterface32.dll, Löschen bei Neustart, [77f6811e5e1dc373c60d99f38c755fa1],
PUP.Optional.Skytech.A, C:\Program Files\SupTab\SpAPPSv32.dll, Löschen bei Neustart, [f776b7e82f4c38fef6dd4448a45d1ae6],
PUP.Optional.Skytech.A, C:\Program Files\SupTab\SearchProtect32.dll, In Quarantäne, [91dc7e212b50d264dbf899f39d64738d],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SupTab.dll, In Quarantäne, [f677009ff586be7832339f960cf4b848],
PUP.Optional.SearchHijacker.A, C:\Users\Satan-chan\AppData\Local\Temp\566_wld_istart.webssearches.com.exe, In Quarantäne, [ff6efca3b1cad561aef6cec734cd738d],
PUP.Optional.SearchHijacker.A, C:\Users\Satan-chan\AppData\Local\Temp\3b14d4dfb0af3b16c1dd3dee5ab7d371\566_wld_istart.webssearches.com.exe, In Quarantäne, [9ad307980477bf77554f029356aba35d],
PUP.Optional.WPM.A, C:\Users\Satan-chan\AppData\Local\Temp\4585758\4585758.zipDir\tmp\wpm_v20.0.0.502.exe, In Quarantäne, [600d3d62b0cbe353661a365a34cdad53],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\install.data, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\DpInterface64.dll, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\ient.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\RSHP.exe, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SearchProtect64.dll, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\SpAPPSv64.dll, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\uninstall.exe, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\WebDataJs, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\data.html, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\indexIE.html, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\indexIE8.html, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\main.css, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\ver.txt, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\arrow.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\default_add_logo.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\default_add_logo_hover.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\default_logo.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\googlelogo.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\googlelogo2.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\google_trends.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon128.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon16.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\icon48.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\loading.gif, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\logo32.ico, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\img\weather\0.png, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\common.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\ga.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\ie8.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\jquery-1.11.0.min.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\jquery.autocomplete.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\js.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\library.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\js\xagainit.js, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\en-US\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-419\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\es-ES\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-BE\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CA\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-CH\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-FR\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\fr-LU\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-CH\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\it-IT\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pl\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\pt-BR\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\ru-MO\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\tr-TR\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\vi-VI\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-CN\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.SupTab.A, C:\Program Files\SupTab\web\_locales\zh-TW\messages.json, In Quarantäne, [b7b61986e69566d085371bc311f1c838],
PUP.Optional.IePluginServices.A, C:\ProgramData\IePluginServices\update\conf, In Quarantäne, [fe6f336ca2d946f0fcc61d97b0527789],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\log\ProtectWindowsManager_2014-07-14[15-28-55-181].log, In Quarantäne, [8edfadf24833092d4bebcfe8798953ad],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update\conf, In Quarantäne, [8edfadf24833092d4bebcfe8798953ad],
