Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 7 startet ohne Netzwerkstecker immer wieder neu

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 12.02.2014, 19:48   #1
cayprob
 
Windows 7 startet ohne Netzwerkstecker immer wieder neu - Standard

Windows 7 startet ohne Netzwerkstecker immer wieder neu



Hallöchen,

ich bin neu hie rund möchte euch gleich mit meiner ersten Frage löchern:

Seit einer Woche habe ich ein Problem bemerkt. Immer wenn ich meinem Laptop (Windows 7) vom Ladekabel trenne, staret dieser automatsich neu und öffnet dann den Windows Media Player. Wenn ich jedoch den Netzwerkstecker anschließe und ihn nochmal herunterfahre, ist alles in bester Ordnung. Ich vermute dahinter einen Trojaner

Könnt ihr mir weiter helfen?Ich brauche meinen Laptop hin und wieder an der Uni und da ist es nicht so günstig, wenn man ihn nicht herunterfahren kann^^

mfg

cayprob

Geändert von cayprob (12.02.2014 um 19:53 Uhr)

Alt 13.02.2014, 05:45   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 startet ohne Netzwerkstecker immer wieder neu - Standard

Windows 7 startet ohne Netzwerkstecker immer wieder neu



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 13.02.2014, 11:10   #3
cayprob
 
Windows 7 startet ohne Netzwerkstecker immer wieder neu - Standard

Windows 7 startet ohne Netzwerkstecker immer wieder neu




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-02-2014 01
Ran by Bastian (administrator) on HP8510P_BASTIAN on 13-02-2014 10:53:05
Running from C:\Users\Bastian\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(ActivIdentity) C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Windows\system32\AEADISRV.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe
(Analog Devices, Inc.) C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(APN LLC.) C:\Users\Bastian\AppData\Local\VNT\vntldr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2010-04-05] (Intel Corporation)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [acevents] - C:\Program Files\ActivIdentity\ActivClient\acevents.exe [196648 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] - C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [483880 2009-06-03] (ActivIdentity)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SoundMAXPnP] - C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [1183744 2007-02-21] (Analog Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707472 2013-12-12] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN)
HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [202192 2013-12-20] (APN LLC.)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-3464901779-82028160-1997547589-1000\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
HKU\S-1-5-21-3464901779-82028160-1997547589-1000\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKU\S-1-5-21-3464901779-82028160-1997547589-1000\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\S-1-5-21-3464901779-82028160-1997547589-1000\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [759384 2013-07-08] (Sandboxie Holdings, LLC)
Startup: C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/?ocid=UP76DHP&pc=UP76&dt=071313
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x2379E0F40D80CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
BHO: Adblock IE - {667BEE43-20BD-4CE3-94AC-E63E04D4B191} - C:\Program Files\MGTEK\Adblock IE\adblockie.dll (MGTEK)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
BHO-x32: Adblock IE - {667BEE43-20BD-4CE3-94AC-E63E04D4B191} - C:\Program Files (x86)\MGTEK\Adblock IE\adblockie.dll (MGTEK)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GmbH)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\fdu1m17m.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DownloadHelper - C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\fdu1m17m.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-08-27]
FF Extension: Avira SearchFree Toolbar plus Web Protection - C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\fdu1m17m.default\Extensions\toolbar_AVIRA-V7C@apn.ask.com.xpi [2013-12-20]
FF Extension: Adblock Plus - C:\Users\Bastian\AppData\Roaming\Mozilla\Firefox\Profiles\fdu1m17m.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-14]
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-09-24]

Chrome: 
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Extension: (Google Docs) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [1980-01-04]
CHR Extension: (Google Drive) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [1980-01-04]
CHR Extension: (YouTube) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [1980-01-04]
CHR Extension: (Google-Suche) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [1980-01-04]
CHR Extension: (AdBlock) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-07-14]
CHR Extension: (Google Wallet) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm [2014-02-07]
CHR Extension: (Google Mail) - C:\Users\Bastian\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [1980-01-04]
CHR HKLM-x32\...\Chrome\Extension: [pcoohmdcpejoeggdnihdfhohjgdbllgm] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7C\CRX\ToolbarCR.crx [2013-12-20]

