Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows Updates und Grafikkartentreiber Update nicht möglich

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 29.01.2015, 20:24   #1
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Hallo zusammen,

ich weiß nicht, ob ich einen Virus o.ä. habe und in diesem Forum richtig bin. Falls nein, bitte ich um Entschuldigung, ich kenne mich in diesem Bereich rein gar nicht aus.

Ich kann die wichtigen Windows Updates, die mir angeboten werden, nicht mehr durchführen, es kommen immer Fehlermeldungen. Es handelt sich um das Update "Windows.NET Framework 4.5.2 für Windows 7 x64-basierte Systeme".
Auch den Treiber für meine Grafikkarte kann ich nicht weiter updaten, es kommt immer die Meldung "funktioniert nicht mehr".

Ich habe versucht, die Updates als Administrator durchzuführen, bei ausgeschalteter Firewall und im abgesicherten Modus, das hat leider alles nichts gebracht.

Hier ist meine dxdiag file, falls sie hilft:
Code:
ATTFilter
------------------
System Information
------------------
Time of this report: 01/29/2014, 14:20:25
       Machine name: PC-PC
   Operating System: Windows 7 Home Premium 64-bit (6.1, Build 7601) Service Pack 1 (7601.win7sp1_gdr.140706-1506)
           Language: German (Regional Setting: German)
System Manufacturer: System manufacturer
       System Model: System Product Name
               BIOS: BIOS Date: 07/15/10 20:15:05 Ver: 08.00.15
          Processor: Intel(R) Core(TM) i7 CPU         860  @ 2.80GHz (8 CPUs), ~2.8GHz
             Memory: 4096MB RAM
Available OS Memory: 4056MB RAM
          Page File: 3773MB used, 4335MB available
        Windows Dir: C:\Windows
    DirectX Version: DirectX 11
DX Setup Parameters: Not found
   User DPI Setting: Using System DPI
 System DPI Setting: 96 DPI (100 percent)
    DWM DPI Scaling: Disabled
     DxDiag Version: 6.01.7601.17514 64bit Unicode

------------
DxDiag Notes
------------
      Display Tab 1: No problems found.
        Sound Tab 1: No problems found.
        Sound Tab 2: No problems found.
          Input Tab: No problems found.

--------------------
DirectX Debug Levels
--------------------
Direct3D:    0/4 (retail)
DirectDraw:  0/4 (retail)
DirectInput: 0/5 (retail)
DirectMusic: 0/5 (retail)
DirectPlay:  0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow:  0/6 (retail)

---------------
Display Devices
---------------
          Card name: NVIDIA GeForce GTX 460 SE
       Manufacturer: NVIDIA
          Chip type: GeForce GTX 460 SE
           DAC type: Integrated RAMDAC
         Device Key: Enum\PCI\VEN_10DE&DEV_0E23&SUBSYS_040110B0&REV_A1
     Display Memory: 2748 MB
   Dedicated Memory: 977 MB
      Shared Memory: 1771 MB
       Current Mode: 1920 x 1080 (32 bit) (60Hz)
       Monitor Name: PnP-Monitor (Standard)
      Monitor Model: E2340
         Monitor Id: GSM57A6
        Native Mode: 1920 x 1080(p) (60.000Hz)
        Output Type: DVI
        Driver Name: nvd3dumx.dll,nvwgf2umx.dll,nvwgf2umx.dll,nvd3dum,nvwgf2um,nvwgf2um
Driver File Version: 9.18.0013.4052 (English)
     Driver Version: 9.18.13.4052
        DDI Version: 11
       Driver Model: WDDM 1.1
  Driver Attributes: Final Retail
   Driver Date/Size: 8/19/2014 22:14:48, 17555104 bytes
        WHQL Logo'd: Yes
    WHQL Date Stamp: 
  Device Identifier: {D7B71E3E-4D63-11CF-D47C-0C241CC2C435}
          Vendor ID: 0x10DE
          Device ID: 0x0E23
          SubSys ID: 0x040110B0
        Revision ID: 0x00A1
 Driver Strong Name: oem22.inf:NVIDIA_SetA_Devices.NTamd64.6.1:Section030:9.18.13.4052:pci\ven_10de&dev_0e23
     Rank Of Driver: 00E02001
        Video Accel: ModeMPEG2_A ModeMPEG2_C ModeVC1_C ModeWMV9_C 
   Deinterlace Caps: {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive 
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY 
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch 
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
                     {335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
       D3D9 Overlay: Supported
            DXVA-HD: Supported
       DDraw Status: Enabled
         D3D Status: Enabled
         AGP Status: Enabled

-------------
Sound Devices
-------------
            Description: Lautsprecher (VIA High Definition Audio)
 Default Sound Playback: Yes
 Default Voice Playback: Yes
            Hardware ID: HDAUDIO\FUNC_01&VEN_1106&DEV_0397&SUBSYS_10438415&REV_1000
        Manufacturer ID: 1
             Product ID: 100
                   Type: WDM
            Driver Name: viahduaa.sys
         Driver Version: 6.00.0001.7900 (English)
      Driver Attributes: Final Retail
            WHQL Logo'd: Yes
          Date and Size: 1/11/2010 11:05:20, 1290752 bytes
            Other Files: 
        Driver Provider: VIA Technologies, Inc.
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX(tm) 2.0 Listen/Src: No, No
   I3DL2(tm) Listen/Src: No, No
Sensaura(tm) ZoomFX(tm): No

            Description: HD Audio HDMI out (VIA High Definition Audio)
 Default Sound Playback: No
 Default Voice Playback: No
            Hardware ID: HDAUDIO\FUNC_01&VEN_1106&DEV_0397&SUBSYS_10438415&REV_1000
        Manufacturer ID: 1
             Product ID: 100
                   Type: WDM
            Driver Name: viahduaa.sys
         Driver Version: 6.00.0001.7900 (English)
      Driver Attributes: Final Retail
            WHQL Logo'd: Yes
          Date and Size: 1/11/2010 11:05:20, 1290752 bytes
            Other Files: 
        Driver Provider: VIA Technologies, Inc.
         HW Accel Level: Basic
              Cap Flags: 0xF1F
    Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
 Static/Strm HW 3D Bufs: 0, 0
              HW Memory: 0
       Voice Management: No
 EAX(tm) 2.0 Listen/Src: No, No
   I3DL2(tm) Listen/Src: No, No
Sensaura(tm) ZoomFX(tm): No

---------------------
Sound Capture Devices
---------------------
            Description: Stereomix (VIA High Definition Audio)
  Default Sound Capture: Yes
  Default Voice Capture: Yes
            Driver Name: viahduaa.sys
         Driver Version: 6.00.0001.7900 (English)
      Driver Attributes: Final Retail
          Date and Size: 1/11/2010 11:05:20, 1290752 bytes
              Cap Flags: 0x1
           Format Flags: 0xFFFFF

-------------------
DirectInput Devices
-------------------
      Device Name: Maus
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a

      Device Name: Tastatur
         Attached: 1
    Controller ID: n/a
Vendor/Product ID: n/a
        FF Driver: n/a

      Device Name: USB Keykoard
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x1C4F, 0x0002
        FF Driver: n/a

      Device Name: USB Keykoard
         Attached: 1
    Controller ID: 0x0
Vendor/Product ID: 0x1C4F, 0x0002
        FF Driver: n/a

Poll w/ Interrupt: No

-----------
USB Devices
-----------
+ USB-Root-Hub
| Vendor/Product ID: 0x8086, 0x3B3C
| Matching Device ID: usb\root_hub20
| Service: usbhub
| Driver: usbhub.sys, 11/27/2013 02:41:37, 343040 bytes
| Driver: usbd.sys, 11/27/2013 02:41:03, 7808 bytes
| 
+-+ Generic USB Hub
| | Vendor/Product ID: 0x8087, 0x0020
| | Location: Port_#0001.Hub_#0001
| | Matching Device ID: usb\class_09
| | Service: usbhub
| | Driver: usbhub.sys, 11/27/2013 02:41:37, 343040 bytes

----------------
Gameport Devices
----------------

------------
PS/2 Devices
------------
+ HID-Tastatur
| Vendor/Product ID: 0x1C4F, 0x0002
| Matching Device ID: hid_device_system_keyboard
| Service: kbdhid
| Driver: kbdhid.sys, 7/14/2009 01:00:20, 33280 bytes
| Driver: kbdclass.sys, 7/14/2009 02:48:04, 50768 bytes
| 
+ Terminalserver-Tastaturtreiber
| Matching Device ID: root\rdp_kbd
| Upper Filters: kbdclass
| Service: TermDD
| Driver: i8042prt.sys, 7/14/2009 00:19:57, 105472 bytes
| Driver: kbdclass.sys, 7/14/2009 02:48:04, 50768 bytes
| 
+ HID-konforme Maus
| Vendor/Product ID: 0x192F, 0x0916
| Matching Device ID: hid_device_system_mouse
| Service: mouhid
| Driver: mouhid.sys, 7/14/2009 01:00:20, 31232 bytes
| Driver: mouclass.sys, 7/14/2009 02:48:27, 49216 bytes
| 
+ Terminalserver-Maustreiber
| Matching Device ID: root\rdp_mou
| Upper Filters: mouclass
| Service: TermDD
| Driver: termdd.sys, 11/20/2010 14:33:57, 63360 bytes
| Driver: sermouse.sys, 7/14/2009 01:00:20, 26624 bytes
| Driver: mouclass.sys, 7/14/2009 02:48:27, 49216 bytes

------------------------
Disk & DVD/CD-ROM Drives
------------------------
      Drive: C:
 Free Space: 145.2 GB
Total Space: 953.8 GB
File System: NTFS
      Model: ST1000DM003-9YN162 ATA Device

      Drive: D:
      Model: HL-DT-ST DVDRRW GSA-H30L ATA Device
     Driver: c:\windows\system32\drivers\cdrom.sys, 6.01.7601.17514 (German), 11/20/2010 10:19:21, 147456 bytes

--------------
System Devices
--------------
     Name: Intel(R) QuickPath Interconnect - D151
Device ID: PCI\VEN_8086&DEV_D151&SUBSYS_00000000&REV_11\3&11583659&0&81
   Driver: n/a

     Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 3 - 3B46
Device ID: PCI\VEN_8086&DEV_3B46&SUBSYS_83831043&REV_06\3&11583659&0&E2
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes

     Name: Intel(R) 82801 PCI-Brücke - 244E
Device ID: PCI\VEN_8086&DEV_244E&SUBSYS_83831043&REV_A6\3&11583659&0&F0
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes

     Name: Intel(R) QuickPath Interconnect - D150
Device ID: PCI\VEN_8086&DEV_D150&SUBSYS_00000000&REV_11\3&11583659&0&80
   Driver: n/a

     Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 1 - 3B42
Device ID: PCI\VEN_8086&DEV_3B42&SUBSYS_83831043&REV_06\3&11583659&0&E0
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes

     Name: Realtek PCIe GBE Family Controller
Device ID: PCI\VEN_10EC&DEV_8168&SUBSYS_83A31043&REV_03\4&FD5DF6&0&00E5
   Driver: n/a

     Name: Intel(R) processor PCI Express Root Port 1 - D138
Device ID: PCI\VEN_8086&DEV_D138&SUBSYS_83831043&REV_11\3&11583659&0&18
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes

     Name: Intel(R) 5 Series/3400 Series Chipset Family USB Enhanced Host Controller - 3B3C
Device ID: PCI\VEN_8086&DEV_3B3C&SUBSYS_83831043&REV_06\3&11583659&0&D0
   Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.18328 (English), 11/27/2013 02:41:11, 53248 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:11, 325120 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:37, 343040 bytes

     Name: NVIDIA GeForce GTX 460 SE
Device ID: PCI\VEN_10DE&DEV_0E23&SUBSYS_040110B0&REV_A1\4&113C73B2&0&0018
   Driver: C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe, 9.18.0013.4052 (English), 8/19/2014 22:13:54, 441120 bytes
   Driver: C:\Program Files\NVIDIA Corporation\Drs\nvdrsdb.bin, 8/19/2014 22:14:50, 1192732 bytes
   Driver: C:\Windows\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_neutral_06aea030233e53aa\NvCplSetupInt.exe, 1.00.0001.0000 (German), 8/19/2014 22:14:40, 83141328 bytes
   Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\Nvd3d9wrap.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:46, 164496 bytes
   Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll, 8/19/2014 22:14:50, 13272 bytes
   Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\nvdxgiwrap.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:50, 113008 bytes
   Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\Nvd3d9wrapx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:46, 191264 bytes
   Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\detoured.dll, 8/19/2014 22:14:50, 13088 bytes
   Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\nvdxgiwrapx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:50, 130488 bytes
   Driver: C:\Program Files\NVIDIA Corporation\license.txt, 8/19/2014 22:13:58, 21904 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\MCU.exe, 1.01.5204.20580 (German), 8/19/2014 22:13:58, 842528 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvdebugdump.exe, 6.14.0013.4052 (English), 8/19/2014 22:14:50, 229320 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.1.pdf, 8/19/2014 22:14:54, 56700 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.exe, 8.17.0013.4052 (English), 8/19/2014 22:14:54, 338776 bytes
   Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvml.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:58, 649160 bytes
   Driver: C:\Program Files\NVIDIA Corporation\OpenCL\OpenCL.dll, 1.00.0000.0000 (English), 8/19/2014 22:15:22, 61912 bytes
   Driver: C:\Program Files\NVIDIA Corporation\OpenCL\OpenCL64.dll, 1.00.0000.0000 (English), 8/19/2014 22:15:22, 75040 bytes
   Driver: C:\Windows\system32\DRIVERS\nvlddmkm.sys, 9.18.0013.4052 (English), 8/19/2014 22:14:58, 12866008 bytes
   Driver: C:\Windows\system32\NvFBC64.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:50, 903624 bytes
   Driver: C:\Windows\system32\NvIFR64.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:56, 944928 bytes
   Driver: C:\Windows\system32\nvapi64.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:00, 3196816 bytes
   Driver: C:\Windows\system32\nvcompiler.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:04, 22994208 bytes
   Driver: C:\Windows\system32\nvcuda.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:44, 13835208 bytes
   Driver: C:\Windows\system32\nvcuvid.dll, 7.17.0013.4052 (English), 8/19/2014 22:14:46, 4247000 bytes
   Driver: C:\Windows\system32\nvd3dumx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:48, 17555104 bytes
   Driver: C:\Windows\system32\nvinfo.pb, 8/19/2014 22:14:56, 26353 bytes
   Driver: C:\Windows\system32\nvinitx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:56, 166568 bytes
   Driver: C:\Windows\system32\nvoglshim64.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:58, 354016 bytes
   Driver: C:\Windows\system32\nvoglv64.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:02, 31512520 bytes
   Driver: C:\Windows\system32\nvopencl.dll, 8.17.0013.4052 (English), 8/19/2014 22:15:04, 13922752 bytes
   Driver: C:\Windows\system32\nvumdshimx.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:08, 965312 bytes
   Driver: C:\Windows\system32\nvwgf2umx.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:16, 18626304 bytes
   Driver: C:\Windows\SysWow64\NvFBC.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:50, 869152 bytes
   Driver: C:\Windows\SysWow64\NvIFR.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:56, 907096 bytes
   Driver: C:\Windows\SysWow64\nvapi.dll, 9.18.0013.4052 (English), 8/19/2014 22:13:58, 2814656 bytes
   Driver: C:\Windows\SysWow64\nvcompiler.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:06, 15294296 bytes
   Driver: C:\Windows\SysWow64\nvcuda.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:44, 11222048 bytes
   Driver: C:\Windows\SysWow64\nvcuvid.dll, 7.17.0013.4052 (English), 8/19/2014 22:14:46, 3989960 bytes
   Driver: C:\Windows\SysWow64\nvd3dum.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:48, 14498552 bytes
   Driver: C:\Windows\SysWow64\nvinit.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:56, 146480 bytes
   Driver: C:\Windows\SysWow64\nvoglshim32.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:58, 305600 bytes
   Driver: C:\Windows\SysWow64\nvoglv32.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:00, 24196896 bytes
   Driver: C:\Windows\SysWow64\nvopencl.dll, 8.17.0013.4052 (English), 8/19/2014 22:15:04, 11283344 bytes
   Driver: C:\Windows\SysWow64\nvumdshim.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:08, 846832 bytes
   Driver: C:\Windows\SysWow64\nvwgf2um.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:14, 16122344 bytes
   Driver: C:\Windows\system32\nvdispco6434052.dll, 2.00.0040.0004 (English), 8/19/2014 22:14:50, 1890080 bytes
   Driver: C:\Windows\system32\nvdispgenco6434052.dll, 2.00.0019.0002 (English), 8/19/2014 22:14:50, 1539928 bytes

     Name: Intel(R) processor DMI - D131
Device ID: PCI\VEN_8086&DEV_D131&SUBSYS_83831043&REV_11\3&11583659&0&00
   Driver: n/a

     Name: Intel(R) 5 Series/3400 Series Chipset Family USB Enhanced Host Controller - 3B34
Device ID: PCI\VEN_8086&DEV_3B34&SUBSYS_83831043&REV_06\3&11583659&0&E8
   Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.18328 (English), 11/27/2013 02:41:11, 53248 bytes
   Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:11, 325120 bytes
   Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:37, 343040 bytes

     Name: High Definition Audio-Controller
Device ID: PCI\VEN_10DE&DEV_0BEB&SUBSYS_040110B0&REV_A1\4&113C73B2&0&0118
   Driver: C:\Windows\system32\DRIVERS\hdaudbus.sys, 6.01.7601.17514 (German), 11/20/2010 11:43:43, 122368 bytes

     Name: Intel(R) processor Miscellaneous Registers - D158
Device ID: PCI\VEN_8086&DEV_D158&SUBSYS_00000000&REV_11\3&11583659&0&43
   Driver: n/a

     Name: Intel(R) Management Engine Interface
Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_83831043&REV_06\3&11583659&0&B0
   Driver: C:\Windows\system32\DRIVERS\HECIx64.sys, 6.00.0000.1179 (English), 9/17/2009 12:54:54, 56344 bytes

     Name: Intel(R) 5 Series/3400 Series Chipset Family SMBus Controller - 3B30
Device ID: PCI\VEN_8086&DEV_3B30&SUBSYS_83831043&REV_06\3&11583659&0&FB
   Driver: n/a

     Name: Intel(R) processor System Control and Status Registers - D157
Device ID: PCI\VEN_8086&DEV_D157&SUBSYS_00000000&REV_11\3&11583659&0&42
   Driver: n/a

     Name: High Definition Audio-Controller
Device ID: PCI\VEN_8086&DEV_3B56&SUBSYS_84151043&REV_06\3&11583659&0&D8
   Driver: C:\Windows\system32\DRIVERS\hdaudbus.sys, 6.01.7601.17514 (German), 11/20/2010 11:43:43, 122368 bytes

     Name: Intel(R) 5 Series/3400 Series Chipset Family 2 port Serial ATA Storage Controller - 3B26
Device ID: PCI\VEN_8086&DEV_3B26&SUBSYS_83831043&REV_06\3&11583659&0&FD
   Driver: C:\Windows\system32\DRIVERS\pciide.sys, 6.01.7600.16385 (English), 7/14/2009 02:45:45, 12352 bytes
   Driver: C:\Windows\system32\DRIVERS\pciidex.sys, 6.01.7600.16385 (German), 7/14/2009 02:45:46, 48720 bytes
   Driver: C:\Windows\system32\DRIVERS\atapi.sys, 6.01.7600.16385 (English), 7/14/2009 02:52:21, 24128 bytes
   Driver: C:\Windows\system32\DRIVERS\ataport.sys, 6.01.7601.18231 (German), 8/5/2013 03:25:45, 155584 bytes

     Name: Intel(R) processor Semaphore and Scratchpad Registers - D156
Device ID: PCI\VEN_8086&DEV_D156&SUBSYS_00000000&REV_11\3&11583659&0&41
   Driver: n/a

     Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 6 - 3B4C
Device ID: PCI\VEN_8086&DEV_3B4C&SUBSYS_83831043&REV_06\3&11583659&0&E5
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes

     Name: Intel(R) 5 Series/3400 Series Chipset Family 4 port Serial ATA Storage Controller - 3B20
Device ID: PCI\VEN_8086&DEV_3B20&SUBSYS_83831043&REV_06\3&11583659&0&FA
   Driver: C:\Windows\system32\DRIVERS\pciide.sys, 6.01.7600.16385 (English), 7/14/2009 02:45:45, 12352 bytes
   Driver: C:\Windows\system32\DRIVERS\pciidex.sys, 6.01.7600.16385 (German), 7/14/2009 02:45:46, 48720 bytes
   Driver: C:\Windows\system32\DRIVERS\atapi.sys, 6.01.7600.16385 (English), 7/14/2009 02:52:21, 24128 bytes
   Driver: C:\Windows\system32\DRIVERS\ataport.sys, 6.01.7601.18231 (German), 8/5/2013 03:25:45, 155584 bytes

     Name: Intel(R) processor System Management Registers - D155
Device ID: PCI\VEN_8086&DEV_D155&SUBSYS_00000000&REV_11\3&11583659&0&40
   Driver: n/a

     Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 5 - 3B4A
Device ID: PCI\VEN_8086&DEV_3B4A&SUBSYS_83831043&REV_06\3&11583659&0&E4
   Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes

     Name: Intel(R) H55 Express Chipset LPC Interface Controller - 3B06
Device ID: PCI\VEN_8086&DEV_3B06&SUBSYS_83831043&REV_06\3&11583659&0&F8
   Driver: C:\Windows\system32\DRIVERS\msisadrv.sys, 6.01.7600.16385 (English), 7/14/2009 02:48:27, 15424 bytes

------------------
DirectShow Filters
------------------

DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,WMADMOD.DLL,6.01.7601.17514
WMAPro over S/PDIF DMO,0x00600800,1,1,WMADMOD.DLL,6.01.7601.17514
WMSpeech Decoder DMO,0x00600800,1,1,WMSPDMOD.DLL,6.01.7601.17514
MP3 Decoder DMO,0x00600800,1,1,mp3dmod.dll,6.01.7600.16385
Mpeg4s Decoder DMO,0x00800001,1,1,mp4sdecd.dll,6.01.7600.16385
WMV Screen decoder DMO,0x00600800,1,1,wmvsdecd.dll,6.01.7601.17514
WMVideo Decoder DMO,0x00800001,1,1,wmvdecod.dll,6.01.7601.18221
Mpeg43 Decoder DMO,0x00800001,1,1,mp43decd.dll,6.01.7600.16385
Mpeg4 Decoder DMO,0x00800001,1,1,mpg4decd.dll,6.01.7600.16385
DV Muxer,0x00400000,0,0,qdv.dll,6.06.7601.17514
Color Space Converter,0x00400001,1,1,quartz.dll,6.06.7601.18526
WM ASF Reader,0x00400000,0,0,qasf.dll,12.00.7601.17514
Screen Capture filter,0x00200000,0,1,wmpsrcwp.dll,12.00.7601.17514
AVI Splitter,0x00600000,1,1,quartz.dll,6.06.7601.18526
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,6.06.7601.18526
SBE2MediaTypeProfile,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft DTV-DVD Video Decoder,0x005fffff,2,4,msmpeg2vdec.dll,12.00.9200.17037
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
StreamBufferSink,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft TV Captions Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
MJPEG Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.18526
CBVA DMO wrapper filter,0x00200000,1,1,cbva.dll,6.01.7601.17514
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,6.06.7601.18526
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,6.06.7601.17528
Closed Captions Analysis Filter,0x00200000,2,5,cca.dll,6.06.7601.17514
SBE2FileScan,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft MPEG-2 Video Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,6.06.7601.18526
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,6.06.7601.18526
DV Splitter,0x00600000,1,2,qdv.dll,6.06.7601.17514
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,6.06.7601.18526
Microsoft MPEG-2 Encoder,0x00200000,2,1,msmpeg2enc.dll,6.01.7601.17514
ACM Wrapper,0x00600000,1,1,quartz.dll,6.06.7601.18526
Video Renderer,0x00800001,1,0,quartz.dll,6.06.7601.18526
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,6.06.7601.17528
Line 21 Decoder,0x00600000,1,1,,
Video Port Manager,0x00600000,2,1,quartz.dll,6.06.7601.18526
Video Renderer,0x00400000,1,0,quartz.dll,6.06.7601.18526
VPS Decoder,0x00200000,0,0,WSTPager.ax,6.06.7601.17514
WM ASF Writer,0x00400000,0,0,qasf.dll,12.00.7601.17514
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,6.01.7601.17514
File writer,0x00200000,1,0,qcap.dll,6.06.7601.17514
iTV Data Sink,0x00600000,1,0,itvdata.dll,6.06.7601.17514
iTV Data Capture filter,0x00600000,1,1,itvdata.dll,6.06.7601.17514
DVD Navigator,0x00200000,0,3,qdvd.dll,6.06.7601.18611
Microsoft TV Subtitles Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
Overlay Mixer2,0x00200000,1,1,,
RDP DShow Redirection Filter,0xffffffff,1,0,DShowRdpFilter.dll,
Microsoft MPEG-2 Audio Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
WST Pager,0x00200000,1,1,WSTPager.ax,6.06.7601.17514
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
DV Video Decoder,0x00800000,1,1,qdv.dll,6.06.7601.17514
SampleGrabber,0x00200000,1,1,qedit.dll,6.06.7601.18501
Null Renderer,0x00200000,1,0,qedit.dll,6.06.7601.18501
MPEG-2 Sections and Tables,0x005fffff,1,0,Mpeg2Data.ax,6.06.7601.17514
Microsoft AC3 Encoder,0x00200000,1,1,msac3enc.dll,6.01.7601.17514
StreamBufferSource,0x00200000,0,0,sbe.dll,6.06.7601.17528
Smart Tee,0x00200000,1,2,qcap.dll,6.06.7601.17514
Overlay Mixer,0x00200000,0,0,,
AVI Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.18526
NetBridge,0x00200000,2,0,netbridge.dll,6.01.7601.17514
AVI/WAV File Source,0x00400000,0,2,quartz.dll,6.06.7601.18526
Wave Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
MIDI Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
Multi-file Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
File stream renderer,0x00400000,1,1,quartz.dll,6.06.7601.18526
Microsoft DTV-DVD Audio Decoder,0x005fffff,1,1,msmpeg2adec.dll,6.01.7140.0000
StreamBufferSink2,0x00200000,0,0,sbe.dll,6.06.7601.17528
AVI Mux,0x00200000,1,0,qcap.dll,6.06.7601.17514
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,6.06.7601.18526
File Source (Async.),0x00400000,0,1,quartz.dll,6.06.7601.18526
File Source (URL),0x00400000,0,1,quartz.dll,6.06.7601.18526
Media Center Extender Encryption Filter,0x00200000,2,2,Mcx2Filter.dll,6.01.7601.17514
AudioRecorder WAV Dest,0x00200000,0,0,WavDest.dll,
AudioRecorder Wave Form,0x00200000,0,0,WavDest.dll,
SoundRecorder Null Renderer,0x00200000,0,0,WavDest.dll,
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,6.06.7601.17514
Enhanced Video Renderer,0x00200000,1,0,evr.dll,6.01.7601.18526
BDA MPEG2 Transport Information Filter,0x00200000,2,0,psisrndr.ax,6.06.7601.17669
MPEG Video Decoder,0x40000001,1,1,quartz.dll,6.06.7601.18526

WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink-Konvertierung,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

Video Compressors:
WMVideo8 Encoder DMO,0x00600800,1,1,wmvxencd.dll,6.01.7600.16385
WMVideo9 Encoder DMO,0x00600800,1,1,wmvencod.dll,6.01.7600.16385
MSScreen 9 encoder DMO,0x00600800,1,1,wmvsencd.dll,6.01.7600.16385
DV Video Encoder,0x00200000,0,0,qdv.dll,6.06.7601.17514
MJPEG Compressor,0x00200000,0,0,quartz.dll,6.06.7601.18526

Audio Compressors:
WM Speech Encoder DMO,0x00600800,1,1,WMSPDMOE.DLL,6.01.7600.16385
WMAudio Encoder DMO,0x00600800,1,1,WMADMOE.DLL,6.01.7600.16385
IMA ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.18526
PCM,0x00200000,1,1,quartz.dll,6.06.7601.18526
Microsoft ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.18526
GSM 6.10,0x00200000,1,1,quartz.dll,6.06.7601.18526
CCITT A-Law,0x00200000,1,1,quartz.dll,6.06.7601.18526
CCITT u-Law,0x00200000,1,1,quartz.dll,6.06.7601.18526
MPEG Layer-3,0x00200000,1,1,quartz.dll,6.06.7601.18526

Audio Capture Sources:
Stereomix (VIA High Definition ,0x00200000,0,0,qcap.dll,6.06.7601.17514

PBDA CP Filters:
PBDA DTFilter,0x00600000,1,1,CPFilters.dll,6.06.7601.17528
PBDA ETFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528
PBDA PTFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528

Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,6.06.7601.18526
Microsoft GS Wavetable Synth,0x00200000,1,0,quartz.dll,6.06.7601.18526

WDM Streaming Capture Devices:
VIA HD Audio Input,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

WDM Streaming Rendering Devices:
HD Audio HDMI out,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
VIA HD Audio Output,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

BDA Network Providers:
Microsoft ATSC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBS Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBT Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft Network Provider,0x00200000,0,1,MSNP.ax,6.06.7601.17514

Multi-Instance Capable VBI Codecs:
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514

BDA Transport Information Renderers:
BDA MPEG2 Transport Information Filter,0x00600000,2,0,psisrndr.ax,6.06.7601.17669
MPEG-2 Sections and Tables,0x00600000,1,0,Mpeg2Data.ax,6.06.7601.17514

BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,1,EncDec.dll,6.06.7601.17708
Encrypt/Tag,0x00200000,0,0,EncDec.dll,6.06.7601.17708
PTFilter,0x00200000,0,0,EncDec.dll,6.06.7601.17708
XDS Codec,0x00200000,0,0,EncDec.dll,6.06.7601.17708

WDM Streaming Communication Transforms:
Tee/Sink-to-Sink-Konvertierung,0x00200000,1,1,ksproxy.ax,6.01.7601.17514

Audio Renderers:
Lautsprecher (VIA High Definiti,0x00200000,1,0,quartz.dll,6.06.7601.18526
Default DirectSound Device,0x00800000,1,0,quartz.dll,6.06.7601.18526
Default WaveOut Device,0x00200000,1,0,quartz.dll,6.06.7601.18526
DirectSound: HD Audio HDMI out (VIA High Definition Audio),0x00200000,1,0,quartz.dll,6.06.7601.18526
DirectSound: Lautsprecher (VIA High Definition Audio),0x00200000,1,0,quartz.dll,6.06.7601.18526
HD Audio HDMI out (VIA High Def,0x00200000,1,0,quartz.dll,6.06.7601.18526

---------------
EVR Power Information
---------------
Current Setting: {5C67A112-A4C9-483F-B4A7-1D473BECAFDC} (Quality) 
  Quality Flags: 2576
    Enabled:
    Force throttling
    Allow half deinterlace
    Allow scaling
    Decode Power Usage: 100
  Balanced Flags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 50
  PowerFlags: 1424
    Enabled:
    Force throttling
    Allow batching
    Force half deinterlace
    Force scaling
    Decode Power Usage: 0
         
Vielleicht kann mir jemand helfen, ich bedanke mich schon im Voraus!

Alt 29.01.2015, 20:37   #2
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Hi.


Bitte als Admin ausfuehren...

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 29.01.2015, 20:43   #3
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Grüß dich!

FRST:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-01-2015
Ran by pc (administrator) on PC-PC on 29-01-2015 21:40:12
Running from C:\Users\pc\Downloads
Loaded Profiles: pc (Available profiles: pc)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Gainward Co.) C:\Program Files (x86)\EXPERTool\TBPANEL.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(FileHippo.com) C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\spotify.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(GoPro) C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Dropbox, Inc.) C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2770432 2010-02-10] (VIA)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GAINWARD] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2181744 2010-10-22] (Gainward Co.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Pando Media Booster] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3046808 2011-02-07] ()
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Wisdom-soft AutoScreenRecorder 3.1 Pro] => 0
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [784904 2014-10-14] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344 2014-10-22] (Google Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-08-04] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-10-20] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify] => C:\Users\pc\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify Web Helper] => C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoPro Importer.lnk
ShortcutTarget: GoPro Importer.lnk -> C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe (GoPro)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\avast! Free Antivirus (2).lnk
ShortcutTarget: avast! Free Antivirus (2).lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-648632289-941596113-564908001-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
DPF: HKLM-x32 {140E4DF8-9E14-4A34-9577-C77561ED7883} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.72.0.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\ahit0ekq.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101714.dll No File
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-28]

Chrome: 
=======
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-01-20]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-04]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-20]
CHR Extension: (Google-Suche) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-20]
CHR Extension: (HTTPS Everywhere) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2013-01-20]
CHR Extension: (AdBlock) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-01-20]
CHR Extension: (Ghostery) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2013-01-20]
CHR Extension: (Google Wallet) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-04]
CHR Extension: (Google Mail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-20]
CHR HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-02] (AVAST Software)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-02] (Avast Software)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S4 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-11-15] ()
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [253776 2013-03-06] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-02] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-25] (AVM Berlin)
R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-25] (AVM GmbH)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-01] (HTC, Corporation) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 TBPanel; No ImagePath
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-02] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 RTL8192cu; system32\DRIVERS\rtwlanu.sys [X]
S3 rtlss; System32\Drivers\rtlss.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2051-01-27 18:38 - 2012-06-10 14:25 - 00000000 ____D () C:\Users\pc\AppData\Roaming\QuickScan
2051-01-27 18:33 - 2051-01-27 18:33 - 00809541 _____ () C:\Users\pc\AppData\Local\census.cache
2051-01-27 18:32 - 2051-01-27 18:32 - 00097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:24 - 2051-01-27 18:24 - 00000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2015-01-29 21:40 - 2015-01-29 21:40 - 00021238 _____ () C:\Users\pc\Downloads\FRST.txt
2015-01-29 21:38 - 2015-01-29 21:39 - 02130432 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2015-01-29 21:10 - 2015-01-29 21:10 - 256100365 _____ () C:\Users\pc\Downloads\Nicht bestätigt 188573.crdownload
2015-01-29 13:17 - 2015-01-29 16:08 - 00489918 _____ () C:\Users\pc\Desktop\AKTUELLECtrees20150129.xlsx
2015-01-29 13:14 - 2015-01-29 13:14 - 00480115 _____ () C:\Users\pc\Downloads\ECtrees20150129.xlsx
2015-01-27 14:07 - 2015-01-27 14:26 - 00493251 _____ () C:\Users\pc\Desktop\ECtrees20150126_bearbeitet_blaetter.xlsx
2015-01-27 12:54 - 2015-01-27 12:54 - 00487357 _____ () C:\Users\pc\Desktop\ECtrees20150126.xlsx
2015-01-26 20:58 - 2015-01-26 20:58 - 00000197 _____ () C:\Windows\system32\2015-01-26-19-58-12.097-AvastVBoxSVC.exe-3428.log
2015-01-26 13:08 - 2015-01-26 13:08 - 00000197 _____ () C:\Windows\system32\2015-01-26-12-08-05.044-AvastVBoxSVC.exe-3080.log
2015-01-26 11:09 - 2015-01-26 11:09 - 00000197 _____ () C:\Windows\system32\2015-01-26-10-09-15.027-AvastVBoxSVC.exe-3716.log
2015-01-25 15:20 - 2015-01-25 15:20 - 00000197 _____ () C:\Windows\system32\2015-01-25-14-20-45.089-AvastVBoxSVC.exe-4120.log
2015-01-25 11:26 - 2015-01-25 11:26 - 00000197 _____ () C:\Windows\system32\2015-01-25-10-26-02.084-AvastVBoxSVC.exe-5928.log
2015-01-24 22:24 - 2015-01-24 22:24 - 00000197 _____ () C:\Windows\system32\2015-01-24-21-24-40.077-AvastVBoxSVC.exe-3368.log
2015-01-22 18:10 - 2015-01-22 18:10 - 00000197 _____ () C:\Windows\system32\2015-01-22-17-10-21.047-AvastVBoxSVC.exe-3016.log
2015-01-21 21:05 - 2015-01-21 21:05 - 00000197 _____ () C:\Windows\system32\2015-01-21-20-05-34.073-AvastVBoxSVC.exe-2720.log
2015-01-21 18:42 - 2015-01-21 18:42 - 00000197 _____ () C:\Windows\system32\2015-01-21-17-42-31.095-AvastVBoxSVC.exe-5504.log
2015-01-21 11:02 - 2015-01-21 11:02 - 00000197 _____ () C:\Windows\system32\2015-01-21-10-02-47.015-AvastVBoxSVC.exe-4356.log
2015-01-20 20:13 - 2015-01-20 20:13 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123 (1).msi
2015-01-20 20:06 - 2015-01-20 20:07 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123.msi
2015-01-20 19:57 - 2015-01-20 19:57 - 00000197 _____ () C:\Windows\system32\2015-01-20-18-57-01.011-AvastVBoxSVC.exe-1644.log
2015-01-20 19:49 - 2015-01-20 19:49 - 00863476 _____ (IDG Magazine Media GmbH ) C:\Users\pc\Downloads\pcwFixWindowsUpdate.exe
2015-01-20 17:58 - 2015-01-20 17:59 - 00000197 _____ () C:\Windows\system32\2015-01-20-16-58-57.020-AvastVBoxSVC.exe-3880.log
2015-01-20 13:22 - 2015-01-20 13:22 - 00000197 _____ () C:\Windows\system32\2015-01-20-12-22-30.032-AvastVBoxSVC.exe-3656.log
2015-01-19 10:38 - 2015-01-19 10:38 - 00000197 _____ () C:\Windows\system32\2015-01-19-09-38-16.001-AvastVBoxSVC.exe-3840.log
2015-01-18 21:52 - 2015-01-18 21:52 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-52-07.005-AvastVBoxSVC.exe-3940.log
2015-01-18 18:03 - 2015-01-18 18:04 - 00000197 _____ () C:\Windows\system32\2015-01-18-17-03-54.088-AvastVBoxSVC.exe-5408.log
2015-01-18 11:40 - 2015-01-18 11:40 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-40-33.035-AvastVBoxSVC.exe-4308.log
2015-01-18 11:25 - 2015-01-18 11:25 - 00000000 ____D () C:\Windows\Sun
2015-01-18 11:23 - 2015-01-18 11:23 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-18 11:21 - 2015-01-18 11:21 - 00638888 _____ (Oracle Corporation) C:\Users\pc\Downloads\chromeinstall-8u25.exe
2015-01-18 11:17 - 2015-01-18 11:19 - 307606328 _____ (NVIDIA Corporation) C:\Users\pc\Downloads\347.09-desktop-win8-win7-winvista-64bit-international-whql (1).exe
2015-01-18 11:11 - 2015-01-18 11:12 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-11-58.005-AvastVBoxSVC.exe-4864.log
2015-01-17 20:47 - 2015-01-17 20:47 - 00000197 _____ () C:\Windows\system32\2015-01-17-19-47-01.070-AvastVBoxSVC.exe-2592.log
2015-01-17 15:05 - 2015-01-17 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-17-14-05-45.035-AvastVBoxSVC.exe-3448.log
2015-01-17 13:18 - 2015-01-17 13:18 - 00000197 _____ () C:\Windows\system32\2015-01-17-12-18-13.061-AvastVBoxSVC.exe-500.log
2015-01-17 11:17 - 2015-01-17 11:17 - 00000197 _____ () C:\Windows\system32\2015-01-17-10-17-25.011-AvastVBoxSVC.exe-5132.log
2015-01-16 19:06 - 2015-01-16 19:06 - 00000197 _____ () C:\Windows\system32\2015-01-16-18-06-44.035-AvastVBoxSVC.exe-5152.log
2015-01-16 10:10 - 2015-01-16 10:10 - 00000197 _____ () C:\Windows\system32\2015-01-16-09-10-32.006-AvastVBoxSVC.exe-3448.log
2015-01-15 17:28 - 2015-01-15 17:28 - 00000197 _____ () C:\Windows\system32\2015-01-15-16-28-16.079-AvastVBoxSVC.exe-5424.log
2015-01-15 10:25 - 2015-01-15 10:25 - 00000197 _____ () C:\Windows\system32\2015-01-15-09-25-13.069-AvastVBoxSVC.exe-4084.log
2015-01-14 13:53 - 2015-01-14 13:54 - 00000197 _____ () C:\Windows\system32\2015-01-14-12-53-38.078-AvastVBoxSVC.exe-3856.log
2015-01-14 10:18 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 10:18 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 10:18 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 10:18 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 10:18 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 10:18 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 10:18 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 10:18 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 10:05 - 2015-01-14 10:05 - 00000197 _____ () C:\Windows\system32\2015-01-14-09-05-41.074-AvastVBoxSVC.exe-3720.log
2015-01-13 18:09 - 2015-01-13 18:09 - 00000197 _____ () C:\Windows\system32\2015-01-13-17-09-39.054-AvastVBoxSVC.exe-5088.log
2015-01-13 15:09 - 2015-01-13 15:10 - 00000197 _____ () C:\Windows\system32\2015-01-13-14-09-48.037-AvastVBoxSVC.exe-5052.log
2015-01-13 10:49 - 2015-01-13 10:49 - 00000197 _____ () C:\Windows\system32\2015-01-13-09-49-33.076-AvastVBoxSVC.exe-5612.log
2015-01-12 22:43 - 2015-01-12 22:44 - 00000197 _____ () C:\Windows\system32\2015-01-12-21-43-53.085-AvastVBoxSVC.exe-5084.log
2015-01-12 16:51 - 2015-01-12 16:51 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-51-07.055-AvastVBoxSVC.exe-3612.log
2015-01-12 16:01 - 2015-01-12 16:01 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-01-15.091-AvastVBoxSVC.exe-3828.log
2015-01-12 12:06 - 2015-01-12 12:06 - 00000197 _____ () C:\Windows\system32\2015-01-12-11-06-06.081-AvastVBoxSVC.exe-3920.log
2015-01-11 17:34 - 2015-01-11 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-11-16-34-32.091-AvastVBoxSVC.exe-5092.log
2015-01-11 10:32 - 2015-01-11 10:32 - 00000197 _____ () C:\Windows\system32\2015-01-11-09-32-25.034-AvastVBoxSVC.exe-4144.log
2015-01-10 15:04 - 2015-01-10 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-10-14-04-50.060-AvastVBoxSVC.exe-3108.log
2015-01-10 09:41 - 2015-01-10 09:42 - 00000197 _____ () C:\Windows\system32\2015-01-10-08-41-27.032-AvastVBoxSVC.exe-3252.log
2015-01-09 14:04 - 2015-01-09 14:04 - 00000197 _____ () C:\Windows\system32\2015-01-09-13-04-00.070-AvastVBoxSVC.exe-3864.log
2015-01-09 10:08 - 2015-01-09 10:08 - 00000197 _____ () C:\Windows\system32\2015-01-09-09-08-40.086-AvastVBoxSVC.exe-5532.log
2015-01-08 17:34 - 2015-01-08 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-08-16-34-36.098-AvastVBoxSVC.exe-5968.log
2015-01-08 16:00 - 2015-01-08 16:00 - 00000197 _____ () C:\Windows\system32\2015-01-08-15-00-34.077-AvastVBoxSVC.exe-3712.log
2015-01-08 11:34 - 2015-01-08 11:35 - 00000197 _____ () C:\Windows\system32\2015-01-08-10-34-47.001-AvastVBoxSVC.exe-5620.log
2015-01-07 21:26 - 2015-01-08 18:47 - 00000000 ____D () C:\Users\pc\Documents\Bewerbungen
2015-01-07 20:32 - 2015-01-07 20:32 - 00000197 _____ () C:\Windows\system32\2015-01-07-19-32-21.099-AvastVBoxSVC.exe-3312.log
2015-01-06 13:56 - 2015-01-06 13:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-56-05.001-AvastVBoxSVC.exe-3500.log
2015-01-06 10:34 - 2015-01-06 10:34 - 00000197 _____ () C:\Windows\system32\2015-01-06-09-34-33.042-AvastVBoxSVC.exe-3300.log
2015-01-05 14:43 - 2015-01-05 14:43 - 00000197 _____ () C:\Windows\system32\2015-01-05-13-43-51.053-AvastVBoxSVC.exe-5748.log
2015-01-04 15:46 - 2015-01-04 15:46 - 00000197 _____ () C:\Windows\system32\2015-01-04-14-46-26.047-AvastVBoxSVC.exe-5472.log
2015-01-04 12:34 - 2015-01-04 12:34 - 00000197 _____ () C:\Windows\system32\2015-01-04-11-34-42.025-AvastVBoxSVC.exe-3868.log
2015-01-03 10:50 - 2015-01-03 10:50 - 00000197 _____ () C:\Windows\system32\2015-01-03-09-50-53.046-AvastVBoxSVC.exe-3652.log
2015-01-02 10:44 - 2015-01-02 10:45 - 00000197 _____ () C:\Windows\system32\2015-01-02-09-44-49.098-AvastVBoxSVC.exe-3236.log
2015-01-01 11:24 - 2015-01-01 11:25 - 00000197 _____ () C:\Windows\system32\2015-01-01-10-24-54.071-AvastVBoxSVC.exe-3872.log
2014-12-31 14:16 - 2014-12-31 14:17 - 00000197 _____ () C:\Windows\system32\2014-12-31-13-16-35.095-AvastVBoxSVC.exe-3860.log
2014-12-31 00:31 - 2014-12-31 00:31 - 00000197 _____ () C:\Windows\system32\2014-12-30-23-31-20.011-AvastVBoxSVC.exe-4312.log
2014-12-30 20:57 - 2014-12-30 20:57 - 00000197 _____ () C:\Windows\system32\2014-12-30-19-57-28.038-AvastVBoxSVC.exe-3556.log
2014-12-30 18:19 - 2014-12-30 18:19 - 00000197 _____ () C:\Windows\system32\2014-12-30-17-19-54.009-AvastVBoxSVC.exe-3880.log
2014-12-30 12:48 - 2014-12-30 12:48 - 00000000 ____D () C:\NVIDIA
2014-12-30 12:34 - 2014-12-30 12:47 - 307606328 _____ (NVIDIA Corporation) C:\Users\pc\Downloads\347.09-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-12-30 10:46 - 2014-12-30 10:46 - 00000197 _____ () C:\Windows\system32\2014-12-30-09-46-50.033-AvastVBoxSVC.exe-3672.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-29 21:41 - 2013-01-17 20:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-29 21:41 - 2011-02-07 23:44 - 00000000 ____D () C:\Users\pc\AppData\Local\PMB Files
2015-01-29 21:40 - 2013-10-24 08:11 - 00000000 ____D () C:\FRST
2015-01-29 21:29 - 2010-12-20 16:37 - 01771959 _____ () C:\Windows\WindowsUpdate.log
2015-01-29 20:47 - 2013-01-20 18:04 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-29 19:53 - 2014-12-28 19:33 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Spotify
2015-01-29 18:49 - 2013-01-20 18:15 - 00003542 _____ () C:\Windows\Sandboxie.ini
2015-01-29 18:47 - 2013-01-20 18:04 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-29 11:39 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-29 11:39 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-29 11:36 - 2012-11-07 18:28 - 00000000 ___RD () C:\Users\pc\Dropbox
2015-01-29 11:35 - 2012-11-07 18:21 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Dropbox
2015-01-29 11:34 - 2014-09-19 18:00 - 00000000 ___RD () C:\Users\pc\iCloudDrive
2015-01-29 11:34 - 2009-07-14 05:51 - 02168092 _____ () C:\Windows\setupact.log
2015-01-29 11:33 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-29 11:32 - 2010-12-20 18:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-27 22:21 - 2010-12-30 14:39 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Skype
2015-01-27 11:46 - 2013-11-12 23:24 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-26 20:58 - 2014-12-28 19:35 - 00000000 ____D () C:\Users\pc\AppData\Local\Spotify
2015-01-26 14:15 - 2013-12-04 23:47 - 00000000 ____D () C:\Users\pc\AppData\Roaming\vlc
2015-01-25 15:37 - 2014-03-07 11:01 - 00000000 ____D () C:\Users\pc\Documents\Masterarbeit
2015-01-24 23:41 - 2013-01-17 20:32 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-24 23:41 - 2013-01-17 20:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-24 23:41 - 2013-01-17 20:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-21 14:47 - 2013-10-21 13:13 - 00000000 ____D () C:\Users\pc\AppData\Local\Battle.net
2015-01-20 19:53 - 2011-01-01 14:29 - 01000124 _____ () C:\Windows\PFRO.log
2015-01-18 17:01 - 2009-07-14 18:58 - 00836678 _____ () C:\Windows\system32\perfh007.dat
2015-01-18 17:01 - 2009-07-14 18:58 - 00210186 _____ () C:\Windows\system32\perfc007.dat
2015-01-18 17:01 - 2009-07-14 06:13 - 00011936 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\ProgramData\TEMP
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\Program Files (x86)\Fraps
2015-01-14 13:03 - 2013-08-15 23:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 12:55 - 2012-08-11 12:41 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-14 11:03 - 2012-05-14 16:20 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-01-14 10:17 - 2013-10-26 20:24 - 00000000 ____D () C:\Windows\system32\catroot2.old
2015-01-10 15:16 - 2011-07-02 22:59 - 00000000 ____D () C:\Program Files\KeePass
2015-01-06 04:36 - 2010-12-30 14:39 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-05 13:44 - 2010-12-20 16:41 - 00000000 ____D () C:\Users\pc
2015-01-04 16:44 - 2011-06-29 20:10 - 00000000 ____D () C:\Users\pc\AppData\Local\Paint.NET
2014-12-30 21:01 - 2011-05-15 12:15 - 00000000 ____D () C:\Users\pc\AppData\Roaming\dvdcss

==================== Files in the root of some directories =======

2011-11-04 18:25 - 2012-06-05 21:36 - 0175104 _____ () C:\Users\pc\AppData\Roaming\locked-pc3SQLite3.dll.jgdl
2013-01-13 18:56 - 2013-01-13 20:44 - 0010960 ___SH () C:\Users\pc\AppData\Local\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
2051-01-27 18:32 - 2051-01-27 18:32 - 0097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:33 - 2051-01-27 18:33 - 0809541 _____ () C:\Users\pc\AppData\Local\census.cache
2012-04-22 17:46 - 2014-02-24 09:57 - 0009216 _____ () C:\Users\pc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-02-08 02:07 - 2011-02-08 02:07 - 0000090 _____ () C:\Users\pc\AppData\Local\fusioncache.dat
2051-01-27 18:24 - 2051-01-27 18:24 - 0000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2013-01-13 18:56 - 2013-01-13 20:44 - 0010960 ___SH () C:\ProgramData\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
2010-12-30 14:42 - 2010-12-30 14:42 - 0000056 _____ () C:\ProgramData\ezsidmv.dat

Some content of TEMP:
====================
C:\Users\pc\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7m7t2_.dll
C:\Users\pc\AppData\Local\Temp\Quarantine.exe
C:\Users\pc\AppData\Local\Temp\SandboxieInstall.exe
C:\Users\pc\AppData\Local\Temp\SkypeSetup.exe
C:\Users\pc\AppData\Local\Temp\vcredist_x64.exe
C:\Users\pc\AppData\Local\Temp\vlc-2.1.3-win32.exe
C:\Users\pc\AppData\Local\Temp\vlc-2.1.5-win32.exe
C:\Users\pc\AppData\Local\Temp\Wildstar.exe
C:\Users\pc\AppData\Local\Temp\WindowsUpdateAgent30-x64.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-25 12:32