PUP.Optional.Conduit.A, C:\Users\Satan-chan\AppData\Local\Google\Chrome\User Data\Default\Preferences, Gut: (), Schlecht: ( "homepage": "hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M72019E96-ADEA-4698-964F-3EFCA87C68ED&SearchSource=55&CUI=&UM=5&UP=SP7E7019D6-5E66-45CA-887D-C518D222C565&SSPV=",), Ersetzt,[1855435c710a80b618117f50e51f52ae]
Physische Sektoren: 0
(No malicious items detected)
(end) AdwCleaner Logfile: Code:
# AdwCleaner v3.215 - Bericht erstellt am 14/07/2014 um 16:32:02
# Aktualisiert 09/07/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (32 bits)
# Benutzername : Satan-chan - SATAN-CHAN-PC
# Gestartet von : C:\Users\Satan-chan\Downloads\adwcleaner_3.215.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : IePluginServices
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\IePluginServices
Ordner Gelöscht : C:\Program Files\SupTab
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EC9510D-A439-4950-9399-B6399EDF9EA7}
Schlüssel Gelöscht : HKLM\Software\SupDp
Schlüssel Gelöscht : HKLM\Software\SupTab
Schlüssel Gelöscht : HKLM\Software\supWPM
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17207
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
-\\ Google Chrome v35.0.1916.153
[ Datei : C:\Users\Satan-chan\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gelöscht [Homepage] : hxxp://search.conduit.com/?gd=&ctid=CT3314958&octid=EB_ORIGINAL_CTID&ISID=M72019E96-ADEA-4698-964F-3EFCA87C68ED&SearchSource=55&CUI=&UM=5&UP=SP7E7019D6-5E66-45CA-887D-C518D222C565&SSPV=
*************************
AdwCleaner[R0].txt - [1646 octets] - [14/07/2014 16:30:35]
AdwCleaner[S0].txt - [1448 octets] - [14/07/2014 16:32:02]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1508 octets] ########## --- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version:14-07-2014
Ran by Satan-chan at 2014-07-14 16:37:47
Running from C:\Users\Satan-chan\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
AMD Accelerated Video Transcoding (Version: 13.30.100.40417 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (Version: 2014.0417.2226.38446 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{DC7723BE-A2BB-58A0-4820-5630F9B82198}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2014.0417.2225.38446 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2014.0417.2226.38446 - Advanced Micro Devices, Inc.) Hidden
Google Chrome (HKLM\...\{A4DE5CD7-96D6-3979-8C39-E864396AFFC0}) (Version: 65.223.153 - Google, Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
iTunes (HKLM\...\{0A37EE62-9A58-420D-90CC-4E52153112EE}) (Version: 11.3.0.54 - Apple Inc.)
Java 7 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (Version: 2.1.60.19 - Oracle, Inc.) Hidden
K-Lite Codec Pack 6.0.4 (Basic) (HKLM\...\KLiteCodecPack_is1) (Version: 6.0.4 - )
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft_VC100_CRT_x86 (HKLM\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft)
OpenOffice 4.1.0 (HKLM\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Raptr (HKLM\...\Raptr) (Version: - )
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Steam (HKLM\...\Steam) (Version: - Valve Corporation)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab for Intel (HKLM\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.29947 - TeamViewer)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.10 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
YouTube Song Downloader (HKLM\...\{4281435C-AD1D-4C8A-B9C0-3961C11EF142}_is1) (Version: 10.1 - Abelssoft)
==================== Restore Points =========================
10-07-2014 14:48:20 Windows Update
10-07-2014 14:49:01 Windows Update
10-07-2014 14:49:30 Windows Update
10-07-2014 14:50:00 Windows Update
10-07-2014 14:50:31 Windows Update
10-07-2014 14:51:07 Windows Update
10-07-2014 14:51:47 Windows Update
10-07-2014 14:52:26 Windows Update
10-07-2014 14:54:38 Windows Update
10-07-2014 14:55:15 Windows Update
10-07-2014 14:55:55 Windows Update
10-07-2014 14:56:28 Windows Update
10-07-2014 14:57:11 Windows Update
10-07-2014 14:58:20 Windows Update
10-07-2014 14:59:51 Windows Update
10-07-2014 15:00:47 Windows Update
10-07-2014 15:02:26 Windows Update
10-07-2014 15:03:01 Windows Update
10-07-2014 15:03:41 Windows Update
10-07-2014 15:04:23 Windows Update
10-07-2014 15:05:06 Windows Update
11-07-2014 20:46:15 Windows Update
12-07-2014 21:11:24 Installed iTunes
12-07-2014 22:13:42 Windows Update
13-07-2014 12:27:21 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {844C302C-B6A8-4D01-B947-4C537CB8C535} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {AD6863E2-91F0-42BC-832B-788F4F7E75D2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-10] (Google Inc.)