==================== Services (Whitelisted) =================

R2 ac.sharedstore; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [277032 2009-06-03] (ActivIdentity)
R2 AEADIFilters; C:\Windows\system32\AEADISRV.EXE [80384 2007-02-06] (Andrea Electronics Corporation)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-02-03] (BitRaider, LLC)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [183896 2013-07-08] (Sandboxie Holdings, LLC)
S4 SQLAgent$SQLEXPRESS; C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-02-03] (BitRaider)
R3 HBtnKey; C:\Windows\System32\DRIVERS\cpqbttn.sys [19000 2010-02-25] (Hewlett-Packard Company)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 rismcx64; C:\Windows\System32\DRIVERS\rismcx64.sys [59008 2009-07-20] (RICOH Company, Ltd.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [199384 2013-07-08] (Sandboxie Holdings, LLC)
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-10-10] (Cisco Systems, Inc.)
S3 BCM42RLY; system32\drivers\BCM42RLY.sys [X]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-13 10:53 - 2014-02-13 10:53 - 00018610 _____ () C:\Users\Bastian\Downloads\FRST.txt
2014-02-13 10:52 - 2014-02-13 10:53 - 00000000 ____D () C:\FRST
2014-02-13 10:51 - 2014-02-13 10:51 - 02152448 _____ (Farbar) C:\Users\Bastian\Downloads\FRST64.exe
2014-02-07 20:52 - 2014-02-07 20:52 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\Users\Bastian\AppData\Local\VNT
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\Program Files (x86)\VNT
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-02-06 20:17 - 2014-02-06 20:17 - 00002066 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Avira
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\ProgramData\Avira
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\ProgramData\APN
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-06 20:17 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-06 20:17 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-06 20:17 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-06 20:17 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-06 20:09 - 2014-02-06 20:15 - 129598176 _____ () C:\Users\Bastian\Downloads\avira_free344_antivirus_de.exe
2014-02-03 22:04 - 2014-02-03 22:04 - 00000000 ____D () C:\Users\Bastian\AppData\Local\SWTOR
2014-02-03 19:17 - 2014-02-03 22:03 - 00000000 ____D () C:\ProgramData\BitRaider
2014-02-03 19:17 - 2014-02-03 19:17 - 00000000 ____D () C:\Users\Public\Documents\BitRaider
2014-02-03 19:17 - 2014-02-03 19:17 - 00000000 ____D () C:\Users\Bastian\AppData\Local\SWTORPerf
2014-02-03 19:10 - 2014-02-03 19:10 - 00001449 _____ () C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2014-02-03 19:09 - 2014-02-03 19:10 - 00014072 _____ () C:\Users\Bastian\Documents\Install STAR WARS The Old Republic.log
2014-02-03 19:09 - 2014-02-03 19:09 - 00000000 ____D () C:\Users\hedev
2014-02-03 19:09 - 2014-02-03 19:09 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-02-03 19:06 - 2014-02-03 19:08 - 39777624 _____ () C:\Users\Bastian\Downloads\SWTOR_setup.exe
2014-01-31 11:56 - 2014-01-31 11:56 - 483770647 _____ () C:\Windows\MEMORY.DMP
2014-01-31 11:56 - 2014-01-31 11:56 - 00275032 _____ () C:\Windows\Minidump\013114-15116-01.dmp
2014-01-31 11:56 - 2014-01-31 11:56 - 00000000 ____D () C:\Windows\Minidump
2014-01-29 20:10 - 2014-02-06 23:58 - 00000000 ____D () C:\Users\Bastian\Documents\Filme
2014-01-17 15:54 - 2014-01-17 15:54 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Media Player Classic
2014-01-17 15:53 - 2014-01-17 15:53 - 00001087 _____ () C:\Users\Bastian\Desktop\Media Player Classic Home Cinema.lnk
2014-01-17 15:53 - 2014-01-17 15:53 - 00000972 _____ () C:\Users\Bastian\Desktop\SVP Manager.lnk
2014-01-17 15:53 - 2014-01-17 15:53 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-01-17 15:53 - 2014-01-17 15:53 - 00000000 ____D () C:\Program Files (x86)\Haali
2014-01-17 15:53 - 2014-01-17 15:53 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2014-01-17 15:53 - 2013-06-12 22:00 - 00112640 _____ () C:\Windows\SysWOW64\ff_vfw.dll
2014-01-17 15:52 - 2014-01-17 15:53 - 00000000 ____D () C:\ProgramData\SVP 3.1
2014-01-17 15:52 - 2014-01-17 15:53 - 00000000 ____D () C:\Program Files (x86)\SVP
2014-01-17 15:52 - 2014-01-17 15:52 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2014-01-17 15:52 - 2014-01-17 15:52 - 00000000 ____D () C:\Program Files (x86)\AviSynth 2.5
2014-01-17 15:50 - 2014-01-17 15:52 - 33974135 _____ (SmoothVideo Project ) C:\Users\Bastian\Downloads\SVP_3.1.5.exe
2014-01-17 15:50 - 2014-01-17 15:50 - 04879943 _____ ( ) C:\Users\Bastian\Downloads\svplight-0.9.3.exe
2014-01-17 11:39 - 2014-01-17 11:39 - 00000000 ____D () C:\Users\Bastian\AppData\Local\MGTEK
2014-01-17 11:38 - 2014-01-17 11:38 - 00000000 ____D () C:\Program Files\MGTEK
2014-01-17 11:38 - 2014-01-17 11:38 - 00000000 ____D () C:\Program Files\Common Files\MGTEK
2014-01-17 11:38 - 2014-01-17 11:38 - 00000000 ____D () C:\Program Files (x86)\MGTEK
2014-01-17 11:35 - 2014-01-17 11:35 - 01718432 _____ (MGTEK) C:\Users\Bastian\Desktop\adblockie.exe
2014-01-17 11:35 - 2014-01-17 11:35 - 00000000 ____D () C:\ProgramData\MGTEK
2014-01-17 11:34 - 2014-01-17 11:34 - 00000100 _____ () C:\Users\Public\sdelevURL.tmp
2014-01-15 17:12 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 17:12 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 17:12 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 17:12 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 17:12 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 17:12 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 17:12 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 17:12 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 17:12 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