==================== End Of Log ============================
         
--- --- ---


Addition:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-01-2015
Ran by pc at 2015-01-29 21:41:33
Running from C:\Users\pc\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version:  - AVM Berlin)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version:  - Infinity Ward)
Camtasia Studio 7 (HKLM-x32\...\{DE042823-C359-4B87-B66B-308057E8B6AF}) (Version: 7.0.1 - TechSmith Corporation)
CyberLink PowerDirector 11 (HKLM-x32\...\InstallShield_{551F492A-01B0-4DC4-866F-875EC4EDC0A8}) (Version: 11.0.0.4310 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Dropbox (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
EXPERTool 7.14 (HKLM-x32\...\MySSID_is1) (Version:  - Gainward Co., Ltd)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
File Repair (HKLM-x32\...\File Repair_is1) (Version:  - File Repair)
FileHippo.com Update Checker (HKLM-x32\...\FileHippo.com) (Version:  - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Video Flip and Rotate version 2.1.9.725 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.725 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.20.1230 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.20.1230 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.43.806 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.43.806 - DVDVideoSoft Ltd.)
GameMaker-Studio 1.2 (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\GameMaker-Studio12) (Version:  - YoYo Games Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GoPro Studio 2.5.4 (HKLM-x32\...\GoPro Studio) (Version: 2.5.4 - GoPro, Inc.)
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
L.A. Noire: The Complete Edition (HKLM-x32\...\Steam App 110800) (Version:  - Rockstar)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Max Payne 3 (HKLM-x32\...\Steam App 204100) (Version:  - Rockstar)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 22.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.5.2 - Pando Networks Inc.)
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Prezi Desktop (HKLM-x32\...\{7FAE73A4-F0BC-4B65-81CF-52C417383407}) (Version: 4.5.1 - Prezi.com)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Quantum GIS Lisboa 1.8.0 Lisboa (HKLM-x32\...\Quantum GIS Lisboa) (Version: 1.8.0-r${SVN_REVISION}-2 - QGIS Development Team)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
R for Windows 2.15.2 (HKLM\...\R for Windows 2.15.2_is1) (Version: 2.15.2 - R Core Team)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Secunia PSI (3.0.0.4001) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.4001 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab (HKLM-x32\...\{92482FB3-C05B-41C6-89E7-75D985602A6E}) (Version: 4.1.72.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight (HKLM-x32\...\Steam App 41500) (Version:  - Runic Games, Inc.)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - )
Tropico 3 - Steam Special Edition (HKLM-x32\...\Steam App 23490) (Version:  - Haemimont Games)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012  - GoPro)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

15-11-2014 11:33:54 DirectX wurde installiert
25-11-2014 16:11:40 Windows Update
25-11-2014 19:27:27 Windows Update
02-12-2014 17:50:28 Windows Update
02-12-2014 18:26:36 avast! antivirus system restore point
09-12-2014 11:29:08 Windows Update
10-12-2014 12:26:59 Windows Update
13-12-2014 00:53:23 Windows Update
16-12-2014 11:05:34 Windows Update
18-12-2014 13:13:12 Windows Update
24-12-2014 22:13:01 Windows Update
30-12-2014 10:51:23 Windows Update
06-01-2015 10:38:51 Windows Update
09-01-2015 15:59:41 Windows Update
14-01-2015 12:54:38 Windows Update
19-01-2015 15:46:28 Windows Update
20-01-2015 19:37:27 Windows Update
20-01-2015 19:39:26 Windows Update
20-01-2015 20:00:15 Windows Update
20-01-2015 20:02:57 Windows Update
20-01-2015 20:03:45 Windows Update
20-01-2015 20:07:20 Installed Microsoft Fix it 50123
20-01-2015 20:10:07 Windows Update
20-01-2015 20:13:58 Installed Microsoft Fix it 50123
20-01-2015 20:16:02 Windows Update
20-01-2015 20:35:33 Windows Update
24-01-2015 22:33:27 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2013-10-24 12:25 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {011436A8-8FF0-4ACB-9FB7-E481C450FF19} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-24] (Adobe Systems Incorporated)
Task: {089F7558-76BA-417C-BF3E-6D49D624CA4A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0CF012FF-7E49-4E57-85A7-FA5FA807A34D} - System32\Tasks\{0791B258-94E1-4387-8AE6-CFD9DE0B379B} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {138BBC82-8FA6-412F-B7E2-1F42157A44B7} - System32\Tasks\{4322F264-6326-48F0-9E35-439E30A91324} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {191F9D3D-88FD-4714-9F07-15C997720901} - System32\Tasks\{CA856E06-A8E5-4980-9E39-71CE9C3C1729} => pcalua.exe -a "C:\Program Files (x86)\Games\WoW Beta\World of Warcraft Beta\World of Warcraft Beta Launcher.exe" -d "C:\Program Files (x86)\Games\WoW Beta\World of Warcraft Beta\"
Task: {1CA98BA9-7F17-46DD-827A-3BA15558DC43} - System32\Tasks\{F735B022-7B0C-4AC9-B996-F195FD0694B5} => Chrome.exe hxxp://ui.skype.com/ui/0/6.9.0.106/de/abandoninstall?page=tsProgressBar
Task: {34CB8BAB-2C53-4F03-8521-20454AE725FE} - System32\Tasks\{97567952-9BBF-415A-BB32-9986B790436B} => pcalua.exe -a "C:\Users\pc\Downloads\World of Warcraft Beta Setup.exe" -d C:\Users\pc\Downloads
Task: {4855E15C-5BEC-406E-A5CA-59AD9857F27D} - System32\Tasks\{5EB82005-0DA8-4CFA-84D9-918A8811184D} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {5A49C344-1339-4237-815B-A474FEE06ED6} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
Task: {60DCD8A7-4A19-460D-B344-F73AC1487583} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
Task: {726E4403-3EF5-4A53-A57E-472AF4F57065} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20] (Google Inc.)
Task: {7808C3E0-CEBC-4D40-A7DB-74EBC9665971} - System32\Tasks\{FEF7769C-0D4E-4A2D-89F6-C22129A04338} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {93804795-B8BB-490F-8705-66A7EB8C6AAF} - System32\Tasks\{A9DD6843-FDDB-4773-96F4-B1EA314F950C} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.)
Task: {A990D147-2699-42C9-9102-5014ABBB33B5} - System32\Tasks\{20C01417-9AAB-4FA3-B722-F0CC174AA673} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {B1411A5D-1E7B-484B-A557-95759E78A107} - System32\Tasks\{C75F808C-C8C5-4E08-8CB2-B5C93CCDA135} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar
Task: {B44074BA-5EAC-4298-BF21-E3C242EF25EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20] (Google Inc.)
Task: {C4E95228-45CE-41D0-8A1C-ACE4E6E3FBF4} - System32\Tasks\{2F30BD95-1E18-4B2D-A21B-C642AB34DA81} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {C78350E8-E605-40D2-8BDD-4412E89F9EF8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-02] (AVAST Software)
Task: {E8891B14-3275-41C8-9B68-0897A7BB0064} - System32\Tasks\{5C37157B-69CF-4AAC-8735-E5649D39E62D} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {FEDB6671-DA14-44EB-A992-1AD87F4C6BCB} - System32\Tasks\{1CFC3E6C-E7A0-4C66-A19A-69EC5DD66DB5} => pcalua.exe -a D:\setup.exe -d D:\
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-11-18 16:07 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-13 14:50 - 2014-11-15 11:36 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-08-09 21:25 - 2013-03-06 13:42 - 00253776 ____N () C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
2011-02-07 23:44 - 2011-02-07 23:44 - 03046808 _____ () C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
2010-12-20 17:10 - 2009-05-07 09:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2010-12-20 17:10 - 2009-05-07 09:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2010-12-20 17:10 - 2008-01-18 07:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2010-12-20 17:10 - 2009-11-03 04:12 - 47601664 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00374840 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2015-01-28 11:00 - 2015-01-28 11:00 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012800\algo.dll
2015-01-29 19:46 - 2015-01-29 19:46 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012901\algo.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-12-20 18:17 - 1998-10-31 10:55 - 00005120 _____ () C:\Program Files (x86)\EXPERTool\TBManage.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 36966968 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libcef.dll
2014-12-16 23:37 - 2014-12-16 23:37 - 01800192 _____ () C:\Program Files (x86)\GoPro\Tools\Importer\GPSDKAnalyticsNet.dll
2014-12-02 18:29 - 2014-12-02 18:30 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00750080 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-01-29 11:35 - 2015-01-29 11:35 - 00043008 _____ () c:\users\pc\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7m7t2_.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00047616 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\libEGL.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00863744 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00200704 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00867896 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00886840 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00108600 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libegl.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:054203E4
AlternateDataStreams: C:\ProgramData\TEMP:05EE1EEF
AlternateDataStreams: C:\Users\pc\Desktop\Bescheinigungen und Zeugnisse.pdf:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-648632289-941596113-564908001-500 - Administrator - Disabled)
ASPNET (S-1-5-21-648632289-941596113-564908001-1002 - Limited - Enabled)
Gast (S-1-5-21-648632289-941596113-564908001-501 - Limited - Disabled)
pc (S-1-5-21-648632289-941596113-564908001-1000 - Administrator - Enabled) => C:\Users\pc

==================== Faulty Device Manager Devices =============

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/29/2015 00:06:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Fehler bei der automatischen Aktualisierung des Drittanbieterstammzertifikats von <hxxp://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/F18B538D1BE903B6A6F056435B171589CAF36BF2.crt>. Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.

Error: (01/29/2015 11:37:57 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/28/2015 06:15:12 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/28/2015 11:05:50 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/27/2015 11:49:00 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/26/2015 09:01:10 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/26/2015 01:09:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/26/2015 11:11:10 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/25/2015 03:22:22 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/25/2015 11:27:42 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127


System errors:
=============
Error: (01/29/2015 11:39:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (01/29/2015 11:36:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/28/2015 06:11:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/28/2015 11:01:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/27/2015 11:49:58 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (01/27/2015 11:47:28 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/26/2015 09:00:43 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (01/26/2015 08:58:12 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/26/2015 01:54:04 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (01/26/2015 01:10:05 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.


Microsoft Office Sessions:
=========================
Error: (01/22/2014 07:29:16 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 1186 seconds with 1080 seconds of active time.  This session ended with a crash.

Error: (06/05/2012 09:32:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 191818 seconds with 14520 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-09-11 20:50:27.135
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-09-11 20:50:26.915
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-09-11 20:50:21.749
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-09-11 20:50:21.546
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-24 13:22:44.786
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-24 13:22:44.644
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:58:22.277
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:58:22.093
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:57:40.192
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:57:39.930
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 79%
Total physical RAM: 4055.05 MB
Available physical RAM: 846.93 MB
Total Pagefile: 8108.29 MB
Available Pagefile: 3198.71 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:86.73 GB) NTFS
Drive e: (INTENSO) (Fixed) (Total:1629.74 GB) (Free:1396.78 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C49F2E73)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 1630.1 GB) (Disk ID: 46F5428B)
Partition 1: (Not Active) - (Size=1630.1 GB) - (Type=0C)

==================== End Of Log ============================
         
__________________

Alt 29.01.2015, 20:49   #4
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Bitte ausfuehren...

Bitte lade dir GMER Rootkit Scanner GMER herunter: (Dateiname zufällig)
  • Schließe alle anderen Programme, deaktiviere deinen Virenscanner und trenne den Rechner vom Internet bevor du GMER startest.
  • Sollte sich nach dem Start ein Fenster mit folgender Warnung öffnen:
    WARNING !!!
    GMER has found system modification, which might have been caused by ROOTKIT activity.
    Do you want to fully scan your system ?
    Unbedingt auf "No" klicken.
  • Entferne rechts den Haken bei: IAT/EAT und Show All
  • Setze den Haken bei Quickscan und entferne ihn bei allen anderen Laufwerken.
  • Starte den Scan mit "Scan".
  • Mache nichts am Computer während der Scan läuft.
  • Wenn der Scan fertig ist klicke auf Save und speichere die Logfile unter Gmer.txt auf deinem Desktop. Mit "Ok" wird GMER beendet.
Antiviren-Programm und sonstige Scanner wieder einschalten, bevor Du ins Netz gehst!


Tauchen Probleme auf?
  • Probiere alternativ den abgesicherten Modus.
  • Erhältst du einen Bluescreen, dann entferne den Haken vor Devices.
__________________
Gruß Aneri
Mitglied von UNITE

Lob oder Kritik? hier wirst du es los

Alt 29.01.2015, 21:12   #5
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-01-29 22:10:38
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-4 ST1000DM003-9YN162 rev.CC4B 931,51GB
Running: Gmer-19357.exe; Driver: C:\Users\pc\AppData\Local\Temp\pxldapoc.sys


---- Kernel code sections - GMER 2.1 ----

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 448                                                                            fffff800037a3000 45 bytes [00, 00, 1E, 02, 4D, 6D, 43, ...]
INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 495                                                                            fffff800037a302f 16 bytes [00, 14, 00, 00, 00, 00, 00, ...]

---- User code sections - GMER 2.1 ----

.text     C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!recv + 82                                                              0000000074cc17fa 2 bytes CALL 76de11a9 C:\Windows\syswow64\kernel32.dll
.text     C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!recvfrom + 88                                                          0000000074cc1860 2 bytes CALL 76de11a9 C:\Windows\syswow64\kernel32.dll
.text     C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 98                                                        0000000074cc1942 2 bytes JMP 75d27089 C:\Windows\syswow64\WS2_32.dll
.text     C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 109                                                       0000000074cc194d 2 bytes JMP 75d2cba6 C:\Windows\syswow64\WS2_32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                     0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                       0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                     0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                     000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text     ...                                                                                                                                           * 9
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                        00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                 00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                        000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                 0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                       000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                            0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                     000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                       0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                          000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                       00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                     00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                 00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                 00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe[3832] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter                0000000076de8791 5 bytes [33, C0, C2, 04, 00]
.text     C:\Program Files\AVAST Software\Avast\AvastUI.exe[3776] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter                          0000000076de8791 8 bytes [31, C0, C2, 04, 00, 90, 90, ...]
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleFileNameExW + 17                             0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!EnumProcessModules + 17                               0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 17                             0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 42                             000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text     ...                                                                                                                                           * 9
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!EnumDeviceDrivers + 17                                00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetDeviceDriverBaseNameA + 17                         00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!QueryWorkingSetEx + 17                                000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetDeviceDriverBaseNameW + 17                         0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleBaseNameW + 17                               000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!EnumProcesses + 17                                    0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetProcessMemoryInfo + 17                             000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetPerformanceInfo + 17                               0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!QueryWorkingSet + 17                                  000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleBaseNameA + 17                               00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleFileNameExA + 17                             00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetProcessImageFileNameW + 20                         00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text     C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetProcessImageFileNameW + 31                         00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                      0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                        0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                      0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                      000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text     ...                                                                                                                                           * 9
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                         00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                  00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                         000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                  0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                        000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                             0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                      000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                        0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                           000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                        00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                      00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                  00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                  00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17      0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17        0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17      0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42      000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text     ...                                                                                                                                           * 9
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17         00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17  00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17         000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17  0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17        000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17             0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17      000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17        0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17           000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17        00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17      00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20  00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text     C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31  00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll

---- Threads - GMER 2.1 ----

Thread    C:\Windows\System32\svchost.exe [3756:4592]                                                                                                   000007feebb89688

---- EOF - GMER 2.1 ----
         


Alt 30.01.2015, 06:28   #6
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Moin. Ich hab im buero keinen zugriff auf die logfiles.... schau sie mir am nachmittag an
__________________
--> Windows Updates und Grafikkartentreiber Update nicht möglich

Alt 30.01.2015, 09:57   #7
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Alles klar, kein Problem

Alt 30.01.2015, 13:06   #8
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Hi, so jetzt gehts los...

Schritt 1:

Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.



Schritt 2:

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).


Schritt 3:

erstelle ein neues FRST Logfile und poste es hier
__________________
Gruß Aneri
Mitglied von UNITE

Lob oder Kritik? hier wirst du es los

Alt 30.01.2015, 14:11   #9
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



So, ich hab jetzt alle drei Dateien:


Code:
ATTFilter
ComboFix 15-01-29.01 - pc 30.01.2015  14:33:04.3.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4055.1553 [GMT 1:00]
ausgeführt von:: c:\users\pc\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-12-28 bis 2015-01-30  ))))))))))))))))))))))))))))))
.
.
2051-01-27 17:38 . 2012-06-10 13:25	--------	d-----w-	c:\users\pc\AppData\Roaming\QuickScan
2015-01-30 13:48 . 2015-01-30 13:48	--------	d-----w-	c:\users\Public\AppData\Local\temp
2015-01-30 13:48 . 2015-01-30 13:48	--------	d-----w-	c:\users\hedev\AppData\Local\temp
2015-01-30 13:48 . 2015-01-30 13:48	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-01-30 13:39 . 2015-01-30 13:39	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{806B534D-E831-4244-BFCA-2C0068CFD856}\offreg.dll
2015-01-30 10:02 . 2014-12-02 10:26	11870360	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{806B534D-E831-4244-BFCA-2C0068CFD856}\mpengine.dll
2015-01-20 19:38 . 2015-01-20 19:41	--------	d-----w-	c:\windows\system32\catroot2
2015-01-18 10:25 . 2015-01-18 10:25	--------	d-----w-	c:\windows\Sun
2015-01-18 10:23 . 2015-01-18 10:23	--------	d-----w-	c:\program files (x86)\Common Files\Java
2015-01-18 10:23 . 2015-01-18 10:23	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-01-18 10:22 . 2015-01-18 10:22	--------	d-----w-	c:\programdata\Oracle
2015-01-18 10:22 . 2015-01-18 10:22	--------	d-----w-	c:\program files (x86)\Java
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-01-24 22:41 . 2013-01-17 19:32	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-01-24 22:41 . 2013-01-17 19:32	701616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-01-14 11:55 . 2012-08-11 11:41	113365784	----a-w-	c:\windows\system32\MRT.exe
2015-01-06 03:36 . 2010-12-30 13:39	298120	------w-	c:\windows\system32\MpSigStub.exe
2014-12-19 11:09 . 2011-05-13 17:44	281688	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2014-12-19 11:09 . 2011-05-13 13:50	281688	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2014-12-16 23:45 . 2014-11-05 00:18	1462272	----a-w-	c:\windows\system32\CFHD.dll
2014-12-16 23:42 . 2014-11-05 00:15	1490944	----a-w-	c:\windows\SysWow64\CFHD.dll
2014-12-13 05:09 . 2014-12-18 11:59	144384	----a-w-	c:\windows\system32\ieUnatt.exe
2014-12-13 03:33 . 2014-12-18 11:59	115712	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2014-12-06 17:07 . 2011-05-13 13:50	281688	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2014-12-04 02:50 . 2014-12-10 10:52	413184	----a-w-	c:\windows\system32\generaltel.dll
2014-12-04 02:50 . 2014-12-10 10:52	741376	----a-w-	c:\windows\system32\invagent.dll
2014-12-04 02:50 . 2014-12-10 10:52	396800	----a-w-	c:\windows\system32\devinv.dll
2014-12-04 02:50 . 2014-12-10 10:52	830976	----a-w-	c:\windows\system32\appraiser.dll
2014-12-04 02:50 . 2014-12-10 10:52	192000	----a-w-	c:\windows\system32\aepic.dll
2014-12-04 02:50 . 2014-12-10 10:52	227328	----a-w-	c:\windows\system32\aepdu.dll
2014-12-04 02:44 . 2014-12-10 10:52	1083392	----a-w-	c:\windows\system32\aeinv.dll
2014-12-02 17:30 . 2013-10-28 18:07	1050432	----a-w-	c:\windows\system32\drivers\aswsnx.sys
2014-12-02 17:30 . 2014-12-02 17:30	364512	----a-w-	c:\windows\system32\aswBoot.exe
2014-12-02 17:30 . 2014-05-28 21:38	29208	----a-w-	c:\windows\system32\drivers\aswHwid.sys
2014-12-02 17:30 . 2014-02-13 13:13	116728	----a-w-	c:\windows\system32\drivers\aswstm.sys
2014-12-02 17:30 . 2013-10-28 18:07	65776	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2014-12-02 17:30 . 2013-10-28 18:07	267632	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2014-12-02 17:30 . 2013-10-28 18:07	83280	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2014-12-02 17:30 . 2013-10-28 18:07	436624	----a-w-	c:\windows\system32\drivers\aswsp.sys
2014-12-02 17:30 . 2013-10-28 18:07	93568	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2014-12-02 17:30 . 2014-12-02 17:30	43152	----a-w-	c:\windows\avastSS.scr
2014-12-01 23:28 . 2014-12-10 10:52	1232040	----a-w-	c:\windows\system32\aitstatic.exe
2014-11-27 01:43 . 2014-12-10 10:52	389296	----a-w-	c:\windows\system32\iedkcs32.dll
2014-11-22 03:13 . 2014-12-10 10:52	25059840	----a-w-	c:\windows\system32\mshtml.dll
2014-11-22 03:06 . 2014-12-10 10:52	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2014-11-22 03:06 . 2014-12-10 10:52	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2014-11-22 02:50 . 2014-12-10 10:52	66560	----a-w-	c:\windows\system32\iesetup.dll
2014-11-22 02:50 . 2014-12-10 10:52	580096	----a-w-	c:\windows\system32\vbscript.dll
2014-11-22 02:49 . 2014-12-10 10:52	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2014-11-22 02:49 . 2014-12-10 10:52	2885120	----a-w-	c:\windows\system32\iertutil.dll
2014-11-22 02:48 . 2014-12-10 10:52	88064	----a-w-	c:\windows\system32\MshtmlDac.dll
2014-11-22 02:41 . 2014-12-10 10:52	54784	----a-w-	c:\windows\system32\jsproxy.dll
2014-11-22 02:40 . 2014-12-10 10:52	34304	----a-w-	c:\windows\system32\iernonce.dll
2014-11-22 02:37 . 2014-12-10 10:52	633856	----a-w-	c:\windows\system32\ieui.dll
2014-11-22 02:35 . 2014-12-10 10:52	114688	----a-w-	c:\windows\system32\ieetwcollector.exe
2014-11-22 02:34 . 2014-12-10 10:52	814080	----a-w-	c:\windows\system32\jscript9diag.dll
2014-11-22 02:34 . 2014-12-10 10:52	6039552	----a-w-	c:\windows\system32\jscript9.dll
2014-11-22 02:26 . 2014-12-10 10:52	968704	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2014-11-22 02:22 . 2014-12-10 10:52	490496	----a-w-	c:\windows\system32\dxtmsft.dll
2014-11-22 02:20 . 2014-12-10 10:52	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2014-11-22 02:14 . 2014-12-10 10:52	77824	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2014-11-22 02:09 . 2014-12-10 10:52	199680	----a-w-	c:\windows\system32\msrating.dll
2014-11-22 02:08 . 2014-12-10 10:52	92160	----a-w-	c:\windows\system32\mshtmled.dll
2014-11-22 02:07 . 2014-12-10 10:52	501248	----a-w-	c:\windows\SysWow64\vbscript.dll
2014-11-22 02:07 . 2014-12-10 10:52	62464	----a-w-	c:\windows\SysWow64\iesetup.dll
2014-11-22 02:06 . 2014-12-10 10:52	47616	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2014-11-22 02:05 . 2014-12-10 10:52	64000	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2014-11-22 02:05 . 2014-12-10 10:52	316928	----a-w-	c:\windows\system32\dxtrans.dll
2014-11-22 01:54 . 2014-12-10 10:52	620032	----a-w-	c:\windows\SysWow64\jscript9diag.dll
2014-11-22 01:49 . 2014-12-10 10:52	718848	----a-w-	c:\windows\system32\ie4uinit.exe
2014-11-22 01:49 . 2014-12-10 10:52	800768	----a-w-	c:\windows\system32\msfeeds.dll
2014-11-22 01:47 . 2014-12-10 10:52	1359360	----a-w-	c:\windows\system32\mshtmlmedia.dll
2014-11-22 01:46 . 2014-12-10 10:52	2125312	----a-w-	c:\windows\system32\inetcpl.cpl
2014-11-22 01:43 . 2014-12-10 10:52	14412800	----a-w-	c:\windows\system32\ieframe.dll
2014-11-22 01:40 . 2014-12-10 10:52	60416	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2014-11-22 01:29 . 2014-12-10 10:52	4299264	----a-w-	c:\windows\SysWow64\jscript9.dll
2014-11-22 01:28 . 2014-12-10 10:52	2358272	----a-w-	c:\windows\system32\wininet.dll
2014-11-22 01:22 . 2014-12-10 10:52	2052096	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2014-11-22 01:21 . 2014-12-10 10:52	1155072	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2014-11-22 01:15 . 2014-12-10 10:52	1548288	----a-w-	c:\windows\system32\urlmon.dll
2014-11-22 01:03 . 2014-12-10 10:52	800768	----a-w-	c:\windows\system32\ieapfltr.dll
2014-11-22 01:00 . 2014-12-10 10:52	1888256	----a-w-	c:\windows\SysWow64\wininet.dll
2014-11-18 13:56 . 2014-11-18 13:56	1202848	----a-w-	c:\windows\SysWow64\FM20.DLL
2014-11-15 10:36 . 2011-05-13 13:50	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2014-11-11 03:09 . 2014-12-10 10:52	1424384	----a-w-	c:\windows\system32\WindowsCodecs.dll
2014-11-11 03:08 . 2014-11-25 15:11	241152	----a-w-	c:\windows\system32\pku2u.dll
2014-11-11 03:08 . 2014-11-25 15:11	728064	----a-w-	c:\windows\system32\kerberos.dll
2014-11-11 02:44 . 2014-12-10 10:52	1230336	----a-w-	c:\windows\SysWow64\WindowsCodecs.dll
2014-11-11 02:44 . 2014-11-25 15:11	186880	----a-w-	c:\windows\SysWow64\pku2u.dll
2014-11-11 02:44 . 2014-11-25 15:11	550912	----a-w-	c:\windows\SysWow64\kerberos.dll
2014-11-11 01:46 . 2014-12-10 10:52	119296	----a-w-	c:\windows\system32\drivers\tdx.sys
2014-11-08 03:16 . 2014-12-10 10:51	2048	----a-w-	c:\windows\system32\tzres.dll
2014-11-08 02:45 . 2014-12-10 10:51	2048	----a-w-	c:\windows\SysWow64\tzres.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2014-06-24 22:04	131480	----a-w-	c:\users\pc\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Wisdom-soft AutoScreenRecorder 3.1 Pro"="0" [X]
"GAINWARD"="c:\program files (x86)\EXPERTool\TBPanel.exe" [2010-10-22 2181744]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-02-07 3046808]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2014-10-14 784904]
"FileHippo.com"="c:\program files (x86)\FileHippo.com\UpdateChecker.exe" [2012-11-23 307712]
"GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2014-10-22 854344]
"AppleIEDAV"="c:\program files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe" [2014-08-04 1080104]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2014-10-17 43816]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2014-10-17 43816]
"iCloudDrive"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe" [2014-10-20 43816]
"Spotify"="c:\users\pc\AppData\Roaming\Spotify\Spotify.exe" [2014-12-28 6737976]
"Spotify Web Helper"="c:\users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2014-12-28 1676344]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2010-02-10 2770432]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-10-11 60712]
"AVMWlanClient"="c:\program files (x86)\avmwlanstick\wlangui.exe" [2010-10-22 2105344]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-12-21 959904]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-01-27 5227112]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2014-10-15 157480]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2014-10-02 421888]
.
c:\users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
avast! Free Antivirus (2).lnk - c:\program files\AVAST Software\Avast\AvastUI.exe [2015-1-27 5227112]
Dropbox.lnk - c:\users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-12-9 39207112]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
GoPro Importer.lnk - c:\program files (x86)\GoPro\Tools\Importer\GoPro Importer.exe [2014-12-16 3169792]
Secunia PSI Tray.lnk - c:\program files (x86)\Secunia\PSI\psi_tray.exe [2012-9-24 573536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer9"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
R3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
R3 avmeject;AVM Eject;c:\windows\system32\drivers\avmeject.sys;c:\windows\SYSNATIVE\drivers\avmeject.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 OXSDIDRV_x64;Oxford Semi eSATA Filter (x64);c:\windows\system32\DRIVERS\OXSDIDRV_x64.sys;c:\windows\SYSNATIVE\DRIVERS\OXSDIDRV_x64.sys [x]
R3 OXUDIDRV;OXUDIDRV;c:\windows\system32\Drivers\OXUDIDRV_X64.sys;c:\windows\SYSNATIVE\Drivers\OXUDIDRV_X64.sys [x]
R3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\PFC027.SYS;c:\windows\SYSNATIVE\DRIVERS\PFC027.SYS [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8192cu;PEARL PX-8266 300Mbps 11n Wireless USB Network Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlanu.sys [x]
R3 rtlss;Service for enabling selective suspend to RTL device;c:\windows\system32\Drivers\rtlss.sys;c:\windows\SYSNATIVE\Drivers\rtlss.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe;c:\program files (x86)\Secunia\PSI\PSIA.exe [x]
S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe;c:\program files (x86)\Secunia\PSI\sua.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 fwlanusbn;FRITZ!WLAN N;c:\windows\system32\DRIVERS\fwlanusbn.sys;c:\windows\SYSNATIVE\DRIVERS\fwlanusbn.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys;c:\windows\SYSNATIVE\DRIVERS\psi_mf.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-27 19:47	1089352	----a-w-	c:\program files (x86)\Google\Chrome\Application\38.0.2125.111\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2015-01-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-17 22:41]
.
2015-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20 17:04]
.
2015-01-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20 17:04]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-12-02 17:30	860984	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Monitor"="c:\windows\PixArt\PAC207\Monitor.exe" [2006-11-03 319488]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-15 499608]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-03-20 1797064]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = 
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\ahit0ekq.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-Uninstall_is1 - c:\program files (x86)\Common Files\DVDVideoSoft\unins000.exe
AddRemove-TeamSpeak 3 Client - c:\program files (x86)\Neuer Ordner\uninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-648632289-941596113-564908001-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:29,69,8e,83,ea,98,b2,3e,af,7c,ca,5a,ec,2d,01,b9,d5,86,72,69,77,32,bd,
   a1,d5,e8,da,25,66,c9,19,f3,e4,b9,d8,15,e2,94,55,53,84,88,35,90,49,5d,e1,08,\
"??"=hex:a1,5e,47,db,25,65,bb,27,8b,92,55,34,10,3f,d9,49
.
[HKEY_USERS\S-1-5-21-648632289-941596113-564908001-1000\Software\SecuROM\License information*]
@Allowed: (Read) (RestrictedCode)
"datasecu"=hex:4f,e1,a6,82,4f,f6,ca,fb,7d,45,19,17,79,30,e5,48,6d,7f,8c,43,ff,
   55,af,19,ed,56,8f,8b,ee,88,ef,6d,73,27,06,69,b2,72,b2,05,6d,e1,73,cf,60,3e,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_296_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_296_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_296_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_296_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_296.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.16"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_296.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_296.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_296.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Zeit der Fertigstellung: 2015-01-30  14:52:37
ComboFix-quarantined-files.txt  2015-01-30 13:52
ComboFix2.txt  2013-10-24 11:36
.
Vor Suchlauf: 20 Verzeichnis(se), 139.410.026.496 Bytes frei
Nach Suchlauf: 21 Verzeichnis(se), 140.032.749.568 Bytes frei
.
- - End Of File - - 68E8558BF63713F1B86DAC915CDCE649
A36C5E4F47E84449FF07ED3517B43A31
         


Code:
ATTFilter
# AdwCleaner v4.109 - Bericht erstellt am 30/01/2015 um 14:58:29
# Aktualisiert 24/01/2015 von Xplode
# Database : 2015-01-26.1 [Live]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : pc - PC-PC
# Gestartet von : C:\Users\pc\Downloads\AdwCleaner_4.109.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\NCH Software
Ordner Gelöscht : C:\Program Files (x86)\NCH Software
Ordner Gelöscht : C:\Users\pc\AppData\Roaming\NCH Software
Datei Gelöscht : C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.lyricsmode.com_0.localstorage
Datei Gelöscht : C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.lyricsmode.com_0.localstorage-journal
Datei Gelöscht : C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_static.olark.com_0.localstorage-journal

***** [ Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.de

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Mozilla Firefox v31.0 (x86 de)


-\\ Google Chrome v38.0.2125.111

[C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.qipu.de/stoebern/{searchTerms}/shop/relevance/
[C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.softonic.de/s/{searchTerms}

-\\ Chromium v

[C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.qipu.de/stoebern/{searchTerms}/shop/relevance/
[C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://www.softonic.de/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [1724 octets] - [25/10/2013 11:12:38]
AdwCleaner[R1].txt - [1784 octets] - [25/10/2013 11:22:18]
AdwCleaner[R2].txt - [2248 octets] - [30/01/2015 14:55:48]
AdwCleaner[S0].txt - [1785 octets] - [25/10/2013 11:23:03]
AdwCleaner[S1].txt - [2371 octets] - [30/01/2015 14:58:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2431 octets] ##########
         



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-01-2015
Ran by pc (administrator) on PC-PC on 30-01-2015 15:04:44
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available profiles: pc)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Gainward Co.) C:\Program Files (x86)\EXPERTool\TBPANEL.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(FileHippo.com) C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\spotify.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(GoPro) C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dropbox, Inc.) C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2770432 2010-02-10] (VIA)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GAINWARD] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2181744 2010-10-22] (Gainward Co.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Pando Media Booster] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3046808 2011-02-07] ()
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Wisdom-soft AutoScreenRecorder 3.1 Pro] => 0
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [784904 2014-10-14] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344 2014-10-22] (Google Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-08-04] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-10-20] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify] => C:\Users\pc\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify Web Helper] => C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoPro Importer.lnk
ShortcutTarget: GoPro Importer.lnk -> C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe (GoPro)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\avast! Free Antivirus (2).lnk
ShortcutTarget: avast! Free Antivirus (2).lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-648632289-941596113-564908001-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
DPF: HKLM-x32 {140E4DF8-9E14-4A34-9577-C77561ED7883} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.72.0.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\ahit0ekq.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101714.dll No File
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-28]

Chrome: 
=======
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-01-20]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-04]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-20]
CHR Extension: (Google-Suche) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-20]
CHR Extension: (HTTPS Everywhere) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2013-01-20]
CHR Extension: (AdBlock) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-01-20]
CHR Extension: (Ghostery) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2013-01-20]
CHR Extension: (Google Wallet) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-04]
CHR Extension: (Google Mail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-02] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-02] (Avast Software)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S4 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-11-15] ()
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [253776 2013-03-06] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-02] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-25] (AVM Berlin)
R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-25] (AVM GmbH)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-01] (HTC, Corporation) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 TBPanel; No ImagePath
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-02] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 RTL8192cu; system32\DRIVERS\rtwlanu.sys [X]
S3 rtlss; System32\Drivers\rtlss.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2051-01-27 18:38 - 2012-06-10 14:25 - 00000000 ____D () C:\Users\pc\AppData\Roaming\QuickScan
2051-01-27 18:33 - 2051-01-27 18:33 - 00809541 _____ () C:\Users\pc\AppData\Local\census.cache
2051-01-27 18:32 - 2051-01-27 18:32 - 00097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:24 - 2051-01-27 18:24 - 00000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2015-01-30 15:04 - 2015-01-30 15:07 - 00020955 _____ () C:\Users\pc\Desktop\FRST.txt
2015-01-30 15:04 - 2015-01-30 15:04 - 00000197 _____ () C:\Windows\system32\2015-01-30-14-04-03.072-AvastVBoxSVC.exe-2692.log
2015-01-30 15:03 - 2015-01-30 15:03 - 02130432 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2015-01-30 15:00 - 2015-01-30 15:00 - 00002511 _____ () C:\Users\pc\Desktop\AdwCleaner[S1].txt
2015-01-30 14:54 - 2015-01-30 14:54 - 02194432 _____ () C:\Users\pc\Downloads\AdwCleaner_4.109.exe
2015-01-30 14:52 - 2015-01-30 14:52 - 00027043 _____ () C:\ComboFix.txt
2015-01-30 14:29 - 2015-01-30 14:30 - 05611408 ____R (Swearware) C:\Users\pc\Desktop\ComboFix.exe
2015-01-29 22:10 - 2015-01-29 22:10 - 00018200 _____ () C:\Users\pc\Desktop\Gmer.log
2015-01-29 21:54 - 2015-01-29 21:54 - 00380416 _____ () C:\Users\pc\Downloads\u06ihi7j.exe
2015-01-29 21:54 - 2015-01-29 21:54 - 00380416 _____ () C:\Users\pc\Downloads\Gmer-19357.exe
2015-01-29 13:17 - 2015-01-29 16:08 - 00489918 _____ () C:\Users\pc\Desktop\AKTUELLECtrees20150129.xlsx
2015-01-29 13:14 - 2015-01-29 13:14 - 00480115 _____ () C:\Users\pc\Downloads\ECtrees20150129.xlsx
2015-01-27 14:07 - 2015-01-27 14:26 - 00493251 _____ () C:\Users\pc\Desktop\ECtrees20150126_bearbeitet_blaetter.xlsx
2015-01-27 12:54 - 2015-01-27 12:54 - 00487357 _____ () C:\Users\pc\Desktop\ECtrees20150126.xlsx
2015-01-26 20:58 - 2015-01-26 20:58 - 00000197 _____ () C:\Windows\system32\2015-01-26-19-58-12.097-AvastVBoxSVC.exe-3428.log
2015-01-26 13:08 - 2015-01-26 13:08 - 00000197 _____ () C:\Windows\system32\2015-01-26-12-08-05.044-AvastVBoxSVC.exe-3080.log
2015-01-26 11:09 - 2015-01-26 11:09 - 00000197 _____ () C:\Windows\system32\2015-01-26-10-09-15.027-AvastVBoxSVC.exe-3716.log
2015-01-25 15:20 - 2015-01-25 15:20 - 00000197 _____ () C:\Windows\system32\2015-01-25-14-20-45.089-AvastVBoxSVC.exe-4120.log
2015-01-25 11:26 - 2015-01-25 11:26 - 00000197 _____ () C:\Windows\system32\2015-01-25-10-26-02.084-AvastVBoxSVC.exe-5928.log
2015-01-24 22:24 - 2015-01-24 22:24 - 00000197 _____ () C:\Windows\system32\2015-01-24-21-24-40.077-AvastVBoxSVC.exe-3368.log
2015-01-22 18:10 - 2015-01-22 18:10 - 00000197 _____ () C:\Windows\system32\2015-01-22-17-10-21.047-AvastVBoxSVC.exe-3016.log
2015-01-21 21:05 - 2015-01-21 21:05 - 00000197 _____ () C:\Windows\system32\2015-01-21-20-05-34.073-AvastVBoxSVC.exe-2720.log
2015-01-21 18:42 - 2015-01-21 18:42 - 00000197 _____ () C:\Windows\system32\2015-01-21-17-42-31.095-AvastVBoxSVC.exe-5504.log
2015-01-21 11:02 - 2015-01-21 11:02 - 00000197 _____ () C:\Windows\system32\2015-01-21-10-02-47.015-AvastVBoxSVC.exe-4356.log
2015-01-20 20:13 - 2015-01-20 20:13 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123 (1).msi
2015-01-20 20:06 - 2015-01-20 20:07 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123.msi
2015-01-20 19:57 - 2015-01-20 19:57 - 00000197 _____ () C:\Windows\system32\2015-01-20-18-57-01.011-AvastVBoxSVC.exe-1644.log
2015-01-20 19:49 - 2015-01-20 19:49 - 00863476 _____ (IDG Magazine Media GmbH ) C:\Users\pc\Downloads\pcwFixWindowsUpdate.exe
2015-01-20 17:58 - 2015-01-20 17:59 - 00000197 _____ () C:\Windows\system32\2015-01-20-16-58-57.020-AvastVBoxSVC.exe-3880.log
2015-01-20 13:22 - 2015-01-20 13:22 - 00000197 _____ () C:\Windows\system32\2015-01-20-12-22-30.032-AvastVBoxSVC.exe-3656.log
2015-01-19 10:38 - 2015-01-19 10:38 - 00000197 _____ () C:\Windows\system32\2015-01-19-09-38-16.001-AvastVBoxSVC.exe-3840.log
2015-01-18 21:52 - 2015-01-18 21:52 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-52-07.005-AvastVBoxSVC.exe-3940.log
2015-01-18 18:03 - 2015-01-18 18:04 - 00000197 _____ () C:\Windows\system32\2015-01-18-17-03-54.088-AvastVBoxSVC.exe-5408.log
2015-01-18 11:40 - 2015-01-18 11:40 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-40-33.035-AvastVBoxSVC.exe-4308.log
2015-01-18 11:25 - 2015-01-18 11:25 - 00000000 ____D () C:\Windows\Sun
2015-01-18 11:23 - 2015-01-18 11:23 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-18 11:21 - 2015-01-18 11:21 - 00638888 _____ (Oracle Corporation) C:\Users\pc\Downloads\chromeinstall-8u25.exe
2015-01-18 11:17 - 2015-01-18 11:19 - 307606328 _____ (NVIDIA Corporation) C:\Users\pc\Downloads\347.09-desktop-win8-win7-winvista-64bit-international-whql (1).exe
2015-01-18 11:11 - 2015-01-18 11:12 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-11-58.005-AvastVBoxSVC.exe-4864.log
2015-01-17 20:47 - 2015-01-17 20:47 - 00000197 _____ () C:\Windows\system32\2015-01-17-19-47-01.070-AvastVBoxSVC.exe-2592.log
2015-01-17 15:05 - 2015-01-17 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-17-14-05-45.035-AvastVBoxSVC.exe-3448.log
2015-01-17 13:18 - 2015-01-17 13:18 - 00000197 _____ () C:\Windows\system32\2015-01-17-12-18-13.061-AvastVBoxSVC.exe-500.log
2015-01-17 11:17 - 2015-01-17 11:17 - 00000197 _____ () C:\Windows\system32\2015-01-17-10-17-25.011-AvastVBoxSVC.exe-5132.log
2015-01-16 19:06 - 2015-01-16 19:06 - 00000197 _____ () C:\Windows\system32\2015-01-16-18-06-44.035-AvastVBoxSVC.exe-5152.log
2015-01-16 10:10 - 2015-01-16 10:10 - 00000197 _____ () C:\Windows\system32\2015-01-16-09-10-32.006-AvastVBoxSVC.exe-3448.log
2015-01-15 17:28 - 2015-01-15 17:28 - 00000197 _____ () C:\Windows\system32\2015-01-15-16-28-16.079-AvastVBoxSVC.exe-5424.log
2015-01-15 10:25 - 2015-01-15 10:25 - 00000197 _____ () C:\Windows\system32\2015-01-15-09-25-13.069-AvastVBoxSVC.exe-4084.log
2015-01-14 13:53 - 2015-01-14 13:54 - 00000197 _____ () C:\Windows\system32\2015-01-14-12-53-38.078-AvastVBoxSVC.exe-3856.log
2015-01-14 10:18 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 10:18 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 10:18 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 10:18 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 10:18 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 10:18 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 10:18 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 10:18 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 10:05 - 2015-01-14 10:05 - 00000197 _____ () C:\Windows\system32\2015-01-14-09-05-41.074-AvastVBoxSVC.exe-3720.log
2015-01-13 18:09 - 2015-01-13 18:09 - 00000197 _____ () C:\Windows\system32\2015-01-13-17-09-39.054-AvastVBoxSVC.exe-5088.log
2015-01-13 15:09 - 2015-01-13 15:10 - 00000197 _____ () C:\Windows\system32\2015-01-13-14-09-48.037-AvastVBoxSVC.exe-5052.log
2015-01-13 10:49 - 2015-01-13 10:49 - 00000197 _____ () C:\Windows\system32\2015-01-13-09-49-33.076-AvastVBoxSVC.exe-5612.log
2015-01-12 22:43 - 2015-01-12 22:44 - 00000197 _____ () C:\Windows\system32\2015-01-12-21-43-53.085-AvastVBoxSVC.exe-5084.log
2015-01-12 16:51 - 2015-01-12 16:51 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-51-07.055-AvastVBoxSVC.exe-3612.log
2015-01-12 16:01 - 2015-01-12 16:01 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-01-15.091-AvastVBoxSVC.exe-3828.log
2015-01-12 12:06 - 2015-01-12 12:06 - 00000197 _____ () C:\Windows\system32\2015-01-12-11-06-06.081-AvastVBoxSVC.exe-3920.log
2015-01-11 17:34 - 2015-01-11 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-11-16-34-32.091-AvastVBoxSVC.exe-5092.log
2015-01-11 10:32 - 2015-01-11 10:32 - 00000197 _____ () C:\Windows\system32\2015-01-11-09-32-25.034-AvastVBoxSVC.exe-4144.log
2015-01-10 15:04 - 2015-01-10 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-10-14-04-50.060-AvastVBoxSVC.exe-3108.log
2015-01-10 09:41 - 2015-01-10 09:42 - 00000197 _____ () C:\Windows\system32\2015-01-10-08-41-27.032-AvastVBoxSVC.exe-3252.log
2015-01-09 14:04 - 2015-01-09 14:04 - 00000197 _____ () C:\Windows\system32\2015-01-09-13-04-00.070-AvastVBoxSVC.exe-3864.log
2015-01-09 10:08 - 2015-01-09 10:08 - 00000197 _____ () C:\Windows\system32\2015-01-09-09-08-40.086-AvastVBoxSVC.exe-5532.log
2015-01-08 17:34 - 2015-01-08 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-08-16-34-36.098-AvastVBoxSVC.exe-5968.log
2015-01-08 16:00 - 2015-01-08 16:00 - 00000197 _____ () C:\Windows\system32\2015-01-08-15-00-34.077-AvastVBoxSVC.exe-3712.log
2015-01-08 11:34 - 2015-01-08 11:35 - 00000197 _____ () C:\Windows\system32\2015-01-08-10-34-47.001-AvastVBoxSVC.exe-5620.log
2015-01-07 21:26 - 2015-01-08 18:47 - 00000000 ____D () C:\Users\pc\Documents\Bewerbungen
2015-01-07 20:32 - 2015-01-07 20:32 - 00000197 _____ () C:\Windows\system32\2015-01-07-19-32-21.099-AvastVBoxSVC.exe-3312.log
2015-01-06 13:56 - 2015-01-06 13:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-56-05.001-AvastVBoxSVC.exe-3500.log
2015-01-06 10:34 - 2015-01-06 10:34 - 00000197 _____ () C:\Windows\system32\2015-01-06-09-34-33.042-AvastVBoxSVC.exe-3300.log
2015-01-05 14:43 - 2015-01-05 14:43 - 00000197 _____ () C:\Windows\system32\2015-01-05-13-43-51.053-AvastVBoxSVC.exe-5748.log
2015-01-04 15:46 - 2015-01-04 15:46 - 00000197 _____ () C:\Windows\system32\2015-01-04-14-46-26.047-AvastVBoxSVC.exe-5472.log
2015-01-04 12:34 - 2015-01-04 12:34 - 00000197 _____ () C:\Windows\system32\2015-01-04-11-34-42.025-AvastVBoxSVC.exe-3868.log
2015-01-03 10:50 - 2015-01-03 10:50 - 00000197 _____ () C:\Windows\system32\2015-01-03-09-50-53.046-AvastVBoxSVC.exe-3652.log
2015-01-02 10:44 - 2015-01-02 10:45 - 00000197 _____ () C:\Windows\system32\2015-01-02-09-44-49.098-AvastVBoxSVC.exe-3236.log
2015-01-01 11:24 - 2015-01-01 11:25 - 00000197 _____ () C:\Windows\system32\2015-01-01-10-24-54.071-AvastVBoxSVC.exe-3872.log
2014-12-31 14:16 - 2014-12-31 14:17 - 00000197 _____ () C:\Windows\system32\2014-12-31-13-16-35.095-AvastVBoxSVC.exe-3860.log
2014-12-31 00:31 - 2014-12-31 00:31 - 00000197 _____ () C:\Windows\system32\2014-12-30-23-31-20.011-AvastVBoxSVC.exe-4312.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-30 15:08 - 2011-02-07 23:44 - 00000000 ____D () C:\Users\pc\AppData\Local\PMB Files
2015-01-30 15:06 - 2013-11-12 23:24 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-30 15:06 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-30 15:06 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-30 15:05 - 2014-12-28 19:33 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Spotify
2015-01-30 15:05 - 2013-10-24 08:11 - 00000000 ____D () C:\FRST
2015-01-30 15:01 - 2012-11-07 18:28 - 00000000 ___RD () C:\Users\pc\Dropbox
2015-01-30 15:01 - 2012-11-07 18:21 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Dropbox
2015-01-30 15:00 - 2014-09-19 18:00 - 00000000 ___RD () C:\Users\pc\iCloudDrive
2015-01-30 15:00 - 2009-07-14 05:51 - 02170052 _____ () C:\Windows\setupact.log
2015-01-30 14:59 - 2013-01-20 18:04 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-30 14:59 - 2011-01-01 14:29 - 01000884 _____ () C:\Windows\PFRO.log
2015-01-30 14:59 - 2010-12-20 18:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-30 14:59 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-30 14:58 - 2013-10-25 11:11 - 00000000 ____D () C:\AdwCleaner
2015-01-30 14:58 - 2010-12-20 16:37 - 01834640 _____ () C:\Windows\WindowsUpdate.log
2015-01-30 14:52 - 2013-10-24 11:55 - 00000000 ____D () C:\Qoobox
2015-01-30 14:49 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2015-01-30 14:48 - 2013-01-20 18:04 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-30 14:41 - 2013-01-17 20:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-29 18:49 - 2013-01-20 18:15 - 00003542 _____ () C:\Windows\Sandboxie.ini
2015-01-27 22:21 - 2010-12-30 14:39 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Skype
2015-01-26 20:58 - 2014-12-28 19:35 - 00000000 ____D () C:\Users\pc\AppData\Local\Spotify
2015-01-26 14:15 - 2013-12-04 23:47 - 00000000 ____D () C:\Users\pc\AppData\Roaming\vlc
2015-01-25 15:37 - 2014-03-07 11:01 - 00000000 ____D () C:\Users\pc\Documents\Masterarbeit
2015-01-24 23:41 - 2013-01-17 20:32 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-24 23:41 - 2013-01-17 20:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-24 23:41 - 2013-01-17 20:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-21 14:47 - 2013-10-21 13:13 - 00000000 ____D () C:\Users\pc\AppData\Local\Battle.net
2015-01-18 17:01 - 2009-07-14 18:58 - 00836678 _____ () C:\Windows\system32\perfh007.dat
2015-01-18 17:01 - 2009-07-14 18:58 - 00210186 _____ () C:\Windows\system32\perfc007.dat
2015-01-18 17:01 - 2009-07-14 06:13 - 00011936 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\ProgramData\TEMP
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\Program Files (x86)\Fraps
2015-01-14 13:03 - 2013-08-15 23:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 12:55 - 2012-08-11 12:41 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-14 11:03 - 2012-05-14 16:20 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-01-14 10:17 - 2013-10-26 20:24 - 00000000 ____D () C:\Windows\system32\catroot2.old
2015-01-10 15:16 - 2011-07-02 22:59 - 00000000 ____D () C:\Program Files\KeePass
2015-01-06 04:36 - 2010-12-30 14:39 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-05 13:44 - 2010-12-20 16:41 - 00000000 ____D () C:\Users\pc
2015-01-04 16:44 - 2011-06-29 20:10 - 00000000 ____D () C:\Users\pc\AppData\Local\Paint.NET

==================== Files in the root of some directories =======

2011-11-04 18:25 - 2012-06-05 21:36 - 0175104 _____ () C:\Users\pc\AppData\Roaming\locked-pc3SQLite3.dll.jgdl
2013-01-13 18:56 - 2013-01-13 20:44 - 0010960 ___SH () C:\Users\pc\AppData\Local\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
2051-01-27 18:32 - 2051-01-27 18:32 - 0097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:33 - 2051-01-27 18:33 - 0809541 _____ () C:\Users\pc\AppData\Local\census.cache
2012-04-22 17:46 - 2014-02-24 09:57 - 0009216 _____ () C:\Users\pc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-02-08 02:07 - 2011-02-08 02:07 - 0000090 _____ () C:\Users\pc\AppData\Local\fusioncache.dat
2051-01-27 18:24 - 2051-01-27 18:24 - 0000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2013-01-13 18:56 - 2013-01-13 20:44 - 0010960 ___SH () C:\ProgramData\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
2010-12-30 14:42 - 2010-12-30 14:42 - 0000056 _____ () C:\ProgramData\ezsidmv.dat

Some content of TEMP:
====================
C:\Users\pc\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmptg291k.dll
C:\Users\pc\AppData\Local\Temp\Quarantine.exe
C:\Users\pc\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-25 12:32

==================== End Of Log ============================
         
--- --- ---

Alt 31.01.2015, 13:11   #10
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Hi,

dann erstemal ein manueller Fix:

Schritt 1:
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-648632289-941596113-564908001-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
CHR Extension: (Ghostery) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2013-01-20]
C:\Users\pc\AppData\Local\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
C:\ProgramData\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Schritt 2:

Lade dir TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.
  • Öffne die TFC.exe.
    Vista und Win 7 User mit Rechtsklick "als Administrator starten".
  • Schließe alle anderen Programme.
  • Drücke auf den Button Start.
  • Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.



Schritt 3:

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.



Schritt 4:


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset



Schritt 5:

erstelle ein neues FRST Logfile und poste es hier, bitte setze den Haken bai adittion.txt

Schritt 6:

Downloade dir bitte Farbar Service Scanner Farbar Service Scanner
  • Starte das Tool mit Doppelklick auf die FSS.exe
  • Gehe sicher, dass folgende Optionen angehakt sind.
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Klicke auf Scan.
  • Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.


__________________
Gruß Aneri
Mitglied von UNITE

Lob oder Kritik? hier wirst du es los

Alt 31.01.2015, 20:06   #11
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Danke, dass du dir auch am Wochenende die Zeit nimmst!

Schritt 1:

Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 31-01-2015
Ran by pc at 2015-01-31 14:41:22 Run:1
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available profiles: pc)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-648632289-941596113-564908001-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
CHR Extension: (Ghostery) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2013-01-20]
C:\Users\pc\AppData\Local\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
C:\ProgramData\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
*****************

"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-648632289-941596113-564908001-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value deleted successfully.
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => Key not found. 
C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij => Moved successfully.
C:\Users\pc\AppData\Local\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl => Moved successfully.
C:\ProgramData\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl => Moved successfully.

==== End of Fixlog 14:41:27 ====
         
Schritt 2: erledigt.

Schritt 3:

Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 31.01.2015
Suchlauf-Zeit: 15:00:29
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.4.1028
Malware Datenbank: v2015.01.31.03
Rootkit Datenbank: v2015.01.14.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: pc

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 384613
Verstrichene Zeit: 10 Min, 58 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente erkannt)

Module: 0
(Keine schädliche Elemente erkannt)

Registrierungsschlüssel: 0
(Keine schädliche Elemente erkannt)

Registrierungswerte: 0
(Keine schädliche Elemente erkannt)

Registrierungsdaten: 0
(Keine schädliche Elemente erkannt)

Ordner: 0
(Keine schädliche Elemente erkannt)

Dateien: 1
PUP.Optional.Softonic.A, C:\Users\pc\Downloads\SoftonicDownloader_fuer_file-repair.exe, In Quarantäne, [9c533ebf4247be78afac03421ae74ab6], 

Physische Sektoren: 0
(Keine schädliche Elemente erkannt)


(end)
         

Schritt 4 hat ja ziemlich lang gedauert:

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=0d3582f03a8aac42a77c5559c2306053
# engine=22242
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-01-31 07:57:43
# local_time=2015-01-31 08:57:43 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 71 97 295178 39754244 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 107931 174364113 0 0
# scanned=659198
# found=8
# cleaned=0
# scan_time=19728
sh=815CE918A2CF57F5E0A3A9346FD9A6F6B3D03D30 ft=1 fh=028c167410bf2336 vn="Win32/InstallCore.GI evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe"
sh=F63EC83349137D02621AEA1F99134BA1C3DDF63F ft=1 fh=640599410ad793e4 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\pc\Downloads\GoPro Studio - CHIP-Installer.exe"
sh=683917A3656019EE769FFD2AB8AA543BDEE784AF ft=1 fh=5138fac3cd5d3d26 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe"
sh=201BE05C0AF3E078114839248A6D04424EC0CCF1 ft=1 fh=09e3f0179d2fbd55 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe"
sh=815CE918A2CF57F5E0A3A9346FD9A6F6B3D03D30 ft=1 fh=028c167410bf2336 vn="Win32/InstallCore.GI evtl. unerwünschte Anwendung" ac=I fn="C:\Users\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe"
sh=F63EC83349137D02621AEA1F99134BA1C3DDF63F ft=1 fh=640599410ad793e4 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\pc\Downloads\GoPro Studio - CHIP-Installer.exe"
sh=683917A3656019EE769FFD2AB8AA543BDEE784AF ft=1 fh=5138fac3cd5d3d26 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe"
sh=201BE05C0AF3E078114839248A6D04424EC0CCF1 ft=1 fh=09e3f0179d2fbd55 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe"
         

Schritt 5:


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-01-2015
Ran by pc (administrator) on PC-PC on 31-01-2015 21:08:11
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available profiles: pc)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Gainward Co.) C:\Program Files (x86)\EXPERTool\TBPANEL.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(FileHippo.com) C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\spotify.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(GoPro) C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Dropbox, Inc.) C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2770432 2010-02-10] (VIA)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GAINWARD] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2181744 2010-10-22] (Gainward Co.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Pando Media Booster] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3046808 2011-02-07] ()
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Wisdom-soft AutoScreenRecorder 3.1 Pro] => 0
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [784904 2014-10-14] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344 2014-10-22] (Google Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-08-04] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-10-20] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify] => C:\Users\pc\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify Web Helper] => C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoPro Importer.lnk
ShortcutTarget: GoPro Importer.lnk -> C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe (GoPro)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\avast! Free Antivirus (2).lnk
ShortcutTarget: avast! Free Antivirus (2).lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
DPF: HKLM-x32 {140E4DF8-9E14-4A34-9577-C77561ED7883} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.72.0.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\ahit0ekq.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101714.dll No File
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-28]

Chrome: 
=======
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-01-20]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-04]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-20]
CHR Extension: (Google-Suche) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-20]
CHR Extension: (HTTPS Everywhere) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2013-01-20]
CHR Extension: (AdBlock) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-01-20]
CHR Extension: (Ghostery) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-01-31]
CHR Extension: (Google Wallet) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-04]
CHR Extension: (Google Mail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-20]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-02] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-02] (Avast Software)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S4 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-11-15] ()
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [253776 2013-03-06] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-02] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-25] (AVM Berlin)
R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-25] (AVM GmbH)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-01] (HTC, Corporation) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 TBPanel; No ImagePath
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-02] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 RTL8192cu; system32\DRIVERS\rtwlanu.sys [X]
S3 rtlss; System32\Drivers\rtlss.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2051-01-27 18:38 - 2012-06-10 14:25 - 00000000 ____D () C:\Users\pc\AppData\Roaming\QuickScan
2051-01-27 18:33 - 2051-01-27 18:33 - 00809541 _____ () C:\Users\pc\AppData\Local\census.cache
2051-01-27 18:32 - 2051-01-27 18:32 - 00097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:24 - 2051-01-27 18:24 - 00000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2015-01-31 15:25 - 2015-01-31 15:25 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-01-31 15:23 - 2015-01-31 15:23 - 02347384 _____ (ESET) C:\Users\pc\Downloads\esetsmartinstaller_deu.exe
2015-01-31 15:21 - 2015-01-31 15:21 - 00001304 _____ () C:\Users\pc\Desktop\mbam.txt
2015-01-31 15:16 - 2015-01-31 15:16 - 00000197 _____ () C:\Windows\system32\2015-01-31-14-16-45.091-AvastVBoxSVC.exe-812.log
2015-01-31 14:59 - 2015-01-31 15:20 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-31 14:59 - 2015-01-31 14:59 - 00001098 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-01-31 14:59 - 2015-01-31 14:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-01-31 14:59 - 2015-01-31 14:59 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-01-31 14:59 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-31 14:59 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-01-31 14:59 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-01-31 14:58 - 2015-01-31 14:59 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\pc\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-31 14:49 - 2015-01-31 14:49 - 00000197 _____ () C:\Windows\system32\2015-01-31-13-49-08.094-AvastVBoxSVC.exe-3888.log
2015-01-31 14:46 - 2015-01-31 14:46 - 00286856 _____ () C:\Windows\Minidump\013115-31605-01.dmp
2015-01-31 14:43 - 2015-01-31 14:43 - 00448512 _____ (OldTimer Tools) C:\Users\pc\Desktop\TFC.exe
2015-01-31 14:41 - 2015-01-31 14:41 - 00000000 ____D () C:\Users\pc\Desktop\FRST-OlderVersion
2015-01-31 14:37 - 2015-01-31 14:37 - 00000197 _____ () C:\Windows\system32\2015-01-31-13-37-26.032-AvastVBoxSVC.exe-4884.log
2015-01-31 11:03 - 2015-01-31 11:03 - 00000197 _____ () C:\Windows\system32\2015-01-31-10-03-13.087-AvastVBoxSVC.exe-4112.log
2015-01-30 15:08 - 2015-01-30 15:09 - 00044415 _____ () C:\Users\pc\Desktop\Addition.txt
2015-01-30 15:04 - 2015-01-31 21:08 - 00020702 _____ () C:\Users\pc\Desktop\FRST.txt
2015-01-30 15:04 - 2015-01-30 15:04 - 00000197 _____ () C:\Windows\system32\2015-01-30-14-04-03.072-AvastVBoxSVC.exe-2692.log
2015-01-30 15:03 - 2015-01-31 14:41 - 02130944 _____ (Farbar) C:\Users\pc\Desktop\FRST64.exe
2015-01-30 15:00 - 2015-01-30 15:00 - 00002511 _____ () C:\Users\pc\Desktop\AdwCleaner[S1].txt
2015-01-30 14:54 - 2015-01-30 14:54 - 02194432 _____ () C:\Users\pc\Downloads\AdwCleaner_4.109.exe
2015-01-30 14:52 - 2015-01-30 14:52 - 00027043 _____ () C:\ComboFix.txt
2015-01-30 14:29 - 2015-01-30 14:30 - 05611408 ____R (Swearware) C:\Users\pc\Desktop\ComboFix.exe
2015-01-29 22:10 - 2015-01-29 22:10 - 00018200 _____ () C:\Users\pc\Desktop\Gmer.log
2015-01-29 21:54 - 2015-01-29 21:54 - 00380416 _____ () C:\Users\pc\Downloads\u06ihi7j.exe
2015-01-29 21:54 - 2015-01-29 21:54 - 00380416 _____ () C:\Users\pc\Downloads\Gmer-19357.exe
2015-01-29 13:17 - 2015-01-29 16:08 - 00489918 _____ () C:\Users\pc\Desktop\AKTUELLECtrees20150129.xlsx
2015-01-29 13:14 - 2015-01-29 13:14 - 00480115 _____ () C:\Users\pc\Downloads\ECtrees20150129.xlsx
2015-01-27 14:07 - 2015-01-27 14:26 - 00493251 _____ () C:\Users\pc\Desktop\ECtrees20150126_bearbeitet_blaetter.xlsx
2015-01-27 12:54 - 2015-01-27 12:54 - 00487357 _____ () C:\Users\pc\Desktop\ECtrees20150126.xlsx
2015-01-26 20:58 - 2015-01-26 20:58 - 00000197 _____ () C:\Windows\system32\2015-01-26-19-58-12.097-AvastVBoxSVC.exe-3428.log
2015-01-26 13:08 - 2015-01-26 13:08 - 00000197 _____ () C:\Windows\system32\2015-01-26-12-08-05.044-AvastVBoxSVC.exe-3080.log
2015-01-26 11:09 - 2015-01-26 11:09 - 00000197 _____ () C:\Windows\system32\2015-01-26-10-09-15.027-AvastVBoxSVC.exe-3716.log
2015-01-25 15:20 - 2015-01-25 15:20 - 00000197 _____ () C:\Windows\system32\2015-01-25-14-20-45.089-AvastVBoxSVC.exe-4120.log
2015-01-25 11:26 - 2015-01-25 11:26 - 00000197 _____ () C:\Windows\system32\2015-01-25-10-26-02.084-AvastVBoxSVC.exe-5928.log
2015-01-24 22:24 - 2015-01-24 22:24 - 00000197 _____ () C:\Windows\system32\2015-01-24-21-24-40.077-AvastVBoxSVC.exe-3368.log
2015-01-22 18:10 - 2015-01-22 18:10 - 00000197 _____ () C:\Windows\system32\2015-01-22-17-10-21.047-AvastVBoxSVC.exe-3016.log
2015-01-21 21:05 - 2015-01-21 21:05 - 00000197 _____ () C:\Windows\system32\2015-01-21-20-05-34.073-AvastVBoxSVC.exe-2720.log
2015-01-21 18:42 - 2015-01-21 18:42 - 00000197 _____ () C:\Windows\system32\2015-01-21-17-42-31.095-AvastVBoxSVC.exe-5504.log
2015-01-21 11:02 - 2015-01-21 11:02 - 00000197 _____ () C:\Windows\system32\2015-01-21-10-02-47.015-AvastVBoxSVC.exe-4356.log
2015-01-20 20:13 - 2015-01-20 20:13 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123 (1).msi
2015-01-20 20:06 - 2015-01-20 20:07 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123.msi
2015-01-20 19:57 - 2015-01-20 19:57 - 00000197 _____ () C:\Windows\system32\2015-01-20-18-57-01.011-AvastVBoxSVC.exe-1644.log
2015-01-20 19:49 - 2015-01-20 19:49 - 00863476 _____ (IDG Magazine Media GmbH ) C:\Users\pc\Downloads\pcwFixWindowsUpdate.exe
2015-01-20 17:58 - 2015-01-20 17:59 - 00000197 _____ () C:\Windows\system32\2015-01-20-16-58-57.020-AvastVBoxSVC.exe-3880.log
2015-01-20 13:22 - 2015-01-20 13:22 - 00000197 _____ () C:\Windows\system32\2015-01-20-12-22-30.032-AvastVBoxSVC.exe-3656.log
2015-01-19 10:38 - 2015-01-19 10:38 - 00000197 _____ () C:\Windows\system32\2015-01-19-09-38-16.001-AvastVBoxSVC.exe-3840.log
2015-01-18 21:52 - 2015-01-18 21:52 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-52-07.005-AvastVBoxSVC.exe-3940.log
2015-01-18 18:03 - 2015-01-18 18:04 - 00000197 _____ () C:\Windows\system32\2015-01-18-17-03-54.088-AvastVBoxSVC.exe-5408.log
2015-01-18 11:40 - 2015-01-18 11:40 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-40-33.035-AvastVBoxSVC.exe-4308.log
2015-01-18 11:25 - 2015-01-18 11:25 - 00000000 ____D () C:\Windows\Sun
2015-01-18 11:23 - 2015-01-18 11:23 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-18 11:21 - 2015-01-18 11:21 - 00638888 _____ (Oracle Corporation) C:\Users\pc\Downloads\chromeinstall-8u25.exe
2015-01-18 11:17 - 2015-01-18 11:19 - 307606328 _____ (NVIDIA Corporation) C:\Users\pc\Downloads\347.09-desktop-win8-win7-winvista-64bit-international-whql (1).exe
2015-01-18 11:11 - 2015-01-18 11:12 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-11-58.005-AvastVBoxSVC.exe-4864.log
2015-01-17 20:47 - 2015-01-17 20:47 - 00000197 _____ () C:\Windows\system32\2015-01-17-19-47-01.070-AvastVBoxSVC.exe-2592.log
2015-01-17 15:05 - 2015-01-17 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-17-14-05-45.035-AvastVBoxSVC.exe-3448.log
2015-01-17 13:18 - 2015-01-17 13:18 - 00000197 _____ () C:\Windows\system32\2015-01-17-12-18-13.061-AvastVBoxSVC.exe-500.log
2015-01-17 11:17 - 2015-01-17 11:17 - 00000197 _____ () C:\Windows\system32\2015-01-17-10-17-25.011-AvastVBoxSVC.exe-5132.log
2015-01-16 19:06 - 2015-01-16 19:06 - 00000197 _____ () C:\Windows\system32\2015-01-16-18-06-44.035-AvastVBoxSVC.exe-5152.log
2015-01-16 10:10 - 2015-01-16 10:10 - 00000197 _____ () C:\Windows\system32\2015-01-16-09-10-32.006-AvastVBoxSVC.exe-3448.log
2015-01-15 17:28 - 2015-01-15 17:28 - 00000197 _____ () C:\Windows\system32\2015-01-15-16-28-16.079-AvastVBoxSVC.exe-5424.log
2015-01-15 10:25 - 2015-01-15 10:25 - 00000197 _____ () C:\Windows\system32\2015-01-15-09-25-13.069-AvastVBoxSVC.exe-4084.log
2015-01-14 13:53 - 2015-01-14 13:54 - 00000197 _____ () C:\Windows\system32\2015-01-14-12-53-38.078-AvastVBoxSVC.exe-3856.log
2015-01-14 10:18 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 10:18 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 10:18 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 10:18 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 10:18 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 10:18 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 10:18 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 10:18 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 10:05 - 2015-01-14 10:05 - 00000197 _____ () C:\Windows\system32\2015-01-14-09-05-41.074-AvastVBoxSVC.exe-3720.log
2015-01-13 18:09 - 2015-01-13 18:09 - 00000197 _____ () C:\Windows\system32\2015-01-13-17-09-39.054-AvastVBoxSVC.exe-5088.log
2015-01-13 15:09 - 2015-01-13 15:10 - 00000197 _____ () C:\Windows\system32\2015-01-13-14-09-48.037-AvastVBoxSVC.exe-5052.log
2015-01-13 10:49 - 2015-01-13 10:49 - 00000197 _____ () C:\Windows\system32\2015-01-13-09-49-33.076-AvastVBoxSVC.exe-5612.log
2015-01-12 22:43 - 2015-01-12 22:44 - 00000197 _____ () C:\Windows\system32\2015-01-12-21-43-53.085-AvastVBoxSVC.exe-5084.log
2015-01-12 16:51 - 2015-01-12 16:51 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-51-07.055-AvastVBoxSVC.exe-3612.log
2015-01-12 16:01 - 2015-01-12 16:01 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-01-15.091-AvastVBoxSVC.exe-3828.log
2015-01-12 12:06 - 2015-01-12 12:06 - 00000197 _____ () C:\Windows\system32\2015-01-12-11-06-06.081-AvastVBoxSVC.exe-3920.log
2015-01-11 17:34 - 2015-01-11 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-11-16-34-32.091-AvastVBoxSVC.exe-5092.log
2015-01-11 10:32 - 2015-01-11 10:32 - 00000197 _____ () C:\Windows\system32\2015-01-11-09-32-25.034-AvastVBoxSVC.exe-4144.log
2015-01-10 15:04 - 2015-01-10 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-10-14-04-50.060-AvastVBoxSVC.exe-3108.log
2015-01-10 09:41 - 2015-01-10 09:42 - 00000197 _____ () C:\Windows\system32\2015-01-10-08-41-27.032-AvastVBoxSVC.exe-3252.log
2015-01-09 14:04 - 2015-01-09 14:04 - 00000197 _____ () C:\Windows\system32\2015-01-09-13-04-00.070-AvastVBoxSVC.exe-3864.log
2015-01-09 10:08 - 2015-01-09 10:08 - 00000197 _____ () C:\Windows\system32\2015-01-09-09-08-40.086-AvastVBoxSVC.exe-5532.log
2015-01-08 17:34 - 2015-01-08 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-08-16-34-36.098-AvastVBoxSVC.exe-5968.log
2015-01-08 16:00 - 2015-01-08 16:00 - 00000197 _____ () C:\Windows\system32\2015-01-08-15-00-34.077-AvastVBoxSVC.exe-3712.log
2015-01-08 11:34 - 2015-01-08 11:35 - 00000197 _____ () C:\Windows\system32\2015-01-08-10-34-47.001-AvastVBoxSVC.exe-5620.log
2015-01-07 21:26 - 2015-01-08 18:47 - 00000000 ____D () C:\Users\pc\Documents\Bewerbungen
2015-01-07 20:32 - 2015-01-07 20:32 - 00000197 _____ () C:\Windows\system32\2015-01-07-19-32-21.099-AvastVBoxSVC.exe-3312.log
2015-01-06 13:56 - 2015-01-06 13:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-56-05.001-AvastVBoxSVC.exe-3500.log
2015-01-06 10:34 - 2015-01-06 10:34 - 00000197 _____ () C:\Windows\system32\2015-01-06-09-34-33.042-AvastVBoxSVC.exe-3300.log
2015-01-05 14:43 - 2015-01-05 14:43 - 00000197 _____ () C:\Windows\system32\2015-01-05-13-43-51.053-AvastVBoxSVC.exe-5748.log
2015-01-04 15:46 - 2015-01-04 15:46 - 00000197 _____ () C:\Windows\system32\2015-01-04-14-46-26.047-AvastVBoxSVC.exe-5472.log
2015-01-04 12:34 - 2015-01-04 12:34 - 00000197 _____ () C:\Windows\system32\2015-01-04-11-34-42.025-AvastVBoxSVC.exe-3868.log
2015-01-03 10:50 - 2015-01-03 10:50 - 00000197 _____ () C:\Windows\system32\2015-01-03-09-50-53.046-AvastVBoxSVC.exe-3652.log
2015-01-02 10:44 - 2015-01-02 10:45 - 00000197 _____ () C:\Windows\system32\2015-01-02-09-44-49.098-AvastVBoxSVC.exe-3236.log
2015-01-01 11:24 - 2015-01-01 11:25 - 00000197 _____ () C:\Windows\system32\2015-01-01-10-24-54.071-AvastVBoxSVC.exe-3872.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-31 21:08 - 2013-10-24 08:11 - 00000000 ____D () C:\FRST
2015-01-31 21:08 - 2011-02-07 23:44 - 00000000 ____D () C:\Users\pc\AppData\Local\PMB Files
2015-01-31 20:48 - 2013-01-20 18:04 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-31 20:41 - 2013-01-17 20:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-31 19:41 - 2010-12-20 16:37 - 01911919 _____ () C:\Windows\WindowsUpdate.log
2015-01-31 19:30 - 2014-12-28 19:33 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Spotify
2015-01-31 18:47 - 2013-01-20 18:04 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-31 15:23 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-31 15:23 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-31 15:16 - 2013-11-12 23:24 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-31 15:16 - 2012-11-07 18:28 - 00000000 ___RD () C:\Users\pc\Dropbox
2015-01-31 15:16 - 2012-11-07 18:21 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Dropbox
2015-01-31 15:16 - 2009-07-14 05:51 - 02172460 _____ () C:\Windows\setupact.log
2015-01-31 15:15 - 2014-09-19 18:00 - 00000000 ___RD () C:\Users\pc\iCloudDrive
2015-01-31 15:13 - 2011-01-01 14:29 - 01001518 _____ () C:\Windows\PFRO.log
2015-01-31 15:13 - 2010-12-20 18:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-31 15:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-31 15:13 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\schemas
2015-01-31 14:59 - 2013-01-14 14:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-31 14:46 - 2011-03-26 13:31 - 643959674 _____ () C:\Windows\MEMORY.DMP
2015-01-31 14:46 - 2011-03-26 13:31 - 00000000 ____D () C:\Windows\Minidump
2015-01-30 23:50 - 2013-10-21 13:13 - 00000000 ____D () C:\Users\pc\AppData\Local\Battle.net
2015-01-30 18:48 - 2013-10-21 14:46 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-01-30 16:38 - 2011-07-02 22:59 - 00000000 ____D () C:\Program Files\KeePass
2015-01-30 14:58 - 2013-10-25 11:11 - 00000000 ____D () C:\AdwCleaner
2015-01-30 14:52 - 2013-10-24 11:55 - 00000000 ____D () C:\Qoobox
2015-01-30 14:49 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2015-01-29 18:49 - 2013-01-20 18:15 - 00003542 _____ () C:\Windows\Sandboxie.ini
2015-01-27 22:21 - 2010-12-30 14:39 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Skype
2015-01-26 20:58 - 2014-12-28 19:35 - 00000000 ____D () C:\Users\pc\AppData\Local\Spotify
2015-01-26 14:15 - 2013-12-04 23:47 - 00000000 ____D () C:\Users\pc\AppData\Roaming\vlc
2015-01-25 15:37 - 2014-03-07 11:01 - 00000000 ____D () C:\Users\pc\Documents\Masterarbeit
2015-01-24 23:41 - 2013-01-17 20:32 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-24 23:41 - 2013-01-17 20:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-24 23:41 - 2013-01-17 20:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-18 17:01 - 2009-07-14 18:58 - 00836678 _____ () C:\Windows\system32\perfh007.dat
2015-01-18 17:01 - 2009-07-14 18:58 - 00210186 _____ () C:\Windows\system32\perfc007.dat
2015-01-18 17:01 - 2009-07-14 06:13 - 00011936 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\ProgramData\TEMP
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\Program Files (x86)\Fraps
2015-01-14 13:03 - 2013-08-15 23:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 12:55 - 2012-08-11 12:41 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-14 11:03 - 2012-05-14 16:20 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-01-14 10:17 - 2013-10-26 20:24 - 00000000 ____D () C:\Windows\system32\catroot2.old
2015-01-06 04:36 - 2010-12-30 14:39 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-05 13:44 - 2010-12-20 16:41 - 00000000 ____D () C:\Users\pc
2015-01-04 16:44 - 2011-06-29 20:10 - 00000000 ____D () C:\Users\pc\AppData\Local\Paint.NET

==================== Files in the root of some directories =======

2011-11-04 18:25 - 2012-06-05 21:36 - 0175104 _____ () C:\Users\pc\AppData\Roaming\locked-pc3SQLite3.dll.jgdl
2051-01-27 18:32 - 2051-01-27 18:32 - 0097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:33 - 2051-01-27 18:33 - 0809541 _____ () C:\Users\pc\AppData\Local\census.cache
2012-04-22 17:46 - 2014-02-24 09:57 - 0009216 _____ () C:\Users\pc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-02-08 02:07 - 2011-02-08 02:07 - 0000090 _____ () C:\Users\pc\AppData\Local\fusioncache.dat
2051-01-27 18:24 - 2051-01-27 18:24 - 0000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2010-12-30 14:42 - 2010-12-30 14:42 - 0000056 _____ () C:\ProgramData\ezsidmv.dat

Some content of TEMP:
====================
C:\Users\pc\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5c0z2l.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-25 12:32

==================== End Of Log ============================
         
--- --- ---

--- --- ---



Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-01-2015
Ran by pc at 2015-01-31 21:09:10
Running from C:\Users\pc\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version:  - AVM Berlin)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version:  - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version:  - Treyarch)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version:  - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version:  - Infinity Ward)
Camtasia Studio 7 (HKLM-x32\...\{DE042823-C359-4B87-B66B-308057E8B6AF}) (Version: 7.0.1 - TechSmith Corporation)
CyberLink PowerDirector 11 (HKLM-x32\...\InstallShield_{551F492A-01B0-4DC4-866F-875EC4EDC0A8}) (Version: 11.0.0.4310 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Dropbox (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EXPERTool 7.14 (HKLM-x32\...\MySSID_is1) (Version:  - Gainward Co., Ltd)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
File Repair (HKLM-x32\...\File Repair_is1) (Version:  - File Repair)
FileHippo.com Update Checker (HKLM-x32\...\FileHippo.com) (Version:  - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Free Video Flip and Rotate version 2.1.9.725 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.725 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.20.1230 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.20.1230 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.43.806 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.43.806 - DVDVideoSoft Ltd.)
GameMaker-Studio 1.2 (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\GameMaker-Studio12) (Version:  - YoYo Games Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GoPro Studio 2.5.4 (HKLM-x32\...\GoPro Studio) (Version: 2.5.4 - GoPro, Inc.)
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
L.A. Noire: The Complete Edition (HKLM-x32\...\Steam App 110800) (Version:  - Rockstar)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version:  - Valve)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Max Payne 3 (HKLM-x32\...\Steam App 204100) (Version:  - Rockstar)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 22.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.5.2 - Pando Networks Inc.)
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Prezi Desktop (HKLM-x32\...\{7FAE73A4-F0BC-4B65-81CF-52C417383407}) (Version: 4.5.1 - Prezi.com)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Quantum GIS Lisboa 1.8.0 Lisboa (HKLM-x32\...\Quantum GIS Lisboa) (Version: 1.8.0-r${SVN_REVISION}-2 - QGIS Development Team)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
R for Windows 2.15.2 (HKLM\...\R for Windows 2.15.2_is1) (Version: 2.15.2 - R Core Team)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Secunia PSI (3.0.0.4001) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.4001 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab (HKLM-x32\...\{92482FB3-C05B-41C6-89E7-75D985602A6E}) (Version: 4.1.72.0 - Husdawg, LLC)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version:  - Crystal Dynamics)
Torchlight (HKLM-x32\...\Steam App 41500) (Version:  - Runic Games, Inc.)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - )
Tropico 3 - Steam Special Edition (HKLM-x32\...\Steam App 23490) (Version:  - Haemimont Games)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012  - GoPro)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

==================== Restore Points  =========================

15-11-2014 11:33:54 DirectX wurde installiert
25-11-2014 16:11:40 Windows Update
25-11-2014 19:27:27 Windows Update
02-12-2014 17:50:28 Windows Update
02-12-2014 18:26:36 avast! antivirus system restore point
09-12-2014 11:29:08 Windows Update
10-12-2014 12:26:59 Windows Update
13-12-2014 00:53:23 Windows Update
16-12-2014 11:05:34 Windows Update
18-12-2014 13:13:12 Windows Update
24-12-2014 22:13:01 Windows Update
30-12-2014 10:51:23 Windows Update
06-01-2015 10:38:51 Windows Update
09-01-2015 15:59:41 Windows Update
14-01-2015 12:54:38 Windows Update
19-01-2015 15:46:28 Windows Update
20-01-2015 19:37:27 Windows Update
20-01-2015 19:39:26 Windows Update
20-01-2015 20:00:15 Windows Update
20-01-2015 20:02:57 Windows Update
20-01-2015 20:03:45 Windows Update
20-01-2015 20:07:20 Installed Microsoft Fix it 50123
20-01-2015 20:10:07 Windows Update
20-01-2015 20:13:58 Installed Microsoft Fix it 50123
20-01-2015 20:16:02 Windows Update
20-01-2015 20:35:33 Windows Update
24-01-2015 22:33:27 Windows Update
30-01-2015 11:01:02 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2013-10-24 12:25 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {011436A8-8FF0-4ACB-9FB7-E481C450FF19} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-24] (Adobe Systems Incorporated)
Task: {089F7558-76BA-417C-BF3E-6D49D624CA4A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0CF012FF-7E49-4E57-85A7-FA5FA807A34D} - System32\Tasks\{0791B258-94E1-4387-8AE6-CFD9DE0B379B} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {138BBC82-8FA6-412F-B7E2-1F42157A44B7} - System32\Tasks\{4322F264-6326-48F0-9E35-439E30A91324} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {191F9D3D-88FD-4714-9F07-15C997720901} - System32\Tasks\{CA856E06-A8E5-4980-9E39-71CE9C3C1729} => pcalua.exe -a "C:\Program Files (x86)\Games\WoW Beta\World of Warcraft Beta\World of Warcraft Beta Launcher.exe" -d "C:\Program Files (x86)\Games\WoW Beta\World of Warcraft Beta\"
Task: {1CA98BA9-7F17-46DD-827A-3BA15558DC43} - System32\Tasks\{F735B022-7B0C-4AC9-B996-F195FD0694B5} => Chrome.exe hxxp://ui.skype.com/ui/0/6.9.0.106/de/abandoninstall?page=tsProgressBar
Task: {34CB8BAB-2C53-4F03-8521-20454AE725FE} - System32\Tasks\{97567952-9BBF-415A-BB32-9986B790436B} => pcalua.exe -a "C:\Users\pc\Downloads\World of Warcraft Beta Setup.exe" -d C:\Users\pc\Downloads
Task: {4855E15C-5BEC-406E-A5CA-59AD9857F27D} - System32\Tasks\{5EB82005-0DA8-4CFA-84D9-918A8811184D} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {5A49C344-1339-4237-815B-A474FEE06ED6} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
Task: {60DCD8A7-4A19-460D-B344-F73AC1487583} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
Task: {726E4403-3EF5-4A53-A57E-472AF4F57065} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20] (Google Inc.)
Task: {7808C3E0-CEBC-4D40-A7DB-74EBC9665971} - System32\Tasks\{FEF7769C-0D4E-4A2D-89F6-C22129A04338} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {93804795-B8BB-490F-8705-66A7EB8C6AAF} - System32\Tasks\{A9DD6843-FDDB-4773-96F4-B1EA314F950C} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.)
Task: {A990D147-2699-42C9-9102-5014ABBB33B5} - System32\Tasks\{20C01417-9AAB-4FA3-B722-F0CC174AA673} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {B1411A5D-1E7B-484B-A557-95759E78A107} - System32\Tasks\{C75F808C-C8C5-4E08-8CB2-B5C93CCDA135} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar
Task: {B44074BA-5EAC-4298-BF21-E3C242EF25EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20] (Google Inc.)
Task: {C4E95228-45CE-41D0-8A1C-ACE4E6E3FBF4} - System32\Tasks\{2F30BD95-1E18-4B2D-A21B-C642AB34DA81} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {C78350E8-E605-40D2-8BDD-4412E89F9EF8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-02] (AVAST Software)
Task: {E8891B14-3275-41C8-9B68-0897A7BB0064} - System32\Tasks\{5C37157B-69CF-4AAC-8735-E5649D39E62D} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {FEDB6671-DA14-44EB-A992-1AD87F4C6BCB} - System32\Tasks\{1CFC3E6C-E7A0-4C66-A19A-69EC5DD66DB5} => pcalua.exe -a D:\setup.exe -d D:\
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-11-18 16:07 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-13 14:50 - 2014-11-15 11:36 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-08-09 21:25 - 2013-03-06 13:42 - 00253776 ____N () C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
2014-12-02 18:29 - 2014-12-02 18:29 - 00388208 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxDDU.dll
2014-12-02 18:29 - 2014-12-02 18:29 - 05851328 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxRT.dll
2011-02-07 23:44 - 2011-02-07 23:44 - 03046808 _____ () C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
2010-12-20 17:10 - 2009-05-07 09:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2010-12-20 17:10 - 2009-05-07 09:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2010-12-20 17:10 - 2008-01-18 07:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2010-12-20 17:10 - 2009-11-03 04:12 - 47601664 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00374840 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2015-01-31 11:04 - 2015-01-31 11:04 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15013100\algo.dll
2014-12-02 18:29 - 2014-12-02 18:29 - 04495336 _____ () C:\Program Files\AVAST Software\Avast\ng\vbox\x86\VBoxRT-x86.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-12-20 18:17 - 1998-10-31 10:55 - 00005120 _____ () C:\Program Files (x86)\EXPERTool\TBManage.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 36966968 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libcef.dll
2014-12-16 23:37 - 2014-12-16 23:37 - 01800192 _____ () C:\Program Files (x86)\GoPro\Tools\Importer\GPSDKAnalyticsNet.dll
2014-12-02 18:29 - 2014-12-02 18:30 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00750080 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-01-31 15:15 - 2015-01-31 15:15 - 00043008 _____ () c:\users\pc\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp5c0z2l.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00047616 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\libEGL.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00863744 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00200704 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00867896 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00886840 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00108600 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libegl.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:054203E4
AlternateDataStreams: C:\ProgramData\TEMP:05EE1EEF
AlternateDataStreams: C:\Users\pc\Desktop\Bescheinigungen und Zeugnisse.pdf:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-648632289-941596113-564908001-500 - Administrator - Disabled)
ASPNET (S-1-5-21-648632289-941596113-564908001-1002 - Limited - Enabled)
Gast (S-1-5-21-648632289-941596113-564908001-501 - Limited - Disabled)
pc (S-1-5-21-648632289-941596113-564908001-1000 - Administrator - Enabled) => C:\Users\pc

==================== Faulty Device Manager Devices =============

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/31/2015 09:04:38 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2015 03:25:39 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2015 03:24:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2015 03:24:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2015 03:24:06 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2015 03:23:53 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (01/31/2015 03:19:20 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/31/2015 02:51:58 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/31/2015 02:39:11 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/31/2015 11:06:11 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127


System errors:
=============
Error: (01/31/2015 03:18:41 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (01/31/2015 03:16:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/31/2015 03:12:13 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (01/31/2015 02:53:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "NVIDIA Stereoscopic 3D Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (01/31/2015 02:52:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (01/31/2015 02:51:30 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst avast! Antivirus erreicht.

Error: (01/31/2015 02:50:00 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (01/31/2015 02:46:35 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x000000f4 (0x0000000000000006, 0xfffffa80059e9b50, 0xfffffa80059e4e10, 0xfffff800039814d0)C:\Windows\MEMORY.DMP013115-31605-01

Error: (01/31/2015 02:46:35 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎31.‎01.‎2015 um 14:44:11 unerwartet heruntergefahren.

Error: (01/31/2015 02:41:23 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}


Microsoft Office Sessions:
=========================
Error: (01/22/2014 07:29:16 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 1186 seconds with 1080 seconds of active time.  This session ended with a crash.

Error: (06/05/2012 09:32:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 191818 seconds with 14520 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-09-11 20:50:27.135
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-09-11 20:50:26.915
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-09-11 20:50:21.749
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-09-11 20:50:21.546
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-24 13:22:44.786
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-24 13:22:44.644
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:58:22.277
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:58:22.093
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:57:40.192
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-02-28 00:57:39.930
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 66%
Total physical RAM: 4055.05 MB
Available physical RAM: 1350.07 MB
Total Pagefile: 8108.29 MB
Available Pagefile: 4530.47 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.41 GB) (Free:130.04 GB) NTFS
Drive e: (INTENSO) (Fixed) (Total:1629.74 GB) (Free:1427.74 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C49F2E73)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 1630.1 GB) (Disk ID: 46F5428B)
Partition 1: (Not Active) - (Size=1630.1 GB) - (Type=0C)

==================== End Of Log ============================
         

Schritt 6:

Code:
ATTFilter
Farbar Service Scanner Version: 17-01-2015
Ran by pc (administrator) on 31-01-2015 at 21:13:06
Running from "C:\Users\pc\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================


System Restore:
============

System Restore Policy: 
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****
         

Geändert von Khael (31.01.2015 um 20:14 Uhr)

Alt 01.02.2015, 11:48   #12
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Hi,

funktionieren die Windows Updates und der GraKa Treiber wieder?

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
C:\Dokumente und Einstellungen\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe
C:\Dokumente und Einstellungen\pc\Downloads\GoPro Studio - CHIP-Installer.exe
C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe
C:\Users\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe
C:\Users\pc\Downloads\GoPro Studio - CHIP-Installer.exe
C:\Users\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
C:\Users\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.

__________________
Gruß Aneri
Mitglied von UNITE

Lob oder Kritik? hier wirst du es los

Alt 01.02.2015, 12:19   #13
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2015
Ran by pc at 2015-02-01 13:17:45 Run:2
Running from C:\Users\pc\Desktop
Loaded Profiles: pc (Available profiles: pc)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Dokumente und Einstellungen\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe
C:\Dokumente und Einstellungen\pc\Downloads\GoPro Studio - CHIP-Installer.exe
C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe
C:\Users\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe
C:\Users\pc\Downloads\GoPro Studio - CHIP-Installer.exe
C:\Users\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe
C:\Users\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!
*****************

C:\Dokumente und Einstellungen\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe => Moved successfully.
C:\Dokumente und Einstellungen\pc\Downloads\GoPro Studio - CHIP-Installer.exe => Moved successfully.
C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe => Moved successfully.
C:\Dokumente und Einstellungen\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe => Moved successfully.
"C:\Users\pc\AppData\Local\PMB Files\Upgrade41270\PMB_updater.exe" => File/Directory not found.
"C:\Users\pc\Downloads\GoPro Studio - CHIP-Installer.exe" => File/Directory not found.
"C:\Users\pc\Downloads\TeamSpeak 3 32 Bit - CHIP-Downloader.exe" => File/Directory not found.
"C:\Users\pc\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe" => File/Directory not found.
"HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Classes\exefile" => Key deleted successfully.

==== End of Fixlog 13:17:47 ====
         


Die Treiber und Updates lassen sich trotzdem alle nicht installieren.
Beim Graka Treiber kommt nur die Meldung "An unknown error has occured." und beim Updateversuch von Windows kommt "Update wurde nicht installiert. Fehler: Code 1. Unbekannter Fehler bei Windows Update."

Geändert von Khael (01.02.2015 um 12:25 Uhr)

Alt 01.02.2015, 15:19   #14
Aneri
/// Malwareteam
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Hi,

Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
Gruß Aneri
Mitglied von UNITE

Lob oder Kritik? hier wirst du es los

Alt 01.02.2015, 15:48   #15
Khael
 
Windows Updates und Grafikkartentreiber Update nicht möglich - Standard

Windows Updates und Grafikkartentreiber Update nicht möglich



Er hat nichts gefunden:


Code:
ATTFilter
16:44:34.0660 0x1e70  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
16:44:40.0653 0x1e70  ============================================================
16:44:40.0653 0x1e70  Current date / time: 2015/02/01 16:44:40.0653
16:44:40.0653 0x1e70  SystemInfo:
16:44:40.0654 0x1e70  
16:44:40.0654 0x1e70  OS Version: 6.1.7601 ServicePack: 1.0
16:44:40.0654 0x1e70  Product type: Workstation
16:44:40.0654 0x1e70  ComputerName: PC-PC
16:44:40.0654 0x1e70  UserName: pc
16:44:40.0654 0x1e70  Windows directory: C:\Windows
16:44:40.0654 0x1e70  System windows directory: C:\Windows
16:44:40.0654 0x1e70  Running under WOW64
16:44:40.0654 0x1e70  Processor architecture: Intel x64
16:44:40.0654 0x1e70  Number of processors: 8
16:44:40.0654 0x1e70  Page size: 0x1000
16:44:40.0654 0x1e70  Boot type: Normal boot
16:44:40.0654 0x1e70  ============================================================
16:44:42.0634 0x1e70  KLMD registered as C:\Windows\system32\drivers\48110670.sys
16:44:43.0634 0x1e70  System UUID: {CCB5A184-455B-2A76-D61E-B742AC949650}
16:44:45.0406 0x1e70  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:44:45.0475 0x1e70  Drive \Device\Harddisk1\DR1 - Size: 0x1978903E000 ( 1630.14 Gb ), SectorSize: 0x200, Cylinders: 0x33F41, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:44:45.0680 0x1e70  ============================================================
16:44:45.0680 0x1e70  \Device\Harddisk0\DR0:
16:44:45.0714 0x1e70  MBR partitions:
16:44:45.0714 0x1e70  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:44:45.0714 0x1e70  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D4000
16:44:45.0714 0x1e70  \Device\Harddisk1\DR1:
16:44:45.0714 0x1e70  MBR partitions:
16:44:45.0714 0x1e70  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x800, BlocksNum 0xCBC46601
16:44:45.0714 0x1e70  ============================================================
16:44:45.0807 0x1e70  C: <-> \Device\Harddisk0\DR0\Partition2
16:44:45.0834 0x1e70  E: <-> \Device\Harddisk1\DR1\Partition1
16:44:46.0309 0x1e70  ============================================================
16:44:46.0310 0x1e70  Initialize success
16:44:46.0310 0x1e70  ============================================================
16:45:30.0888 0x0d24  ============================================================
16:45:30.0888 0x0d24  Scan started
16:45:30.0888 0x0d24  Mode: Manual; SigCheck; TDLFS; 
16:45:30.0888 0x0d24  ============================================================
16:45:30.0888 0x0d24  KSN ping started
16:45:33.0535 0x0d24  KSN ping finished: true
16:45:37.0007 0x0d24  ================ Scan system memory ========================
16:45:37.0007 0x0d24  System memory - ok
16:45:37.0008 0x0d24  ================ Scan services =============================
16:45:37.0128 0x0d24  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:45:38.0068 0x0d24  1394ohci - ok
16:45:38.0134 0x0d24  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:45:38.0224 0x0d24  ACPI - ok
16:45:38.0259 0x0d24  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:45:38.0446 0x0d24  AcpiPmi - ok
16:45:38.0581 0x0d24  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:45:38.0789 0x0d24  AdobeARMservice - ok
16:45:38.0886 0x0d24  [ A2A9C100FE1BE20A76C0B80D4CA44103, C34B4A31C8563E29EC6A3D318C40075F43C891C23D156F53EE2102C959B7887F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:45:39.0005 0x0d24  AdobeFlashPlayerUpdateSvc - ok
16:45:39.0048 0x0d24  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:45:39.0197 0x0d24  adp94xx - ok
16:45:39.0243 0x0d24  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:45:39.0343 0x0d24  adpahci - ok
16:45:39.0369 0x0d24  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:45:39.0438 0x0d24  adpu320 - ok
16:45:39.0471 0x0d24  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:45:40.0564 0x0d24  AeLookupSvc - ok
16:45:40.0649 0x0d24  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
16:45:40.0977 0x0d24  AFD - ok
16:45:41.0031 0x0d24  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:45:41.0102 0x0d24  agp440 - ok
16:45:41.0141 0x0d24  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:45:41.0307 0x0d24  ALG - ok
16:45:41.0360 0x0d24  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:45:41.0492 0x0d24  aliide - ok
16:45:41.0515 0x0d24  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:45:41.0598 0x0d24  amdide - ok
16:45:41.0639 0x0d24  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:45:41.0797 0x0d24  AmdK8 - ok
16:45:41.0825 0x0d24  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:45:41.0942 0x0d24  AmdPPM - ok
16:45:41.0976 0x0d24  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:45:42.0046 0x0d24  amdsata - ok
16:45:42.0075 0x0d24  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:45:42.0162 0x0d24  amdsbs - ok
16:45:42.0190 0x0d24  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:45:42.0280 0x0d24  amdxata - ok
16:45:42.0324 0x0d24  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\Windows\system32\drivers\appid.sys
16:45:42.0499 0x0d24  AppID - ok
16:45:42.0524 0x0d24  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:45:42.0584 0x0d24  AppIDSvc - ok
16:45:42.0632 0x0d24  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:45:42.0813 0x0d24  Appinfo - ok
16:45:42.0934 0x0d24  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:45:43.0098 0x0d24  Apple Mobile Device - ok
16:45:43.0157 0x0d24  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:45:43.0288 0x0d24  arc - ok
16:45:43.0333 0x0d24  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:45:43.0406 0x0d24  arcsas - ok
16:45:43.0516 0x0d24  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:45:43.0695 0x0d24  aspnet_state - ok
16:45:43.0753 0x0d24  [ 9BE9F2B83DE80E2752B1405CC427E2EC, 6015CA66553B3B882083B33F24FB338249A110D9769831C3D3D3C681AAFA9411 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
16:45:43.0813 0x0d24  aswHwid - ok
16:45:43.0855 0x0d24  [ 2DA1C1AEDF454F8E32A863A1AEACDD8C, F02E4D197AE00B9A9507CF6007A7B7BEA54AF0F255B752FBA7174FA2596D1CA9 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
16:45:43.0940 0x0d24  aswMonFlt - ok
16:45:44.0000 0x0d24  [ 4750016EF9CC1DEC6DA3FE5AF9A7F095, C4CF46246D8A3FF9BD8D2FE899685654ADD45EB9B032F33804D0B8131882BC74 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
16:45:44.0089 0x0d24  aswRdr - ok
16:45:44.0123 0x0d24  [ 1323269A92645705DEFA053F3596829D, 83EC58E0577A1E45D1FCBC0C0AF182099FB70B9005B9F8161166EBB4E9F58F35 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
16:45:44.0178 0x0d24  aswRvrt - ok
16:45:44.0276 0x0d24  [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
16:45:44.0404 0x0d24  aswSnx - ok
16:45:44.0456 0x0d24  [ B1881A01E301990B671694CA1623F1B6, 5299C713EA7CF96F0550943DB37E963CDA09258F65C471CCEEAB44C4736B7A08 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
16:45:44.0550 0x0d24  aswSP - ok
16:45:44.0587 0x0d24  [ 7509F07BA6F84C1E3B2C0D78A1F6F782, A90A36E8E23F58E430DE98B3623688DC09D34B62906EF7796DFC90F581FC385F ] aswStm          C:\Windows\system32\drivers\aswStm.sys
16:45:44.0678 0x0d24  aswStm - ok
16:45:44.0716 0x0d24  [ 1A5BDDE65B648DC3AD48B6ECAA3AE9C8, 858F674C3B775F9C8C782B7AFAC0B02AE9410C9F3B7F5B3AE1C4AD3BF6448C14 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
16:45:44.0838 0x0d24  aswVmm - ok
16:45:44.0860 0x0d24  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:45:44.0946 0x0d24  AsyncMac - ok
16:45:44.0975 0x0d24  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:45:45.0028 0x0d24  atapi - ok
16:45:45.0092 0x0d24  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:45:45.0279 0x0d24  AudioEndpointBuilder - ok
16:45:45.0300 0x0d24  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:45:45.0337 0x0d24  AudioSrv - ok
16:45:45.0442 0x0d24  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:45:45.0555 0x0d24  avast! Antivirus - ok
16:45:45.0753 0x0d24  [ 4F4EBF6163D3A02D52A66BBD145B0069, 179B2FD2671F6BB8D3F77B39001F546A0DEBE85BFF9782060AF1DC50DFA071EF ] AvastVBoxSvc    C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
16:45:45.0972 0x0d24  AvastVBoxSvc - ok
16:45:46.0076 0x0d24  [ C6F4C466B654C1BE98AF31418BB5AC30, 62AA4456F8E22A6E508EB44DE4309615057117AAF923C13BBED15AA39630E76B ] AVM WLAN Connection Service C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
16:45:46.0242 0x0d24  AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic ( 1 )
16:45:48.0839 0x0d24  Detect skipped due to KSN trusted
16:45:48.0839 0x0d24  AVM WLAN Connection Service - ok
16:45:48.0894 0x0d24  [ 1DC2F715792CF33428AD7993ACBD224D, 129FBD517E016914CD61C35894C0B9B2074E680F1EB21201597E5C13CAF4529F ] avmeject        C:\Windows\system32\drivers\avmeject.sys
16:45:48.0961 0x0d24  avmeject - ok
16:45:49.0009 0x0d24  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:45:49.0201 0x0d24  AxInstSV - ok
16:45:49.0235 0x0d24  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
16:45:49.0370 0x0d24  b06bdrv - ok
16:45:49.0413 0x0d24  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:45:49.0512 0x0d24  b57nd60a - ok
16:45:49.0549 0x0d24  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:45:49.0657 0x0d24  BDESVC - ok
16:45:49.0679 0x0d24  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:45:49.0770 0x0d24  Beep - ok
16:45:49.0852 0x0d24  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:45:50.0048 0x0d24  BFE - ok
16:45:50.0104 0x0d24  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
16:45:50.0374 0x0d24  BITS - ok
16:45:50.0405 0x0d24  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:45:50.0453 0x0d24  blbdrive - ok
16:45:50.0530 0x0d24  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:45:50.0666 0x0d24  Bonjour Service - ok
16:45:50.0718 0x0d24  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:45:50.0889 0x0d24  bowser - ok
16:45:50.0919 0x0d24  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:45:51.0019 0x0d24  BrFiltLo - ok
16:45:51.0027 0x0d24  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:45:51.0096 0x0d24  BrFiltUp - ok
16:45:51.0218 0x0d24  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:45:51.0345 0x0d24  BridgeMP - ok
16:45:51.0472 0x0d24  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:45:51.0579 0x0d24  Browser - ok
16:45:51.0601 0x0d24  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:45:51.0737 0x0d24  Brserid - ok
16:45:51.0764 0x0d24  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:45:51.0806 0x0d24  BrSerWdm - ok
16:45:51.0823 0x0d24  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:45:51.0999 0x0d24  BrUsbMdm - ok
16:45:52.0025 0x0d24  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:45:52.0100 0x0d24  BrUsbSer - ok
16:45:52.0123 0x0d24  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:45:52.0196 0x0d24  BTHMODEM - ok
16:45:52.0229 0x0d24  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:45:52.0308 0x0d24  bthserv - ok
16:45:52.0334 0x0d24  catchme - ok
16:45:52.0348 0x0d24  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:45:52.0478 0x0d24  cdfs - ok
16:45:52.0535 0x0d24  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:45:52.0558 0x0d24  cdrom - ok
16:45:52.0597 0x0d24  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:45:52.0669 0x0d24  CertPropSvc - ok
16:45:52.0698 0x0d24  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:45:52.0791 0x0d24  circlass - ok
16:45:52.0827 0x0d24  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:45:52.0908 0x0d24  CLFS - ok
16:45:52.0982 0x0d24  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:45:53.0064 0x0d24  clr_optimization_v2.0.50727_32 - ok
16:45:53.0121 0x0d24  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:45:53.0173 0x0d24  clr_optimization_v2.0.50727_64 - ok
16:45:53.0262 0x0d24  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:45:53.0447 0x0d24  clr_optimization_v4.0.30319_32 - ok
16:45:53.0477 0x0d24  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:45:53.0594 0x0d24  clr_optimization_v4.0.30319_64 - ok
16:45:53.0633 0x0d24  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:45:53.0699 0x0d24  CmBatt - ok
16:45:53.0749 0x0d24  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:45:53.0811 0x0d24  cmdide - ok
16:45:53.0860 0x0d24  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:45:53.0906 0x0d24  CNG - ok
16:45:53.0920 0x0d24  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:45:53.0960 0x0d24  Compbatt - ok
16:45:53.0994 0x0d24  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:45:54.0115 0x0d24  CompositeBus - ok
16:45:54.0139 0x0d24  COMSysApp - ok
16:45:54.0147 0x0d24  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:45:54.0206 0x0d24  crcdisk - ok
16:45:54.0249 0x0d24  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:45:54.0380 0x0d24  CryptSvc - ok
16:45:54.0425 0x0d24  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:45:54.0510 0x0d24  DcomLaunch - ok
16:45:54.0557 0x0d24  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:45:54.0712 0x0d24  defragsvc - ok
16:45:54.0754 0x0d24  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:45:54.0800 0x0d24  DfsC - ok
16:45:54.0844 0x0d24  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:45:54.0965 0x0d24  Dhcp - ok
16:45:54.0990 0x0d24  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:45:55.0104 0x0d24  discache - ok
16:45:55.0139 0x0d24  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:45:55.0172 0x0d24  Disk - ok
16:45:55.0211 0x0d24  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:45:55.0324 0x0d24  Dnscache - ok
16:45:55.0364 0x0d24  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:45:55.0479 0x0d24  dot3svc - ok
16:45:55.0525 0x0d24  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:45:55.0638 0x0d24  DPS - ok
16:45:55.0680 0x0d24  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:45:55.0741 0x0d24  drmkaud - ok
16:45:55.0804 0x0d24  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:45:55.0856 0x0d24  DXGKrnl - ok
16:45:55.0877 0x0d24  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:45:55.0933 0x0d24  EapHost - ok
16:45:56.0016 0x0d24  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
16:45:56.0190 0x0d24  ebdrv - ok
16:45:56.0229 0x0d24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
16:45:56.0369 0x0d24  EFS - ok
16:45:56.0493 0x0d24  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:45:56.0663 0x0d24  ehRecvr - ok
16:45:56.0706 0x0d24  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:45:56.0804 0x0d24  ehSched - ok
16:45:56.0850 0x0d24  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:45:56.0907 0x0d24  elxstor - ok
16:45:56.0939 0x0d24  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:45:56.0999 0x0d24  ErrDev - ok
16:45:57.0040 0x0d24  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:45:57.0124 0x0d24  EventSystem - ok
16:45:57.0151 0x0d24  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:45:57.0204 0x0d24  exfat - ok
16:45:57.0220 0x0d24  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:45:57.0295 0x0d24  fastfat - ok
16:45:57.0333 0x0d24  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:45:57.0437 0x0d24  Fax - ok
16:45:57.0463 0x0d24  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:45:57.0514 0x0d24  fdc - ok
16:45:57.0537 0x0d24  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:45:57.0621 0x0d24  fdPHost - ok
16:45:57.0643 0x0d24  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:45:57.0763 0x0d24  FDResPub - ok
16:45:57.0784 0x0d24  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:45:57.0829 0x0d24  FileInfo - ok
16:45:57.0842 0x0d24  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:45:57.0935 0x0d24  Filetrace - ok
16:45:57.0961 0x0d24  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:45:57.0996 0x0d24  flpydisk - ok
16:45:58.0011 0x0d24  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:45:58.0064 0x0d24  FltMgr - ok
16:45:58.0145 0x0d24  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:45:58.0355 0x0d24  FontCache - ok
16:45:58.0408 0x0d24  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:45:58.0445 0x0d24  FontCache3.0.0.0 - ok
16:45:58.0454 0x0d24  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:45:58.0490 0x0d24  FsDepends - ok
16:45:58.0523 0x0d24  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:45:58.0547 0x0d24  Fs_Rec - ok
16:45:58.0582 0x0d24  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:45:58.0648 0x0d24  fvevol - ok
16:45:58.0736 0x0d24  [ 15585492E45E2F30768B2D5B57929D99, C5E6A943C78AAFE10FD9C913324083DD4B3D2F1D998A38C8B69FDEAF22246527 ] fwlanusbn       C:\Windows\system32\DRIVERS\fwlanusbn.sys
16:45:58.0846 0x0d24  fwlanusbn - ok
16:45:58.0872 0x0d24  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:45:58.0904 0x0d24  gagp30kx - ok
16:45:58.0953 0x0d24  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:45:59.0063 0x0d24  GEARAspiWDM - ok
16:45:59.0127 0x0d24  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:45:59.0250 0x0d24  gpsvc - ok
16:45:59.0315 0x0d24  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:45:59.0356 0x0d24  gupdate - ok
16:45:59.0391 0x0d24  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:45:59.0409 0x0d24  gupdatem - ok
16:45:59.0418 0x0d24  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:45:59.0510 0x0d24  hcw85cir - ok
16:45:59.0577 0x0d24  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:45:59.0638 0x0d24  HdAudAddService - ok
16:45:59.0678 0x0d24  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
16:45:59.0754 0x0d24  HDAudBus - ok
16:45:59.0787 0x0d24  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
16:45:59.0835 0x0d24  HECIx64 - ok
16:45:59.0861 0x0d24  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:45:59.0974 0x0d24  HidBatt - ok
16:45:59.0997 0x0d24  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:46:00.0076 0x0d24  HidBth - ok
16:46:00.0098 0x0d24  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:46:00.0141 0x0d24  HidIr - ok
16:46:00.0169 0x0d24  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
16:46:00.0279 0x0d24  hidserv - ok
16:46:00.0306 0x0d24  [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:46:00.0351 0x0d24  HidUsb - ok
16:46:00.0383 0x0d24  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:46:00.0468 0x0d24  hkmsvc - ok
16:46:00.0524 0x0d24  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:46:00.0623 0x0d24  HomeGroupListener - ok
16:46:00.0648 0x0d24  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:46:00.0700 0x0d24  HomeGroupProvider - ok
16:46:00.0738 0x0d24  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:46:00.0804 0x0d24  HpSAMD - ok
16:46:00.0843 0x0d24  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\Windows\system32\Drivers\ANDROIDUSB.sys
16:46:00.0894 0x0d24  HTCAND64 - detected UnsignedFile.Multi.Generic ( 1 )
16:46:03.0583 0x0d24  Detect skipped due to KSN trusted
16:46:03.0583 0x0d24  HTCAND64 - ok
16:46:03.0653 0x0d24  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:46:03.0745 0x0d24  HTTP - ok
16:46:03.0777 0x0d24  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:46:03.0818 0x0d24  hwpolicy - ok
16:46:03.0850 0x0d24  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:46:03.0893 0x0d24  i8042prt - ok
16:46:03.0921 0x0d24  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:46:03.0967 0x0d24  iaStorV - ok
16:46:04.0035 0x0d24  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:46:04.0102 0x0d24  idsvc - ok
16:46:04.0134 0x0d24  IEEtwCollectorService - ok
16:46:04.0151 0x0d24  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:46:04.0189 0x0d24  iirsp - ok
16:46:04.0245 0x0d24  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:46:04.0325 0x0d24  IKEEXT - ok
16:46:04.0358 0x0d24  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:46:04.0394 0x0d24  intelide - ok
16:46:04.0423 0x0d24  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:46:04.0502 0x0d24  intelppm - ok
16:46:04.0539 0x0d24  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:46:04.0602 0x0d24  IPBusEnum - ok
16:46:04.0619 0x0d24  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:46:04.0680 0x0d24  IpFilterDriver - ok
16:46:04.0735 0x0d24  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:46:04.0875 0x0d24  iphlpsvc - ok
16:46:04.0922 0x0d24  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:46:04.0994 0x0d24  IPMIDRV - ok
16:46:05.0030 0x0d24  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:46:05.0104 0x0d24  IPNAT - ok
16:46:05.0187 0x0d24  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:46:05.0248 0x0d24  iPod Service - ok
16:46:05.0271 0x0d24  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:46:05.0358 0x0d24  IRENUM - ok
16:46:05.0385 0x0d24  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:46:05.0436 0x0d24  isapnp - ok
16:46:05.0484 0x0d24  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:46:05.0584 0x0d24  iScsiPrt - ok
16:46:05.0608 0x0d24  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:46:05.0635 0x0d24  kbdclass - ok
16:46:05.0659 0x0d24  [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:46:05.0708 0x0d24  kbdhid - ok
16:46:05.0729 0x0d24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
16:46:05.0757 0x0d24  KeyIso - ok
16:46:05.0794 0x0d24  [ 07071C1E3CD8F0F9114AAC8B072CA1E5, F72E49D9A77BBE28B135D5DDBD9037083D90400A6D61DA45B5D53C4ACFFAF932 ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
16:46:05.0893 0x0d24  KMWDFILTER - ok
16:46:05.0932 0x0d24  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:46:05.0989 0x0d24  KSecDD - ok
16:46:06.0029 0x0d24  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:46:06.0055 0x0d24  KSecPkg - ok
16:46:06.0068 0x0d24  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:46:06.0154 0x0d24  ksthunk - ok
16:46:06.0199 0x0d24  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:46:06.0286 0x0d24  KtmRm - ok
16:46:06.0318 0x0d24  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:46:06.0404 0x0d24  LanmanServer - ok
16:46:06.0451 0x0d24  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:46:06.0539 0x0d24  LanmanWorkstation - ok
16:46:06.0568 0x0d24  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:46:06.0627 0x0d24  lltdio - ok
16:46:06.0678 0x0d24  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:46:06.0832 0x0d24  lltdsvc - ok
16:46:06.0856 0x0d24  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:46:06.0907 0x0d24  lmhosts - ok
16:46:06.0949 0x0d24  [ A1C148801B4AF64847AEB9F3AD9594EF, FF6ED89EA47DF74C33CD8BFAC48FAED1B979348ABA6B6D94EE07CBD21810F37B ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:46:07.0111 0x0d24  LMS - detected UnsignedFile.Multi.Generic ( 1 )
16:46:09.0569 0x0d24  Detect skipped due to KSN trusted
16:46:09.0569 0x0d24  LMS - ok
16:46:09.0611 0x0d24  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:46:09.0654 0x0d24  LSI_FC - ok
16:46:09.0669 0x0d24  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:46:09.0719 0x0d24  LSI_SAS - ok
16:46:09.0741 0x0d24  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:46:09.0787 0x0d24  LSI_SAS2 - ok
16:46:09.0808 0x0d24  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:46:09.0841 0x0d24  LSI_SCSI - ok
16:46:09.0849 0x0d24  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:46:09.0919 0x0d24  luafv - ok
16:46:09.0984 0x0d24  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:46:10.0045 0x0d24  Mcx2Svc - ok
16:46:10.0069 0x0d24  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:46:10.0110 0x0d24  megasas - ok
16:46:10.0148 0x0d24  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:46:10.0208 0x0d24  MegaSR - ok
16:46:10.0239 0x0d24  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:46:10.0315 0x0d24  MMCSS - ok
16:46:10.0335 0x0d24  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:46:10.0387 0x0d24  Modem - ok
16:46:10.0422 0x0d24  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:46:10.0474 0x0d24  monitor - ok
16:46:10.0516 0x0d24  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:46:10.0538 0x0d24  mouclass - ok
16:46:10.0550 0x0d24  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:46:10.0623 0x0d24  mouhid - ok
16:46:10.0652 0x0d24  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:46:10.0672 0x0d24  mountmgr - ok
16:46:10.0739 0x0d24  [ 528A5C2570F468155A1B3CF0A2FF5EBD, 473EEE97A4690A919DE05C525F0858DA9A5BD30072383D81F096F82DDFC93BAB ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:46:10.0760 0x0d24  MozillaMaintenance - ok
16:46:10.0794 0x0d24  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:46:10.0832 0x0d24  mpio - ok
16:46:10.0857 0x0d24  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:46:10.0918 0x0d24  mpsdrv - ok
16:46:10.0985 0x0d24  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:46:11.0103 0x0d24  MpsSvc - ok
16:46:11.0139 0x0d24  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:46:11.0196 0x0d24  MRxDAV - ok
16:46:11.0226 0x0d24  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:46:11.0333 0x0d24  mrxsmb - ok
16:46:11.0382 0x0d24  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:46:11.0443 0x0d24  mrxsmb10 - ok
16:46:11.0466 0x0d24  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:46:11.0512 0x0d24  mrxsmb20 - ok
16:46:11.0553 0x0d24  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:46:11.0605 0x0d24  msahci - ok
16:46:11.0639 0x0d24  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:46:11.0746 0x0d24  msdsm - ok
16:46:11.0780 0x0d24  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:46:11.0828 0x0d24  MSDTC - ok
16:46:11.0847 0x0d24  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:46:11.0927 0x0d24  Msfs - ok
16:46:11.0930 0x0d24  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:46:12.0006 0x0d24  mshidkmdf - ok
16:46:12.0036 0x0d24  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:46:12.0076 0x0d24  msisadrv - ok
16:46:12.0118 0x0d24  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:46:12.0188 0x0d24  MSiSCSI - ok
16:46:12.0191 0x0d24  msiserver - ok
16:46:12.0238 0x0d24  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:46:12.0316 0x0d24  MSKSSRV - ok
16:46:12.0340 0x0d24  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:46:12.0379 0x0d24  MSPCLOCK - ok
16:46:12.0393 0x0d24  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:46:12.0476 0x0d24  MSPQM - ok
16:46:12.0556 0x0d24  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:46:12.0718 0x0d24  MsRPC - ok
16:46:12.0738 0x0d24  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:46:12.0784 0x0d24  mssmbios - ok
16:46:12.0810 0x0d24  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:46:12.0873 0x0d24  MSTEE - ok
16:46:12.0896 0x0d24  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:46:13.0003 0x0d24  MTConfig - ok
16:46:13.0173 0x0d24  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
16:46:13.0306 0x0d24  MTsensor - ok
16:46:13.0348 0x0d24  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:46:13.0388 0x0d24  Mup - ok
16:46:13.0465 0x0d24  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:46:13.0553 0x0d24  napagent - ok
16:46:14.0156 0x0d24  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:46:14.0355 0x0d24  NativeWifiP - ok
16:46:14.0504 0x0d24  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:46:14.0595 0x0d24  NDIS - ok
16:46:14.0686 0x0d24  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:46:14.0864 0x0d24  NdisCap - ok
16:46:14.0905 0x0d24  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:46:15.0000 0x0d24  NdisTapi - ok
16:46:15.0120 0x0d24  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:46:15.0211 0x0d24  Ndisuio - ok
16:46:15.0263 0x0d24  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:46:15.0361 0x0d24  NdisWan - ok
16:46:15.0443 0x0d24  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:46:15.0533 0x0d24  NDProxy - ok
16:46:15.0573 0x0d24  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:46:15.0703 0x0d24  NetBIOS - ok
16:46:15.0781 0x0d24  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:46:15.0885 0x0d24  NetBT - ok
16:46:15.0905 0x0d24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
16:46:15.0969 0x0d24  Netlogon - ok
16:46:16.0065 0x0d24  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:46:16.0152 0x0d24  Netman - ok
16:46:16.0197 0x0d24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:46:16.0349 0x0d24  NetMsmqActivator - ok
16:46:16.0355 0x0d24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:46:16.0377 0x0d24  NetPipeActivator - ok
16:46:16.0431 0x0d24  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:46:16.0518 0x0d24  netprofm - ok
16:46:16.0539 0x0d24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:46:16.0560 0x0d24  NetTcpActivator - ok
16:46:16.0571 0x0d24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:46:16.0593 0x0d24  NetTcpPortSharing - ok
16:46:16.0707 0x0d24  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:46:16.0793 0x0d24  nfrd960 - ok
16:46:16.0852 0x0d24  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:46:17.0005 0x0d24  NlaSvc - ok
16:46:17.0037 0x0d24  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:46:17.0114 0x0d24  Npfs - ok
16:46:17.0136 0x0d24  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:46:17.0201 0x0d24  nsi - ok
16:46:17.0219 0x0d24  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:46:17.0271 0x0d24  nsiproxy - ok
16:46:17.0354 0x0d24  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:46:17.0435 0x0d24  Ntfs - ok
16:46:17.0457 0x0d24  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:46:17.0529 0x0d24  Null - ok
16:46:17.0605 0x0d24  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
16:46:17.0649 0x0d24  NVHDA - ok
16:46:18.0751 0x0d24  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:46:19.0245 0x0d24  nvlddmkm - ok
16:46:19.0350 0x0d24  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:46:19.0393 0x0d24  nvraid - ok
16:46:19.0419 0x0d24  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:46:19.0460 0x0d24  nvstor - ok
16:46:19.0538 0x0d24  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] NVSvc           C:\Windows\system32\nvvsvc.exe
16:46:19.0603 0x0d24  NVSvc - ok
16:46:19.0627 0x0d24  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:46:19.0691 0x0d24  nv_agp - ok
16:46:19.0832 0x0d24  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:46:19.0884 0x0d24  odserv - ok
16:46:19.0904 0x0d24  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:46:19.0953 0x0d24  ohci1394 - ok
16:46:19.0978 0x0d24  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:46:20.0017 0x0d24  ose - ok
16:46:20.0070 0x0d24  [ DAF5D6B1696D42140839CD557336EFC8, DF5E16BFC27FB718C4C5F2FC8B20380D25A58B52E7F221957C0919C3F6D99833 ] OXSDIDRV_x64    C:\Windows\system32\DRIVERS\OXSDIDRV_x64.sys
16:46:20.0120 0x0d24  OXSDIDRV_x64 - ok
16:46:20.0198 0x0d24  [ D77856902312AB9129C966F64A3AC430, E0E9C8085EEC16B4D15275DB39FC906761F1F3CBE6A3D45D383977A9F1348DAE ] OXUDIDRV        C:\Windows\system32\Drivers\OXUDIDRV_X64.sys
16:46:20.0236 0x0d24  OXUDIDRV - ok
16:46:20.0308 0x0d24  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:46:20.0493 0x0d24  p2pimsvc - ok
16:46:20.0525 0x0d24  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:46:20.0589 0x0d24  p2psvc - ok
16:46:20.0671 0x0d24  [ 3A6DCEB1848470320E4A3C12D7A35B1C, B1BF8305CEC4F5AC250B8EC8C36B93F90E6DDD267AFAAF654A0D6AD555A7FA92 ] PAC207          C:\Windows\system32\DRIVERS\PFC027.SYS
16:46:20.0734 0x0d24  PAC207 - ok
16:46:20.0769 0x0d24  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:46:20.0810 0x0d24  Parport - ok
16:46:20.0848 0x0d24  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:46:20.0877 0x0d24  partmgr - ok
16:46:20.0916 0x0d24  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:46:21.0000 0x0d24  PcaSvc - ok
16:46:21.0046 0x0d24  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:46:21.0081 0x0d24  pci - ok
16:46:21.0110 0x0d24  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:46:21.0128 0x0d24  pciide - ok
16:46:21.0140 0x0d24  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:46:21.0171 0x0d24  pcmcia - ok
16:46:21.0182 0x0d24  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:46:21.0216 0x0d24  pcw - ok
16:46:21.0249 0x0d24  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:46:21.0334 0x0d24  PEAUTH - ok
16:46:21.0391 0x0d24  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:46:21.0449 0x0d24  PerfHost - ok
16:46:21.0516 0x0d24  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:46:21.0742 0x0d24  pla - ok
16:46:21.0904 0x0d24  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:46:22.0006 0x0d24  PlugPlay - ok
16:46:22.0024 0x0d24  PnkBstrA - ok
16:46:22.0046 0x0d24  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:46:22.0077 0x0d24  PNRPAutoReg - ok
16:46:22.0096 0x0d24  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:46:22.0151 0x0d24  PNRPsvc - ok
16:46:22.0243 0x0d24  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:46:22.0329 0x0d24  PolicyAgent - ok
16:46:22.0350 0x0d24  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
16:46:22.0400 0x0d24  Power - ok
16:46:22.0414 0x0d24  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:46:22.0465 0x0d24  PptpMiniport - ok
16:46:22.0494 0x0d24  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:46:22.0547 0x0d24  Processor - ok
16:46:22.0583 0x0d24  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:46:22.0654 0x0d24  ProfSvc - ok
16:46:22.0672 0x0d24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:46:22.0700 0x0d24  ProtectedStorage - ok
16:46:22.0767 0x0d24  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:46:22.0804 0x0d24  Psched - ok
16:46:22.0873 0x0d24  [ FB46E9A827A8799EBD7BFA9128C91F37, 7C40E9C1720522D76AF45A588DFF47BDF0E2A99AF3A396854A00F1273EA13193 ] PSI             C:\Windows\system32\DRIVERS\psi_mf.sys
16:46:22.0918 0x0d24  PSI - ok
16:46:23.0105 0x0d24  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:46:23.0270 0x0d24  ql2300 - ok
16:46:23.0292 0x0d24  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:46:23.0339 0x0d24  ql40xx - ok
16:46:23.0364 0x0d24  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:46:23.0595 0x0d24  QWAVE - ok
16:46:23.0625 0x0d24  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:46:23.0711 0x0d24  QWAVEdrv - ok
16:46:23.0729 0x0d24  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:46:23.0792 0x0d24  RasAcd - ok
16:46:23.0828 0x0d24  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:46:23.0889 0x0d24  RasAgileVpn - ok
16:46:23.0961 0x0d24  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:46:24.0151 0x0d24  RasAuto - ok
16:46:24.0176 0x0d24  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:46:24.0333 0x0d24  Rasl2tp - ok
16:46:24.0401 0x0d24  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:46:24.0486 0x0d24  RasMan - ok
16:46:24.0551 0x0d24  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:46:24.0636 0x0d24  RasPppoe - ok
16:46:24.0676 0x0d24  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:46:24.0862 0x0d24  RasSstp - ok
16:46:24.0995 0x0d24  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:46:25.0154 0x0d24  rdbss - ok
16:46:25.0191 0x0d24  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:46:25.0325 0x0d24  rdpbus - ok
16:46:25.0361 0x0d24  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:46:25.0497 0x0d24  RDPCDD - ok
16:46:25.0595 0x0d24  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:46:25.0714 0x0d24  RDPENCDD - ok
16:46:25.0744 0x0d24  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:46:25.0779 0x0d24  RDPREFMP - ok
16:46:26.0074 0x0d24  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:46:26.0674 0x0d24  RdpVideoMiniport - ok
16:46:26.0726 0x0d24  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:46:26.0832 0x0d24  RDPWD - ok
16:46:26.0911 0x0d24  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:46:27.0323 0x0d24  rdyboost - ok
16:46:27.0582 0x0d24  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:46:27.0670 0x0d24  RemoteAccess - ok
16:46:27.0696 0x0d24  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:46:27.0803 0x0d24  RemoteRegistry - ok
16:46:28.0108 0x0d24  [ C80B807993953B347402BC3D530C8180, 7008BC5C6418D73F08C42A970B45565A99E487B16379493BCCFE99444D2CEBD3 ] RichVideo       C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
16:46:28.0269 0x0d24  RichVideo - ok
16:46:28.0350 0x0d24  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:46:28.0425 0x0d24  RpcEptMapper - ok
16:46:28.0505 0x0d24  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:46:28.0605 0x0d24  RpcLocator - ok
16:46:28.0680 0x0d24  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
16:46:28.0738 0x0d24  RpcSs - ok
16:46:28.0805 0x0d24  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:46:28.0910 0x0d24  rspndr - ok
16:46:29.0027 0x0d24  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:46:29.0081 0x0d24  RTL8167 - ok
16:46:29.0102 0x0d24  RTL8192cu - ok
16:46:29.0105 0x0d24  rtlss - ok
16:46:29.0148 0x0d24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
16:46:29.0243 0x0d24  SamSs - ok
16:46:29.0409 0x0d24  [ B38103F1B78072D53EC23AC8287A72C2, B502C6AD64DC3D1185086623D32C275CEAF1F50BE22011B2B7F55B7FC0135857 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
16:46:29.0481 0x0d24  SbieDrv - ok
16:46:29.0526 0x0d24  [ 542B3B5219AA6CE3E55B7C70021C0C35, B47E23E647AAD7C88DE7116F11973D3E6B7423A13B4F0709F2A11CC405423E10 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
16:46:29.0649 0x0d24  SbieSvc - ok
16:46:29.0689 0x0d24  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:46:29.0749 0x0d24  sbp2port - ok
16:46:29.0872 0x0d24  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:46:30.0010 0x0d24  SCardSvr - ok
16:46:30.0058 0x0d24  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:46:30.0117 0x0d24  scfilter - ok
16:46:30.0361 0x0d24  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:46:30.0583 0x0d24  Schedule - ok
16:46:30.0626 0x0d24  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:46:30.0701 0x0d24  SCPolicySvc - ok
16:46:30.0806 0x0d24  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:46:30.0972 0x0d24  SDRSVC - ok
16:46:31.0013 0x0d24  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:46:31.0099 0x0d24  secdrv - ok
16:46:31.0134 0x0d24  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:46:31.0185 0x0d24  seclogon - ok
16:46:31.0293 0x0d24  [ 9901DCF2B6DD2AD12CB42BD559E0C92D, 857A91A716858348C625A1CDE7E2D9B94FCD5654E6F72104073E1DD3EE35CE93 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
16:46:31.0440 0x0d24  Secunia PSI Agent - ok
16:46:31.0501 0x0d24  [ 4F2056349F8BA4154D5213BF8A476B14, 2B0ABC151CE03C26F832F07CDAFD9A8FAE5D18B7E1197B01299B123FD821B89C ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
16:46:31.0626 0x0d24  Secunia Update Agent - ok
16:46:31.0653 0x0d24  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
16:46:31.0734 0x0d24  SENS - ok
16:46:31.0768 0x0d24  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:46:31.0828 0x0d24  SensrSvc - ok
16:46:31.0839 0x0d24  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:46:31.0971 0x0d24  Serenum - ok
16:46:32.0006 0x0d24  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:46:32.0075 0x0d24  Serial - ok
16:46:32.0111 0x0d24  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:46:32.0131 0x0d24  sermouse - ok
16:46:32.0175 0x0d24  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:46:32.0251 0x0d24  SessionEnv - ok
16:46:32.0269 0x0d24  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:46:32.0321 0x0d24  sffdisk - ok
16:46:32.0324 0x0d24  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:46:32.0349 0x0d24  sffp_mmc - ok
16:46:32.0352 0x0d24  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:46:32.0394 0x0d24  sffp_sd - ok
16:46:32.0405 0x0d24  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:46:32.0430 0x0d24  sfloppy - ok
16:46:32.0465 0x0d24  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:46:32.0525 0x0d24  SharedAccess - ok
16:46:32.0557 0x0d24  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:46:32.0629 0x0d24  ShellHWDetection - ok
16:46:32.0645 0x0d24  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:46:32.0663 0x0d24  SiSRaid2 - ok
16:46:32.0676 0x0d24  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:46:32.0695 0x0d24  SiSRaid4 - ok
16:46:32.0755 0x0d24  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:46:32.0808 0x0d24  SkypeUpdate - ok
16:46:32.0836 0x0d24  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:46:32.0881 0x0d24  Smb - ok
16:46:32.0909 0x0d24  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:46:32.0971 0x0d24  SNMPTRAP - ok
16:46:32.0994 0x0d24  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:46:33.0021 0x0d24  spldr - ok
16:46:33.0079 0x0d24  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:46:33.0246 0x0d24  Spooler - ok
16:46:33.0738 0x0d24  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:46:34.0049 0x0d24  sppsvc - ok
16:46:34.0127 0x0d24  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:46:34.0281 0x0d24  sppuinotify - ok
16:46:34.0381 0x0d24  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:46:34.0522 0x0d24  srv - ok
16:46:34.0822 0x0d24  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:46:35.0045 0x0d24  srv2 - ok
16:46:35.0090 0x0d24  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:46:35.0174 0x0d24  srvnet - ok
16:46:35.0292 0x0d24  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:46:35.0398 0x0d24  SSDPSRV - ok
16:46:35.0429 0x0d24  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:46:35.0533 0x0d24  SstpSvc - ok
16:46:35.0723 0x0d24  [ CC7ED069C2FC82B5B1555C2044C765CC, CE43363544A3EE2C5133CD0D47BF34AFAFA4EAD6AC9EB9A772EE55E89D4D89D4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:46:35.0797 0x0d24  Steam Client Service - ok
16:46:35.0918 0x0d24  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:46:35.0966 0x0d24  Stereo Service - ok
16:46:35.0997 0x0d24  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:46:36.0051 0x0d24  stexstor - ok
16:46:36.0125 0x0d24  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:46:36.0252 0x0d24  stisvc - ok
16:46:36.0292 0x0d24  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:46:36.0327 0x0d24  swenum - ok
16:46:36.0440 0x0d24  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:46:36.0510 0x0d24  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
16:46:40.0727 0x0d24  Detect skipped due to KSN trusted
16:46:40.0727 0x0d24  SwitchBoard - ok
16:46:40.0781 0x0d24  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:46:40.0860 0x0d24  swprv - ok
16:46:40.0932 0x0d24  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:46:41.0069 0x0d24  SysMain - ok
16:46:41.0104 0x0d24  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:46:41.0150 0x0d24  TabletInputService - ok
16:46:41.0176 0x0d24  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:46:41.0233 0x0d24  TapiSrv - ok
16:46:41.0257 0x0d24  TBPanel - ok
16:46:41.0266 0x0d24  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:46:41.0331 0x0d24  TBS - ok
16:46:41.0415 0x0d24  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:46:41.0512 0x0d24  Tcpip - ok
16:46:41.0611 0x0d24  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:46:41.0709 0x0d24  TCPIP6 - ok
16:46:41.0751 0x0d24  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:46:41.0818 0x0d24  tcpipreg - ok
16:46:41.0865 0x0d24  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:46:41.0942 0x0d24  TDPIPE - ok
16:46:41.0961 0x0d24  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:46:42.0019 0x0d24  TDTCP - ok
16:46:42.0052 0x0d24  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:46:42.0154 0x0d24  tdx - ok
16:46:42.0188 0x0d24  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:46:42.0216 0x0d24  TermDD - ok
16:46:42.0330 0x0d24  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
16:46:42.0447 0x0d24  TermService - ok
16:46:42.0524 0x0d24  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:46:42.0655 0x0d24  Themes - ok
16:46:42.0729 0x1ddc  Object required for P2P: [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64
16:46:42.0750 0x0d24  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:46:42.0805 0x0d24  THREADORDER - ok
16:46:42.0830 0x0d24  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:46:42.0881 0x0d24  TrkWks - ok
16:46:42.0948 0x0d24  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:46:43.0015 0x0d24  TrustedInstaller - ok
16:46:43.0054 0x0d24  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:46:43.0128 0x0d24  tssecsrv - ok
16:46:43.0169 0x0d24  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:46:43.0225 0x0d24  TsUsbFlt - ok
16:46:43.0276 0x0d24  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:46:43.0330 0x0d24  tunnel - ok
16:46:43.0349 0x0d24  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:46:43.0386 0x0d24  uagp35 - ok
16:46:43.0439 0x0d24  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:46:43.0518 0x0d24  udfs - ok
16:46:43.0544 0x0d24  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:46:43.0567 0x0d24  UI0Detect - ok
16:46:43.0583 0x0d24  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:46:43.0601 0x0d24  uliagpkx - ok
16:46:43.0640 0x0d24  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
16:46:43.0693 0x0d24  umbus - ok
16:46:43.0723 0x0d24  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:46:43.0766 0x0d24  UmPass - ok
16:46:43.0891 0x0d24  [ 41118D920B2B268C0ADC36421248CDCF, 4F99C4913DCFE02B0783FD97F02558E4DD4D7C98553D95A8E26FAAA0C0D67616 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
16:46:44.0020 0x0d24  UNS - detected UnsignedFile.Multi.Generic ( 1 )
16:46:45.0373 0x1ddc  Object send P2P result: true
16:46:45.0375 0x1ddc  Object required for P2P: [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid
16:46:46.0629 0x0d24  Detect skipped due to KSN trusted
16:46:46.0629 0x0d24  UNS - ok
16:46:46.0690 0x0d24  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:46:46.0767 0x0d24  upnphost - ok
16:46:46.0817 0x0d24  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:46:46.0899 0x0d24  USBAAPL64 - ok
16:46:46.0966 0x0d24  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:46:47.0062 0x0d24  usbaudio - ok
16:46:47.0080 0x0d24  [ B26AFB54A534D634523C4FB66765B026, A219C9AE32D040BEA4DD69C2C826B1C52BACE26BEBFEE799BD56DFD442C5E0D8 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:46:47.0130 0x0d24  usbccgp - ok
16:46:47.0158 0x0d24  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:46:47.0214 0x0d24  usbcir - ok
16:46:47.0248 0x0d24  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:46:47.0324 0x0d24  usbehci - ok
16:46:47.0361 0x0d24  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:46:47.0443 0x0d24  usbhub - ok
16:46:47.0466 0x0d24  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:46:47.0484 0x0d24  usbohci - ok
16:46:47.0500 0x0d24  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:46:47.0551 0x0d24  usbprint - ok
16:46:47.0599 0x0d24  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
16:46:47.0639 0x0d24  usbscan - ok
16:46:47.0705 0x0d24  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:46:47.0842 0x0d24  USBSTOR - ok
16:46:47.0854 0x1ddc  Object send P2P result: true
16:46:47.0864 0x0d24  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:46:47.0891 0x0d24  usbuhci - ok
16:46:47.0917 0x0d24  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:46:47.0982 0x0d24  UxSms - ok
16:46:48.0000 0x0d24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
16:46:48.0030 0x0d24  VaultSvc - ok
16:46:48.0140 0x0d24  [ 1352B215BDC5807A5641E7C143796DD7, B54F95307253BB81E4CEE4F2033782210652364DE6A1E833B27ECE7E04A2BD51 ] VBoxAswDrv      C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
16:46:48.0189 0x0d24  VBoxAswDrv - ok
16:46:48.0215 0x0d24  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:46:48.0240 0x0d24  vdrvroot - ok
16:46:48.0281 0x0d24  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:46:48.0346 0x0d24  vds - ok
16:46:48.0361 0x0d24  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:46:48.0382 0x0d24  vga - ok
16:46:48.0425 0x0d24  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:46:48.0495 0x0d24  VgaSave - ok
16:46:48.0515 0x0d24  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:46:48.0569 0x0d24  vhdmp - ok
16:46:48.0625 0x0d24  [ 712BFD5DAC2668FBA4A2435FB06C3D00, 1BA8FEA87C1D2B97C6E8D9D51A4C014C11F04B527DB87ACBB433B520A1A2A0A1 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
16:46:48.0777 0x0d24  VIAHdAudAddService - ok
16:46:48.0815 0x0d24  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:46:48.0870 0x0d24  viaide - ok
16:46:48.0893 0x0d24  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:46:48.0932 0x0d24  volmgr - ok
16:46:48.0976 0x0d24  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:46:49.0006 0x0d24  volmgrx - ok
16:46:49.0025 0x0d24  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:46:49.0075 0x0d24  volsnap - ok
16:46:49.0120 0x0d24  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:46:49.0141 0x0d24  vsmraid - ok
16:46:49.0209 0x0d24  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:46:49.0320 0x0d24  VSS - ok
16:46:49.0346 0x0d24  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:46:49.0411 0x0d24  vwifibus - ok
16:46:49.0447 0x0d24  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:46:49.0493 0x0d24  vwififlt - ok
16:46:49.0502 0x0d24  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:46:49.0524 0x0d24  vwifimp - ok
16:46:49.0550 0x0d24  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:46:49.0616 0x0d24  W32Time - ok
16:46:49.0638 0x0d24  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:46:49.0657 0x0d24  WacomPen - ok
16:46:49.0667 0x0d24  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:46:49.0719 0x0d24  WANARP - ok
16:46:49.0723 0x0d24  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:46:49.0757 0x0d24  Wanarpv6 - ok
16:46:49.0800 0x0d24  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:46:49.0978 0x0d24  wbengine - ok
16:46:50.0009 0x0d24  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:46:50.0053 0x0d24  WbioSrvc - ok
16:46:50.0102 0x0d24  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:46:50.0158 0x0d24  wcncsvc - ok
16:46:50.0181 0x0d24  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:46:50.0243 0x0d24  WcsPlugInService - ok
16:46:50.0257 0x0d24  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:46:50.0293 0x0d24  Wd - ok
16:46:50.0342 0x0d24  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:46:50.0383 0x0d24  Wdf01000 - ok
16:46:50.0394 0x0d24  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:46:50.0471 0x0d24  WdiServiceHost - ok
16:46:50.0478 0x0d24  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:46:50.0509 0x0d24  WdiSystemHost - ok
16:46:50.0547 0x0d24  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:46:50.0587 0x0d24  WebClient - ok
16:46:50.0642 0x0d24  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:46:50.0713 0x0d24  Wecsvc - ok
16:46:50.0733 0x0d24  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:46:50.0770 0x0d24  wercplsupport - ok
16:46:50.0782 0x0d24  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:46:50.0818 0x0d24  WerSvc - ok
16:46:50.0833 0x0d24  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:46:50.0867 0x0d24  WfpLwf - ok
16:46:50.0874 0x0d24  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:46:50.0913 0x0d24  WIMMount - ok
16:46:50.0943 0x0d24  WinDefend - ok
16:46:50.0961 0x0d24  WinHttpAutoProxySvc - ok
16:46:51.0012 0x0d24  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:46:51.0100 0x0d24  Winmgmt - ok
16:46:51.0751 0x0d24  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
16:46:52.0267 0x0d24  WinRM - ok
16:46:52.0804 0x0d24  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:46:52.0920 0x0d24  WinUsb - ok
16:46:53.0012 0x0d24  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:46:53.0082 0x0d24  Wlansvc - ok
16:46:53.0224 0x0d24  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:46:53.0338 0x0d24  wlidsvc - ok
16:46:53.0357 0x0d24  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:46:53.0420 0x0d24  WmiAcpi - ok
16:46:53.0451 0x0d24  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:46:53.0512 0x0d24  wmiApSrv - ok
16:46:53.0530 0x0d24  WMPNetworkSvc - ok
16:46:53.0551 0x0d24  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:46:53.0664 0x0d24  WPCSvc - ok
16:46:53.0721 0x0d24  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:46:53.0842 0x0d24  WPDBusEnum - ok
16:46:53.0862 0x0d24  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:46:53.0945 0x0d24  ws2ifsl - ok
16:46:53.0980 0x0d24  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
16:46:54.0074 0x0d24  wscsvc - ok
16:46:54.0078 0x0d24  WSearch - ok
16:46:54.0200 0x0d24  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:46:54.0432 0x0d24  wuauserv - ok
16:46:54.0483 0x0d24  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:46:54.0586 0x0d24  WudfPf - ok
16:46:54.0624 0x0d24  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:46:54.0670 0x0d24  WUDFRd - ok
16:46:54.0687 0x0d24  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:46:54.0717 0x0d24  wudfsvc - ok
16:46:54.0747 0x0d24  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:46:54.0827 0x0d24  WwanSvc - ok
16:46:54.0862 0x0d24  ================ Scan global ===============================
16:46:54.0877 0x0d24  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:46:54.0913 0x0d24  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:46:54.0941 0x0d24  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:46:54.0960 0x0d24  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:46:54.0986 0x0d24  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:46:54.0995 0x0d24  [ Global ] - ok
16:46:54.0996 0x0d24  ================ Scan MBR ==================================
16:46:55.0001 0x0d24  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:46:55.0218 0x0d24  \Device\Harddisk0\DR0 - ok
16:46:55.0223 0x0d24  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:46:55.0538 0x0d24  \Device\Harddisk1\DR1 - ok
16:46:55.0539 0x0d24  ================ Scan VBR ==================================
16:46:55.0542 0x0d24  [ 12F9905F0F4ECA455064E1E8FEF24430 ] \Device\Harddisk0\DR0\Partition1
16:46:55.0589 0x0d24  \Device\Harddisk0\DR0\Partition1 - ok
16:46:55.0593 0x0d24  [ F6E8D33AA7A5BA094B505BA714098CC3 ] \Device\Harddisk0\DR0\Partition2
16:46:55.0629 0x0d24  \Device\Harddisk0\DR0\Partition2 - ok
16:46:55.0634 0x0d24  [ C158925C3293D0D0A4C7E3E82FB9EF28 ] \Device\Harddisk1\DR1\Partition1
16:46:55.0635 0x0d24  \Device\Harddisk1\DR1\Partition1 - ok
16:46:55.0635 0x0d24  ================ Scan generic autorun ======================
16:46:55.0688 0x0d24  [ 72334F906C2E2B002CDD2FF9022FD957, 991F7C606E122BBD388BA37E56B37CC6D2DCA304784E4CE06018D698C57F320F ] C:\Windows\PixArt\PAC207\Monitor.exe
16:46:55.0833 0x0d24  Monitor - ok
16:46:55.0941 0x0d24  [ 393F021E2A9FA19AC94BA4482E32FC6C, 8DC7A061643099B8A1915ADB59D89912A117883D4194BCC05F653E19DFD321A9 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
16:46:56.0012 0x0d24  AdobeAAMUpdater-1.0 - ok
16:46:56.0082 0x0d24  [ 4F46EA70C7579052F764D0F9B81D23C2, EABE443ABC39AFDA49762A78711FAB4C7367680BE4F0B79F3144362D4A272238 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:46:56.0281 0x0d24  NvBackend - ok
16:46:56.0392 0x0d24  [ 6204322D098CDD91C0E383FFCF6A1D3D, 346D460D1D0141FA14975C1C0B86685F80290183738617B9A3E4AE8A2C28589F ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
16:46:56.0656 0x0d24  HDAudDeck - detected UnsignedFile.Multi.Generic ( 1 )
16:47:00.0403 0x0d24  Detect skipped due to KSN trusted
16:47:00.0403 0x0d24  HDAudDeck - ok
16:47:00.0714 0x0d24  [ 09E60B4FE341A94A300830C008907099, 5F07868953FAA8FFA9E6477F6BAC52DEEDF3EA4A3F8AF5B4E15878D8240223AB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
16:47:00.0831 0x0d24  APSDaemon - ok
16:47:00.0986 0x0d24  [ 504C916D52ABA407FD4DC1E709AEA71E, 8F279620247481F28DF7D9FD4A81173396E39EB807E24587E89CAF1172CC846C ] C:\Program Files (x86)\avmwlanstick\wlangui.exe
16:47:01.0174 0x0d24  AVMWlanClient - detected UnsignedFile.Multi.Generic ( 1 )
16:47:04.0088 0x0d24  Detect skipped due to KSN trusted
16:47:04.0088 0x0d24  AVMWlanClient - ok
16:47:04.0155 0x0d24  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:47:04.0321 0x0d24  Adobe ARM - ok
16:47:04.0484 0x0d24  [ 44ADDA5FB88EE14F57A246285775AC2F, 2776225BA9F22C553453541DA0285E093B4F2019DB6FE640D033BA45045299C8 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
16:47:04.0698 0x0d24  AvastUI.exe - ok
16:47:04.0821 0x0d24  [ E1636F57581CAB5D995FD54D2991EF57, BB6B3D005054D386D596A4BA4D9D2F1284D7C845C1CD5EE63775B4569559E0EB ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
16:47:04.0925 0x0d24  AdobeCS5.5ServiceManager - ok
16:47:04.0955 0x0d24  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:47:04.0983 0x0d24  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
16:47:04.0983 0x0d24  Detect skipped due to KSN trusted
16:47:04.0983 0x0d24  SwitchBoard - ok
16:47:05.0042 0x0d24  [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
16:47:05.0209 0x0d24  iTunesHelper - ok
16:47:05.0315 0x0d24  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
16:47:05.0404 0x0d24  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
16:47:07.0932 0x0d24  Detect skipped due to KSN trusted
16:47:07.0932 0x0d24  QuickTime Task - ok
16:47:08.0049 0x0d24  [ BE1A3A1F73D2544A23E3838063F634DA, 915A6CB3EF44DBE7EE8EF9A89D93F81BB47CABADB0F20F7B6965B02D71CAB584 ] C:\Program Files (x86)\EXPERTool\TBPanel.exe
16:47:08.0191 0x0d24  GAINWARD - ok
16:47:08.0302 0x0d24  [ 000197B0DAA105022A7364F251B88AC6, BA86A7B007476BA4A0C8BC055BE5EFAB084523C4E3EB1604391717586DEB97DC ] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
16:47:08.0458 0x0d24  Pando Media Booster - ok
16:47:08.0463 0x0d24  Wisdom-soft AutoScreenRecorder 3.1 Pro - ok
16:47:08.0514 0x0d24  [ BA7D51208ED1A5F2DAB4894C9717CBBD, 0341CC07EEEDB598F0EC68E1FE250F3FD73C099198B364E5877D5535D25BE26B ] C:\Program Files\Sandboxie\SbieCtrl.exe
16:47:08.0575 0x0d24  SandboxieControl - ok
16:47:08.0616 0x0d24  [ D72D08898E2BA14B8FD6E9533C714385, F4337D46BBB5886ED654157C3BB1B2779376E919F1C5D8E5FF2F8C6B7306F8C4 ] C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
16:47:08.0664 0x0d24  FileHippo.com - detected UnsignedFile.Multi.Generic ( 1 )
16:47:11.0261 0x0d24  Detect skipped due to KSN trusted
16:47:11.0261 0x0d24  FileHippo.com - ok
16:47:11.0342 0x0d24  [ 66A4A7C7802E0968E07647999FFC87E2, 9724C8CB80AF63A4CA14BB3521695942AE33B6C18F42266C407301610C4C7BFE ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
16:47:11.0387 0x0d24  GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4 - ok
16:47:11.0490 0x0d24  [ 7E0B4C8EFEDDEBE87D2A1F5A33B965B5, D7102B38A0F1BDA2DC3D5C7A8DAE13758F5CFC29C5AE3D3791EFAFB5A9F7275D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
16:47:11.0571 0x0d24  AppleIEDAV - ok
16:47:11.0624 0x0d24  [ 2D29BAC8469818E04AA9AA1CBB5D6FED, 5239A6238A442B4799B8266F45DE2A85902D85505AAE6FA864367335813F0342 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
16:47:11.0645 0x0d24  ApplePhotoStreams - ok
16:47:11.0669 0x0d24  [ EC58C1A9A3281CE0C8FCC05BDBFECB37, 3738BBC112346B32F686F1CB4B4AAD89B06AA1F8FB2D333BC2D2F554212A0A59 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
16:47:11.0687 0x0d24  iCloudServices - ok
16:47:11.0694 0x0d24  [ 334725C0DB429BF71F43CCEFEA1376A4, D7838C556DECC87EE5E125D643FD9ADCCE91C2DDEEBFA064312C5C821BE80CF0 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
16:47:11.0710 0x0d24  iCloudDrive - ok
16:47:11.0907 0x0d24  [ 0431B48CF752D88C33C4BA39BA64CCB2, 4D65608DB7B460E4797285D8FE305E407C6FA57663AF54500E1A730BBBC433FF ] C:\Users\pc\AppData\Roaming\Spotify\Spotify.exe
16:47:12.0144 0x0d24  Spotify - ok
16:47:12.0209 0x0d24  [ 08DFA176E4FC0E63ACD8EC854449D2B0, B8CA204C3F318CD9D12F61CDDA5C66184A48D6206F019AD11DB2605FDBEB288D ] C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
16:47:12.0306 0x0d24  Spotify Web Helper - ok
16:47:12.0308 0x0d24  Waiting for KSN requests completion. In queue: 10
16:47:13.0308 0x0d24  Waiting for KSN requests completion. In queue: 10
16:47:14.0308 0x0d24  Waiting for KSN requests completion. In queue: 10
16:47:15.0308 0x0d24  Waiting for KSN requests completion. In queue: 10
16:47:16.0308 0x0d24  Waiting for KSN requests completion. In queue: 10
16:47:17.0309 0x0d24  Waiting for KSN requests completion. In queue: 10
16:47:18.0394 0x0d24  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
16:47:18.0594 0x0d24  Win FW state via NFP2: enabled
16:47:21.0068 0x0d24  ============================================================
16:47:21.0068 0x0d24  Scan finished
16:47:21.0068 0x0d24  ============================================================
16:47:21.0080 0x1f54  Detected object count: 0
16:47:21.0080 0x1f54  Actual detected object count: 0
16:48:11.0553 0x1b34  Deinitialize success
         

Antwort

Themen zu Windows Updates und Grafikkartentreiber Update nicht möglich
administrator, bios, converter, cpu, file, firewall, funktioniert nicht mehr, geforce, generic, grafikkarte, home, i8042prt.sys, monitor, neu, nvidia, opera, realtek, sound, strong, system32, systeme, tables, treiber, updates, usb, virus, windows, windows updates



Ähnliche Themen: Windows Updates und Grafikkartentreiber Update nicht möglich


  1. Windows 10 Update nicht mehr möglich
    Alles rund um Windows - 28.08.2015 (11)
  2. Laptop Windows 7 hängt selbst nach Neuinstallation/Updates nicht möglich
    Alles rund um Windows - 25.08.2015 (19)
  3. WINDOWS Update nicht möglich
    Alles rund um Windows - 24.07.2015 (1)
  4. Mystartsearch nicht zu entfernen; keine Windows Updates möglich
    Log-Analyse und Auswertung - 14.07.2015 (20)
  5. Windows 7 Neuinstallation, Updates nicht möglich.
    Antiviren-, Firewall- und andere Schutzprogramme - 09.12.2014 (3)
  6. Windows Update nicht möglich
    Plagegeister aller Art und deren Bekämpfung - 12.10.2013 (12)
  7. XP: Windows Updates nicht möglich, andere Downloads können nicht abgeschlossen werden
    Plagegeister aller Art und deren Bekämpfung - 05.10.2013 (42)
  8. Windows XP Updates nicht mehr möglich /Windows Firewall ist immer beim Start deaktiviert
    Antiviren-, Firewall- und andere Schutzprogramme - 26.05.2013 (82)
  9. Virus: Updates nicht möglich und Installation von Malwarebytes Anti-Malware 1.70 nicht möglich
    Plagegeister aller Art und deren Bekämpfung - 17.02.2013 (10)
  10. Grafikkartentreiber installation nicht möglich
    Netzwerk und Hardware - 26.05.2011 (9)
  11. Windows-Updates nicht möglich (Fehlercode 80072EFE) & Probleme beim Herunterfahren
    Plagegeister aller Art und deren Bekämpfung - 03.11.2010 (3)
  12. WinXP Update Seite blockiert - Keine Updates möglich
    Plagegeister aller Art und deren Bekämpfung - 10.10.2010 (6)
  13. virus Alureon.H gefunden und windows vista updates nicht mehr möglich
    Plagegeister aller Art und deren Bekämpfung - 05.08.2010 (13)
  14. Windows Update nicht möglich; Viren Scaner (wie virustotal.com) nicht aufrufbar
    Plagegeister aller Art und deren Bekämpfung - 24.05.2010 (2)
  15. keine Windows Updates mehr möglich / statt update.microsoft.com öffnet sich google
    Log-Analyse und Auswertung - 17.02.2009 (5)
  16. Antivir und Windows Defender updates nicht mehr möglich nach Trojaner
    Log-Analyse und Auswertung - 31.01.2009 (0)
  17. Windows update nicht möglich?
    Antiviren-, Firewall- und andere Schutzprogramme - 05.02.2008 (11)

Zum Thema Windows Updates und Grafikkartentreiber Update nicht möglich - Hallo zusammen, ich weiß nicht, ob ich einen Virus o.ä. habe und in diesem Forum richtig bin. Falls nein, bitte ich um Entschuldigung, ich kenne mich in diesem Bereich rein - Windows Updates und Grafikkartentreiber Update nicht möglich...
Archiv
Du betrachtest: Windows Updates und Grafikkartentreiber Update nicht möglich auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.