Task: {B57CFFBC-307A-4CC5-ACA9-C4082F2AD584} - System32\Tasks\FoxconnAegisPanelSatan-chan => C:\Program Files\FOXCONN\AegisPanel2\FXAppLoader.exe
Task: {D45F1502-5F4D-4AD8-A8BA-4E72AB59A903} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-07-10] (Google Inc.)
Task: {DFF6D225-6189-489B-8562-8C9E3C7D3665} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-10] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FoxconnAegisPanelSatan-chan.job => C:\Program Files\FOXCONN\AegisPanel2\FXAppLoader.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-07-03 13:20 - 2014-07-03 13:20 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-03 13:19 - 2014-07-03 13:19 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00324608 _____ () C:\Program Files\Raptr\PIL._imaging.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00124928 _____ () C:\Program Files\Raptr\_elementtree.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files\Raptr\pyexpat.pyd
2012-02-06 22:28 - 2012-02-06 22:28 - 00031744 _____ () C:\Program Files\Raptr\Crypto.Cipher.AES.pyd
2012-02-06 22:28 - 2012-02-06 22:28 - 00010752 _____ () C:\Program Files\Raptr\Crypto.Random.OSRNG.winrandom.pyd
2012-02-06 22:28 - 2012-02-06 22:28 - 00011264 _____ () C:\Program Files\Raptr\Crypto.Util._counter.pyd
2011-05-10 21:01 - 2011-05-10 21:01 - 00030208 _____ () C:\Program Files\Raptr\simplejson._speedups.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files\Raptr\sqlite3.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00016384 _____ () C:\Program Files\Raptr\win32trace.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files\Raptr\winsound.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files\Raptr\unicodedata.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files\Raptr\win32com.shell.shell.pyd
2013-11-21 02:05 - 2013-11-21 02:05 - 00256000 _____ () C:\Program Files\Raptr\amd_ags.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files\Raptr\gobject._gobject.pyd
2014-06-18 02:56 - 2014-06-18 02:56 - 02717595 _____ () C:\Program Files\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files\Raptr\plugins\ssl.dll
2014-07-10 14:32 - 2014-06-05 15:58 - 00716616 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
2014-07-10 14:32 - 2014-06-05 15:58 - 00126280 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\libegl.dll
2014-07-10 14:32 - 2014-06-05 15:58 - 04217672 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-07-10 14:32 - 2014-06-05 15:58 - 00414536 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-07-10 14:32 - 2014-06-05 15:58 - 01732424 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2014-07-13 21:13 - 2014-07-08 08:18 - 14663856 _____ () C:\Users\Satan-chan\AppData\Local\Google\Chrome\User Data\PepperFlash\14.0.0.145\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: TeamViewer9 => 2
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/12/2014 11:16:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: AppleMobileBackup.exe, Version: 17.1259.0.79, Zeitstempel: 0x52fa24ee
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea91c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0002c3eb
ID des fehlerhaften Prozesses: 0x1130
Startzeit der fehlerhaften Anwendung: 0xAppleMobileBackup.exe0
Pfad der fehlerhaften Anwendung: AppleMobileBackup.exe1
Pfad des fehlerhaften Moduls: AppleMobileBackup.exe2
Berichtskennung: AppleMobileBackup.exe3
Error: (07/12/2014 10:45:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Gw2.exe, Version 1.0.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 834
Startzeit: 01cf9deec56fc8b5
Endzeit: 847
Anwendungspfad: C:\Program Files\Guild Wars 2\Gw2.exe
Berichts-ID:
Error: (07/10/2014 09:55:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Gw2.exe, Version 1.0.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 5e0
Startzeit: 01cf9c6e56b3512e
Endzeit: 1132
Anwendungspfad: C:\Program Files\Guild Wars 2\Gw2.exe
Berichts-ID:
Error: (07/10/2014 04:23:04 PM) (Source: MsiInstaller) (EventID: 11935) (User: Satan-chan-PC)
Description: Produkt: MSXML 4.0 SP3 Parser (KB2758694) -- Fehler 1935. Während der Installation der Assemblierungskomponente {74910135-7980-398A-A06B-D6B9ABF34537} ist ein Fehler aufgetreten. HRESULT: 0x80070BC9. Assemblierungsschnittstelle: IAssemblyCacheItem, Funktion: Commit, Assemblierungsname: Microsoft.MSXML2,type="win32",version="4.30.2117.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"
Error: (07/10/2014 03:07:19 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {a4898854-5699-4ffc-a5c5-160a56e478de}
System errors:
=============
Error: (07/12/2014 02:30:36 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%16405
Error: (07/10/2014 05:18:16 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (07/10/2014 05:18:15 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (07/10/2014 05:18:14 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR2 gefunden.