==================== One Month Modified Files and Folders =======

2014-02-13 10:53 - 2014-02-13 10:53 - 00018610 _____ () C:\Users\Bastian\Downloads\FRST.txt
2014-02-13 10:53 - 2014-02-13 10:52 - 00000000 ____D () C:\FRST
2014-02-13 10:53 - 2013-07-13 12:26 - 01950160 _____ () C:\Windows\WindowsUpdate.log
2014-02-13 10:52 - 2010-11-21 07:50 - 00762182 _____ () C:\Windows\system32\perfh007.dat
2014-02-13 10:52 - 2010-11-21 07:50 - 00172536 _____ () C:\Windows\system32\perfc007.dat
2014-02-13 10:52 - 2009-07-14 06:13 - 01795754 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-13 10:51 - 2014-02-13 10:51 - 02152448 _____ (Farbar) C:\Users\Bastian\Downloads\FRST64.exe
2014-02-13 10:49 - 2013-07-14 17:47 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-13 10:48 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-13 10:48 - 2009-07-14 05:51 - 00052726 _____ () C:\Windows\setupact.log
2014-02-13 10:48 - 1980-01-04 03:04 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-13 02:02 - 2013-07-14 10:38 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-13 01:48 - 1980-01-04 03:04 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-13 01:05 - 2009-07-14 05:45 - 00021872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-13 01:05 - 2009-07-14 05:45 - 00021872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-12 21:37 - 2013-08-20 23:37 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{7E1ECBF7-9E24-4538-B971-A78BC14E8D31}
2014-02-12 19:20 - 2013-07-13 13:18 - 00282024 _____ () C:\Windows\DPINST.LOG
2014-02-11 14:13 - 2013-07-13 15:25 - 00007619 _____ () C:\Users\Bastian\AppData\Local\Resmon.ResmonCfg
2014-02-10 21:47 - 2013-09-22 21:16 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\vlc
2014-02-09 11:34 - 2013-07-14 16:43 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-07 20:52 - 2014-02-07 20:52 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-06 23:58 - 2014-01-29 20:10 - 00000000 ____D () C:\Users\Bastian\Documents\Filme
2014-02-06 20:58 - 2010-11-21 04:47 - 00139652 _____ () C:\Windows\PFRO.log
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\Users\Bastian\AppData\Local\VNT
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\ProgramData\AskPartnerNetwork
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\Program Files (x86)\VNT
2014-02-06 20:18 - 2014-02-06 20:18 - 00000000 ____D () C:\Program Files (x86)\AskPartnerNetwork
2014-02-06 20:17 - 2014-02-06 20:17 - 00002066 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Avira
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\ProgramData\Avira
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\ProgramData\APN
2014-02-06 20:17 - 2014-02-06 20:17 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-02-06 20:17 - 2013-08-23 13:55 - 00001486 _____ () C:\Windows\Sandboxie.ini
2014-02-06 20:15 - 2014-02-06 20:09 - 129598176 _____ () C:\Users\Bastian\Downloads\avira_free344_antivirus_de.exe
2014-02-05 23:02 - 2013-07-14 10:38 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-05 23:02 - 2013-07-14 10:38 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-05 23:02 - 2013-07-14 10:38 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-04 11:05 - 1980-01-04 03:05 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-04 08:39 - 2013-07-13 13:05 - 00115304 _____ () C:\Users\Bastian\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-04 08:39 - 2009-07-14 05:45 - 00445192 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-03 22:04 - 2014-02-03 22:04 - 00000000 ____D () C:\Users\Bastian\AppData\Local\SWTOR
2014-02-03 22:03 - 2014-02-03 19:17 - 00000000 ____D () C:\ProgramData\BitRaider
2014-02-03 21:09 - 2013-07-14 18:23 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-02-03 19:17 - 2014-02-03 19:17 - 00000000 ____D () C:\Users\Public\Documents\BitRaider
2014-02-03 19:17 - 2014-02-03 19:17 - 00000000 ____D () C:\Users\Bastian\AppData\Local\SWTORPerf
2014-02-03 19:10 - 2014-02-03 19:10 - 00001449 _____ () C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2014-02-03 19:10 - 2014-02-03 19:09 - 00014072 _____ () C:\Users\Bastian\Documents\Install STAR WARS The Old Republic.log
2014-02-03 19:09 - 2014-02-03 19:09 - 00000000 ____D () C:\Users\hedev
2014-02-03 19:09 - 2014-02-03 19:09 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-02-03 19:08 - 2014-02-03 19:06 - 39777624 _____ () C:\Users\Bastian\Downloads\SWTOR_setup.exe
2014-01-31 11:56 - 2014-01-31 11:56 - 483770647 _____ () C:\Windows\MEMORY.DMP
2014-01-31 11:56 - 2014-01-31 11:56 - 00275032 _____ () C:\Windows\Minidump\013114-15116-01.dmp
2014-01-31 11:56 - 2014-01-31 11:56 - 00000000 ____D () C:\Windows\Minidump
2014-01-29 11:33 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-21 22:24 - 2013-10-21 13:10 - 00000000 ____D () C:\ProgramData\Cisco
2014-01-21 22:24 - 2013-07-13 13:09 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-01-19 08:33 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-17 15:54 - 2014-01-17 15:54 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Media Player Classic
2014-01-17 15:53 - 2014-01-17 15:53 - 00001087 _____ () C:\Users\Bastian\Desktop\Media Player Classic Home Cinema.lnk
2014-01-17 15:53 - 2014-01-17 15:53 - 00000972 _____ () C:\Users\Bastian\Desktop\SVP Manager.lnk
2014-01-17 15:53 - 2014-01-17 15:53 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
2014-01-17 15:53 - 2014-01-17 15:53 - 00000000 ____D () C:\Program Files (x86)\Haali
2014-01-17 15:53 - 2014-01-17 15:53 - 00000000 ____D () C:\Program Files (x86)\ffdshow
2014-01-17 15:53 - 2014-01-17 15:52 - 00000000 ____D () C:\ProgramData\SVP 3.1
2014-01-17 15:53 - 2014-01-17 15:52 - 00000000 ____D () C:\Program Files (x86)\SVP
2014-01-17 15:52 - 2014-01-17 15:52 - 00000000 ____D () C:\Users\Bastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5
2014-01-17 15:52 - 2014-01-17 15:52 - 00000000 ____D () C:\Program Files (x86)\AviSynth 2.5
2014-01-17 15:52 - 2014-01-17 15:50 - 33974135 _____ (SmoothVideo Project ) C:\Users\Bastian\Downloads\SVP_3.1.5.exe
2014-01-17 15:50 - 2014-01-17 15:50 - 04879943 _____ ( ) C:\Users\Bastian\Downloads\svplight-0.9.3.exe
2014-01-17 11:39 - 2014-01-17 11:39 - 00000000 ____D () C:\Users\Bastian\AppData\Local\MGTEK
2014-01-17 11:38 - 2014-01-17 11:38 - 00000000 ____D () C:\Program Files\MGTEK
2014-01-17 11:38 - 2014-01-17 11:38 - 00000000 ____D () C:\Program Files\Common Files\MGTEK
2014-01-17 11:38 - 2014-01-17 11:38 - 00000000 ____D () C:\Program Files (x86)\MGTEK
2014-01-17 11:35 - 2014-01-17 11:35 - 01718432 _____ (MGTEK) C:\Users\Bastian\Desktop\adblockie.exe
2014-01-17 11:35 - 2014-01-17 11:35 - 00000000 ____D () C:\ProgramData\MGTEK
2014-01-17 11:34 - 2014-01-17 11:34 - 00000100 _____ () C:\Users\Public\sdelevURL.tmp
2014-01-15 17:44 - 1980-01-04 00:45 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 17:42 - 2013-07-14 10:48 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 10:49 - 2013-07-14 17:27 - 00002026 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2014-01-15 10:49 - 2013-07-13 13:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

Some content of TEMP:
====================
C:\Users\Bastian\AppData\Local\Temp\AutoRun.exe
C:\Users\Bastian\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Bastian\AppData\Local\Temp\avgnt.exe
C:\Users\Bastian\AppData\Local\Temp\npp.6.3.2.Installer.exe
C:\Users\Bastian\AppData\Local\Temp\Offercast_AVIRAV7_.exe
C:\Users\Bastian\AppData\Local\Temp\setup.exe
C:\Users\Bastian\AppData\Local\Temp\unicows.dll
C:\Users\Bastian\AppData\Local\Temp\unsetup.exe
C:\Users\Bastian\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-11 11:25

==================== End Of Log ============================
         
--- --- ---



und Audditon:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2014 01
Ran by Bastian at 2014-02-13 10:53:44
Running from C:\Users\Bastian\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

ActivClient x64 (Version: 6.2 - ActivIdentity) Hidden
Adblock IE 3.0 (Version: 3.0.2496 - MGTEK)
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
Android Studio (x32 Version: 1.0 - Google Inc.)
ATI Catalyst Install Manager (Version: 3.0.732.0 - ATI Technologies, Inc.)
Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira)
Avira SearchFree Toolbar (x32 Version: 12.10.0.2951 - APN, LLC)
AviSynth 2.5 (x32 Version:  - )
BitRaider Web Client (x32 Version: 1.1.9.9 - BitRaider, LLC)
Bochs 2.4.5 (remove only) (x32 Version: 2.4.5 - The Bochs Project)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (x32 Version: 2009.0915.2144.37147 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0915.2144.37147 - ATI) Hidden
Catalyst Control Center Graphics Full New (x32 Version: 2009.0915.2144.37147 - ATI) Hidden
Catalyst Control Center Graphics Light (x32 Version: 2009.0915.2144.37147 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.0915.2144.37147 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2009.0915.2144.37147 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Czech (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Danish (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Dutch (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help English (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Finnish (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help French (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help German (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Greek (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Italian (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Japanese (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Korean (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Polish (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Russian (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Spanish (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Swedish (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Thai (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
CCC Help Turkish (x32 Version: 2009.0915.2143.37147 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0915.2144.37147 - Ihr Firmenname) Hidden
ccc-utility64 (Version: 2009.0915.2144.37147 - ATI) Hidden
Cisco AnyConnect Secure Mobility Client  (x32 Version: 3.1.05152 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.05152 - Cisco Systems, Inc.) Hidden
Crystal Reports for Visual Studio (x32 Version: 12.51.0.240 - SAP) Hidden
Dev-C++ 5 beta 9 release (4.9.9.2) (x32 Version:  - )
Dotfuscator Software Services - Community Edition (x32 Version: 5.0.2500.0 - PreEmptive Solutions)
ffdshow v1.3.4515 [2013-06-12] (x32 Version: 1.3.4515.0 - )
GameMaker 8.1 (HKCU Version:  - )
Google Chrome (x32 Version: 32.0.1700.107 - Google Inc.)
Google Earth (x32 Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Haali Media Splitter (x32 Version:  - )
HP Battery Check (x32 Version: 4.3.2.2 - Hewlett-Packard)
HP Battery Check (x32 Version: 4.3.2.2 - Hewlett-Packard) Hidden
HP ESU for Microsoft Windows 7 (x32 Version: 1.0.5.1 - Hewlett-Packard Company)
HP Integrated Module with Bluetooth wireless technology (Version: 6.2.0.9602 - Broadcom Corporation)
HP Quick Launch Buttons (x32 Version: 6.50.17.1 - Hewlett-Packard Company)
HP System Default Settings (x32 Version: 2.2.1 - Hewlett-Packard Company)
IIS 7.5 Express (x32 Version: 7.5.1070 - Microsoft Corporation)
Intel PROSet Wireless (Version:  - ) Hidden
Intel(R) Management Engine Interface (Version:  - )
Intel(R) PROSet/Wireless WiFi-Software (Version: 13.00.0000 - Intel Corporation)
Intel® Matrix Storage Manager (Version:  - Intel Corporation)
Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle)
Java SE Development Kit 7 Update 25 (64-bit) (Version: 1.7.0.250 - Oracle)
Java SE Development Kit 7 Update 45 (64-bit) (Version: 1.7.0.450 - Oracle)
LingoPad 2.6 (Build 360) (x32 Version: 2.6 - Lingo4you)
Media Go (x32 Version: 2.4.256 - Sony)
Media Go Video Playback Engine 1.116.108.02030 (x32 Version: 1.116.108.02030 - Sony)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (x32 Version: 4.0.30319 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (x32 Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (x32 Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 - German/Deutsch (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2007 - Polish/Polski (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office O MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office O MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Polish) 2007 (x32 Version: 12.0.4518.1020 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Polish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office SharePoint Designer MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (x32 Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK (x32 Version: 4.0.50826.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (Version:  - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Browser (x32 Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (x32 Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (x32 Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x32 Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (x32 Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual C++  Compilers 2010 Standard - enu - x64 (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual C++  Compilers 2010 Standard - enu - x86 (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (x32 Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x64) (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Professional - ENU (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Professional - ENU (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 SharePoint Developer Tools (x32 Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Mozilla Firefox 27.0 (x86 de) (x32 Version: 27.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0 - Mozilla)
Need for Speed Underground 2 (x32 Version:  - )
Notepad++ (x32 Version: 6.3.2 - Notepad++ Team)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593 - Apache Software Foundation)
Oracle VM VirtualBox 4.2.16 (Version: 4.2.16 - Oracle Corporation)
PDF Architect (x32 Version: 1.1.83.9982 - pdfforge GmbH)
PDFCreator (x32 Version: 1.7.1 - pdfforge)
PlayStation(R)Store (x32 Version: 4.14.6.15183 - Sony Computer Entertainment Inc.)
Python 3.3.2 (x32 Version: 3.3.2150 - Python Software Foundation)
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
RICOH Media Driver (x32 Version: 2.10.00.04 - RICOH)
Sandboxie 4.04 (64-bit) (Version: 4.04 - Sandboxie Holdings, LLC)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (Version: 10.1.2531.0 - Microsoft Corporation)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
SmoothVideo Project version 3.1.5 (x32 Version: 3.1.5 - SVP)
Soft Data Fax Modem with SmartCP (Version: 7.80.3.52 - Conexant Systems)
Sony PC Companion 2.10.188 (x32 Version: 2.10.188 - Sony)
SoundMAX (x32 Version: 6.10.2.5240 - Analog Devices)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Star Wars The Old Republic (x32 Version: 7.0.0.31 - Bioware/EA)
Star Wars: The Old Republic (x32 Version: 1.00 - Electronic Arts, Inc.)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Super Hexagon (x32 Version:  - Terry Cavanagh)
Synaptics Pointing Device Driver (Version: 15.0.24.0 - Synaptics Incorporated)
TeamViewer 8 (x32 Version: 8.0.22298 - TeamViewer)
The Binding of Isaac (x32 Version:  - Edmund McMillen and Florian Himsl)
Total Commander 64-bit (Remove or Repair) (Version: 8.01 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (x32 Version:  - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (x32 Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (x32 Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (x32 Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (x32 Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version:  - Microsoft)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (x32 Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player 2.0.7 (Version: 2.0.7 - VideoLAN)
WCF RIA Services V1.0 SP1 (x32 Version: 4.1.60114.0 - Microsoft Corporation)
Web Deployment Tool (Version: 1.1.0618 - Microsoft Corporation)
Windows Installer XML Toolset 3.5 (x32 Version: 3.5.2519.0 - Microsoft Corporation)
WinRAR 5.00 (32-Bit) (x32 Version: 5.00.0 - win.rar GmbH)

==================== Restore Points  =========================

04-02-2014 18:15:00 Windows Update
07-02-2014 22:23:27 Windows Update
11-02-2014 09:53:58 Windows Update
12-02-2014 18:20:07 Sony PC Companion

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {42BB286C-3F48-443A-B446-49E8BDCD74A8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [1980-01-04] (Google Inc.)
Task: {56031828-8806-4DA0-BB22-100A938D885B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [1980-01-04] (Google Inc.)
Task: {A32A4616-3361-4176-A226-F983823B8B14} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-05] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2009-07-30 16:42 - 2009-07-30 16:42 - 00173344 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2013-07-14 17:27 - 2013-10-31 11:35 - 00070880 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2009-06-10 15:30 - 2009-06-10 15:30 - 00098304 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2013-07-13 13:05 - 2013-07-13 13:05 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-12-12 23:36 - 2013-12-12 23:36 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2014-02-06 20:17 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-07-14 17:27 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2013-07-14 17:27 - 2013-09-13 10:02 - 00208896 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 13:54 - 2011-07-07 13:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2013-07-14 17:27 - 2013-05-20 11:58 - 00620718 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\sqlite3.dll
2013-05-14 08:38 - 2013-05-14 08:38 - 00607744 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2012-08-10 15:51 - 2012-08-10 15:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2014-02-07 20:52 - 2014-02-07 20:52 - 03583600 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: COM4
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/13/2014 10:49:06 AM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/13/2014 10:48:32 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/13/2014 00:58:46 AM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/13/2014 00:58:13 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/12/2014 07:23:52 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/12/2014 07:23:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/12/2014 07:19:34 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/12/2014 07:19:01 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/12/2014 01:31:58 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (02/12/2014 01:28:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (02/13/2014 10:48:22 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/13/2014 10:48:22 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/13/2014 01:48:27 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/13/2014 00:57:59 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/13/2014 00:57:59 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (02/12/2014 08:38:27 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/12/2014 08:10:32 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/12/2014 07:50:59 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/12/2014 07:35:26 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (02/12/2014 07:23:05 PM) (Source: atikmdag) (User: )
Description: Display is not active


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 56%
Total physical RAM: 4031.3 MB
Available physical RAM: 1743.95 MB
Total Pagefile: 8060.79 MB
Available Pagefile: 5322.35 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:17.76 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 461885D4)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
__________________

Alt 14.02.2014, 10:47   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 startet ohne Netzwerkstecker immer wieder neu - Standard

Windows 7 startet ohne Netzwerkstecker immer wieder neu



Zitat:
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707472 2013-12-12] (Cisco Systems, Inc.)
KEnnst Du das? Mit Absicht am laufen?


Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 14.02.2014, 18:37   #5
cayprob
 
Windows 7 startet ohne Netzwerkstecker immer wieder neu - Standard

Windows 7 startet ohne Netzwerkstecker immer wieder neu



Also das cysco ist mir bekannt.brauch ich um in mein Uninetz zu kommen.ich probier dann das was du mir Grad empfohlen hast.ich poste dann wieder den txt

Und es wurde nichts gefunden

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org

Database version: v2014.02.14.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16518
Bastian :: HP8510P_BASTIAN [administrator]

14.02.2014 18:14:37
mbar-log-2014-02-14 (18-14-37).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 282841
Time elapsed: 13 minute(s), 5 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         


Alt 15.02.2014, 17:52   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 startet ohne Netzwerkstecker immer wieder neu - Standard

Windows 7 startet ohne Netzwerkstecker immer wieder neu



Du sprichst von Netzwerkstecker und LAdekabel? Was vom beiden ist denn nun?
__________________
--> Windows 7 startet ohne Netzwerkstecker immer wieder neu

Antwort

Themen zu Windows 7 startet ohne Netzwerkstecker immer wieder neu
brauche, frage, günstig, herunterfahren, immer wieder, ladekabel, laptop, media, mediaplayer, netzwerks, netzwerkstecker, neu, neustart, problem, schließe, starte, startet, windows, windows 7, woche, öffnet



Ähnliche Themen: Windows 7 startet ohne Netzwerkstecker immer wieder neu


  1. PC startet immer wieder WIN 8.1
    Plagegeister aller Art und deren Bekämpfung - 09.06.2015 (3)
  2. Outlook startet im laufenden Betrieb immer wieder ohne mein Zutun
    Plagegeister aller Art und deren Bekämpfung - 30.03.2015 (23)
  3. Windows 8 : Laptop startet immer wieder neu.Angeblich zu wenig Arbeitsspeicher.Eventuell virenverseuchtes WoW-Addon gedownloadet
    Plagegeister aller Art und deren Bekämpfung - 17.08.2014 (14)
  4. Windows Vista: Laptop Compaq Presario CQ70 stürzt ohne erkennbaren Grund immer wieder ab...
    Log-Analyse und Auswertung - 24.12.2013 (3)
  5. windows 7 home premium sp1 startet immer um 0 uhr +/- 10 minuten ohne grund
    Alles rund um Windows - 06.11.2013 (4)
  6. GVU Trojaner PC startet immer, ohne Zugriffsmöglichkeit
    Plagegeister aller Art und deren Bekämpfung - 19.09.2012 (5)
  7. Windows Explorer funktioniert nicht mehr / Startet immer wieder eu
    Log-Analyse und Auswertung - 07.03.2012 (28)
  8. windows und Linux cd startet immer wieder neu
    Plagegeister aller Art und deren Bekämpfung - 20.05.2011 (1)
  9. Windows 7 startet immer wieder nach kurzem Bluescreen neu
    Plagegeister aller Art und deren Bekämpfung - 12.05.2011 (5)
  10. Rechner startet nach windows ladebalken immer wieder neu
    Alles rund um Windows - 21.03.2011 (9)
  11. Windows Explorer startet unter Vista immer wieder neu
    Alles rund um Windows - 23.03.2010 (1)
  12. Firefox startet automatisch (immer und immer wieder)
    Log-Analyse und Auswertung - 09.01.2010 (9)
  13. Rechner geht immer wieder aus ohne das Windows runterfährt
    Mülltonne - 11.08.2007 (1)
  14. PC startet immer wieder mal neu
    Log-Analyse und Auswertung - 27.02.2007 (7)
  15. Windows XP startet immer wieder neu...
    Alles rund um Windows - 05.12.2006 (3)
  16. Windows XP startet immer wieder neu...
    Mülltonne - 01.12.2006 (1)
  17. Hilfe Mein Computer startet immer neu ohne willen
    Netzwerk und Hardware - 20.07.2004 (5)

Zum Thema Windows 7 startet ohne Netzwerkstecker immer wieder neu - Hallöchen, ich bin neu hie rund möchte euch gleich mit meiner ersten Frage löchern: Seit einer Woche habe ich ein Problem bemerkt. Immer wenn ich meinem Laptop (Windows 7) vom - Windows 7 startet ohne Netzwerkstecker immer wieder neu...
Archiv
Du betrachtest: Windows 7 startet ohne Netzwerkstecker immer wieder neu auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.