Error: (07/10/2014 05:01:24 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst LanmanServer erreicht.
Error: (07/10/2014 03:06:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "{24DA140B-C339-4F9F-AD3E-23C95D9F4C0B}" wurde aufgrund folgenden Fehlers nicht gestartet:
%%123
Error: (07/10/2014 02:55:20 PM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 8) (User: Satan-chan-PC)
Description: Fehler bei der Service Pack-Installation. Fehlercode: 0x800704c7.
Error: (07/10/2014 02:39:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definitionsupdate für Microsoft Security Essentials – KB2310138 (Definition 1.177.2139.0)
Error: (07/10/2014 02:39:01 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.177.2139.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.5.0216.00
Quellpfad: 4.5.0216.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (07/10/2014 02:39:01 PM) (Source: Microsoft Antimalware) (EventID: 2003) (User: )
Description: Beim Aktualisieren des Moduls wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Modulversion:
Vorherige Modulversion:
Modultyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Fehlercode: %NT-AUTORITÄT601
Fehlerbeschreibung: %NT-AUTORITÄT602
Microsoft Office Sessions:
=========================
Error: (07/12/2014 11:16:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AppleMobileBackup.exe17.1259.0.7952fa24eentdll.dll6.1.7601.18247521ea91cc00000050002c3eb113001cf9e1686df272fC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileBackup.exeC:\Windows\SYSTEM32\ntdll.dllcd666d49-0a09-11e4-bbfd-d027882fb872
Error: (07/12/2014 10:45:03 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Gw2.exe1.0.0.183401cf9deec56fc8b5847C:\Program Files\Guild Wars 2\Gw2.exe
Error: (07/10/2014 09:55:36 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Gw2.exe1.0.0.15e001cf9c6e56b3512e1132C:\Program Files\Guild Wars 2\Gw2.exe
Error: (07/10/2014 04:23:04 PM) (Source: MsiInstaller) (EventID: 11935) (User: Satan-chan-PC)
Description: Produkt: MSXML 4.0 SP3 Parser (KB2758694) -- Fehler 1935. Während der Installation der Assemblierungskomponente {74910135-7980-398A-A06B-D6B9ABF34537} ist ein Fehler aufgetreten. HRESULT: 0x80070BC9. Assemblierungsschnittstelle: IAssemblyCacheItem, Funktion: Commit, Assemblierungsname: Microsoft.MSXML2,type="win32",version="4.30.2117.0",publicKeyToken="6bd6b9abf345378f",processorArchitecture="x86"(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (07/10/2014 03:07:19 PM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Zugriff verweigert
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {a4898854-5699-4ffc-a5c5-160a56e478de}
==================== Memory info ===========================
Percentage of memory in use: 54%
Total physical RAM: 2295.18 MB
Available physical RAM: 1036.23 MB
Total Pagefile: 4588.65 MB
Available Pagefile: 2984.51 MB
Total Virtual: 2047.88 MB
Available Virtual: 1879.83 MB
==================== Drives ================================
Drive c: (Boot) (Fixed) (Total:465.66 GB) (Free:412.41 GB) NTFS
Drive d: (Daten) (Fixed) (Total:931.51 GB) (Free:647.95 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 48443A2B)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |