Auswertung der FRST Logdatei :)

Lucas2703 · 17.09.2013, 14:46

Moin Leute,

kann mir das bitte jemand auswerten? Bin mir nicht sicher, ob ich einen Virus habe..
In letzter Zeit habe ich außerdem des öfteren einen Bluescreen. Mal beim bearbeiten von Videos (Vegas Pro, After Effects) oder mal beim uploaden von Videos zu Yt.
Heute habe ich eine Sache anscheinend schon behoben, indem ich meinen Soundkartentreiber neu installiert habe. Grund: bei Bluescreen stand dort: cmudaxp.sys
Seitdem hatte ich auch keinen Bluescreen mehr. Hoffentlich lag es nur daran...

Mfg

Lucas

FRST Log:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-09-2013 03
Ran by Lucas (administrator) on LUCAS-PC on 17-09-2013 15:40:22
Running from E:\unnötiger shit\Anti Viren Krams
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
() C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\lucidservices.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [VIRTU_MVP_AUTORUN] - C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe [3099880 2013-02-07] ()
HKLM\...\Run: [XFast LAN] - C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] ()
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [7406392 2012-11-29] (Logitech Inc.)
HKLM\...\Run: [VIRTU MVP] - C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe [3099880 2013-02-07] ()
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio8788] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] - C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] - C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-08-09] (Spotify Ltd)
HKCU\...\Run: [DAEMON Tools Lite] - E:\Programme (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKCU\...\Run: [AdobeBridge] - [x]
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [Control Center] - C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe [544256 2009-05-21] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll [512744 2013-02-07] (Lucidlogix Inc.)
AppInit_DLLs-x32: C:\Windows\SysWOW64\appinit_dll.dll [470248 2013-02-07] (Lucidlogix Inc.)
Startup: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP3EC15258-EE96-422E-87B2-2C7017890308
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1AAC796FD2E5CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP3EC15258-EE96-422E-87B2-2C7017890308&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP3EC15258-EE96-422E-87B2-2C7017890308&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files (x86)\Ant.com\IE add-on\download.dll (Ant.com)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files (x86)\Ant.com\IE add-on\anttoolbar.dll (Ant.com)
Toolbar: HKCU -  No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default
FF DefaultSearchEngine: Conduit Search
FF SelectedSearchEngine: Conduit Search
FF Homepage: Youtube.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default\searchplugins\conduit-search.xml
FF Extension: putlockerdownloader - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\profiles\extensions\putlockerdownloader@putlockerdownloader.com.xpi
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF StartMenuInternet: FIREFOX.EXE - E:\Programme (x86)\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Slinky Elegant) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0
CHR Extension: (Adblock Plus) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0
CHR Extension: (Google Search) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (ProxMate - Proxy on steroids!) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\3.0.8_0
CHR Extension: (Google Play) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0
CHR Extension: (ClipConverter) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\njjjgjlocdhecpgdcfjblcnfebfnmhpp\1.2.7_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)
S4 AntUpdaterService; C:\Program Files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [520216 2011-06-29] (Ant.com)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-08-08] ()
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 LucidSrv; C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [16104 2013-02-07] (LucidLogix)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4340664 2012-07-15] (INCA Internet Co., Ltd.)
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-25] ()
R2 Realtek11nCU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 xsherlock; C:\Windows\SysWow64\xsherlock.xem [666720 2012-12-16] (Wellbia.com Co., Ltd.)

==================== Drivers (Whitelisted) ====================

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2727936 2011-12-20] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-15] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWow64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1047144 2011-09-20] (Realtek Semiconductor Corporation                           )
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2013-06-09] (Sony Ericsson Mobile Communications)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-06-21] (Oracle Corporation)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2013-01-03] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 dump_wmimmc; \??\E:\Programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 MBfilt; system32\drivers\MBfilt64.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-17 14:47 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Lucas\AppData\Local\ESN Sonar
2013-09-17 14:11 - 2013-09-17 14:30 - 00000710 _____ C:\Users\Lucas\Desktop\Neues Textdokument (2).txt
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-17 12:23 - 2013-09-17 12:23 - 00044950 _____ C:\Windows\Cmicnfgp.ini.cfl
2013-09-17 12:23 - 2013-09-17 12:23 - 00000941 _____ C:\Windows\Cmicnfgp.ini.imi
2013-09-17 12:23 - 2013-09-17 12:23 - 00000880 _____ C:\Windows\system\Cmicnfgp.ini
2013-09-17 12:23 - 2011-12-29 09:09 - 00000054 ____N C:\Windows\system32\cmasiopx.ini
2013-09-17 12:23 - 2011-12-29 09:08 - 00000049 ____N C:\Windows\SysWOW64\cmasiop.ini
2013-09-17 12:23 - 2011-12-12 07:44 - 00143360 ____N C:\Windows\SysWOW64\VmixP8.dll
2013-09-17 12:23 - 2011-11-24 12:46 - 00000594 ____N C:\Windows\cmudaxp.ini
2013-09-17 12:23 - 2011-11-21 11:20 - 00005066 ____N C:\Windows\Cmicnfgp.ini.cfg
2013-09-17 12:23 - 2011-10-05 05:16 - 00465408 ____N (C-Media Electronics Inc.) C:\Windows\system32\cmasiopx.dll
2013-09-17 12:23 - 2011-10-05 05:16 - 00303104 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\cmasiop.dll
2013-09-17 12:23 - 2011-05-12 11:05 - 08769536 ____N (C-Media Corporation) C:\Windows\SysWOW64\CmiCnfgp.dll
2013-09-17 12:23 - 2011-02-24 10:52 - 00805376 ____N C:\Windows\system32\Cmeauoxy.exe
2013-09-17 12:23 - 2008-07-23 12:59 - 00389120 ____N () C:\Windows\system32\CmiCnfgp.cpl
2013-09-17 12:23 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\SysWOW64\Cm_Oal.dll
2013-09-17 12:23 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\system32\Cm_Oal.dll
2013-09-17 12:23 - 2007-11-04 19:30 - 01144983 ____N C:\Windows\KB936225x64.msu
2013-09-17 12:23 - 2006-09-13 04:21 - 00200704 ____N (C-Media) C:\Windows\SysWOW64\Cmpaoxy.dll
2013-09-17 12:13 - 2013-09-17 12:13 - 00279832 _____ C:\Windows\Minidump\091713-12246-02.dmp
2013-09-17 08:44 - 2013-09-17 08:44 - 00279832 _____ C:\Windows\Minidump\091713-12870-01.dmp
2013-09-17 08:38 - 2013-09-17 08:38 - 00279792 _____ C:\Windows\Minidump\091713-12636-01.dmp
2013-09-17 00:04 - 2013-09-17 00:04 - 00279792 _____ C:\Windows\Minidump\091713-12246-01.dmp
2013-09-16 23:34 - 2013-09-16 23:34 - 97845400 _____ C:\Windows\SysWOW64\萪熞ª
2013-09-16 23:26 - 2013-09-16 23:26 - 00279832 _____ C:\Windows\Minidump\091613-15568-01.dmp
2013-09-16 22:41 - 2013-09-16 22:41 - 00279832 _____ C:\Windows\Minidump\091613-11528-01.dmp
2013-09-16 19:22 - 2013-09-16 19:22 - 00279832 _____ C:\Windows\Minidump\091613-12183-01.dmp
2013-09-16 17:49 - 2013-09-16 17:49 - 00279832 _____ C:\Windows\Minidump\091613-12636-01.dmp
2013-09-16 17:34 - 2013-09-16 17:34 - 00279832 _____ C:\Windows\Minidump\091613-12760-01.dmp
2013-09-16 13:23 - 2013-09-16 13:25 - 00000568 _____ C:\Users\Lucas\Desktop\Neues Textdokument.txt
2013-09-16 11:48 - 2013-09-16 11:48 - 00279832 _____ C:\Windows\Minidump\091613-12932-01.dmp
2013-09-16 10:30 - 2013-09-16 10:30 - 00000000 ____D C:\Program Files\NewBlue
2013-09-16 10:27 - 2013-09-16 10:27 - 00279832 _____ C:\Windows\Minidump\091613-12948-01.dmp
2013-09-15 22:12 - 2013-09-16 23:23 - 00000000 ____D C:\Users\Lucas\Desktop\Adobe After Effects CS6
2013-09-15 22:03 - 2013-09-16 23:23 - 00000021 _____ C:\Windows\SurCode.INI
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\Documents\Adobe
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Program Files\Common Files\PACE Anti-Piracy
2013-09-15 20:11 - 2013-09-15 20:11 - 00003502 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Lucas-PC-Lucas
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PDAppFlex
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-09-15 20:09 - 2013-09-16 10:31 - 00000000 ____D C:\Program Files\Adobe
2013-09-15 20:09 - 2013-09-15 20:10 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-15 17:31 - 2013-09-15 17:31 - 00279832 _____ C:\Windows\Minidump\091513-12495-01.dmp
2013-09-15 16:08 - 2013-09-15 16:08 - 00279832 _____ C:\Windows\Minidump\091513-13228-01.dmp
2013-09-15 15:05 - 2013-09-15 15:05 - 00013651 _____ C:\Users\Lucas\Desktop\Mozilla Firefox.lnk
2013-09-15 02:39 - 2013-09-15 02:39 - 00002105 _____ C:\Users\Lucas\Desktop\Stundenplan.lnk
2013-09-15 02:37 - 2013-09-15 02:37 - 00000000 ____D C:\Users\Lucas\Desktop\partycompany bewerbung
2013-09-15 02:09 - 2013-09-15 02:09 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sony Creative Software Inc
2013-09-14 22:54 - 2013-09-14 22:54 - 00279888 _____ C:\Windows\Minidump\091413-12511-01.dmp
2013-09-14 21:33 - 2013-09-17 14:33 - 00000000 ____D C:\Users\Lucas\Desktop\YouTube
2013-09-14 20:47 - 2013-09-14 20:47 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Publish Providers
2013-09-14 20:46 - 2013-09-14 20:46 - 00000000 ____D C:\Program Files\Sony
2013-09-14 20:35 - 2013-09-14 20:47 - 00001038 _____ C:\Users\Public\Desktop\Vegas Pro 12.0.lnk
2013-09-14 20:04 - 2013-09-14 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Sony
2013-09-14 20:00 - 2013-09-14 20:00 - 00279832 _____ C:\Windows\Minidump\091413-12355-01.dmp
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\Windows\SysWOW64\spool
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\ProgramData\HP Product Assistant
2013-09-14 13:28 - 2013-09-14 13:33 - 00241402 _____ C:\Windows\hpoins35.dat
2013-09-12 13:59 - 2013-09-12 13:59 - 00279832 _____ C:\Windows\Minidump\091213-11887-01.dmp
2013-09-11 22:46 - 2013-09-11 22:46 - 00279832 _____ C:\Windows\Minidump\091113-11762-01.dmp
2013-09-11 20:59 - 2013-09-11 20:59 - 00279832 _____ C:\Windows\Minidump\091113-11294-01.dmp
2013-09-11 11:17 - 2013-09-11 11:17 - 97080355 _____ C:\Windows\SysWOW64\汸襊£
2013-09-07 21:09 - 2013-09-07 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2013-09-07 19:41 - 2013-09-07 19:41 - 00003062 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00003060 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2013-09-07 17:42 - 2013-08-07 04:22 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-09-07 17:36 - 2013-09-07 20:15 - 00001912 _____ C:\Windows\epplauncher.mif
2013-09-07 17:36 - 2013-09-07 17:37 - 00000000 ____D C:\Windows\system32\MRT
2013-09-05 14:10 - 2013-09-05 14:10 - 00000936 _____ C:\Users\Lucas\Desktop\Evernote.lnk
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Users\Lucas\AppData\Local\Evernote
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Program Files (x86)\Evernote
2013-09-01 23:25 - 2013-09-01 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashRpt
2013-09-01 22:55 - 2013-09-01 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\JC2MP
2013-08-23 12:38 - 2013-08-23 12:38 - 00000000 ____D C:\Users\Lucas\Documents\Square Enix
2013-08-21 22:04 - 2013-08-21 22:04 - 00000000 ____D C:\Windows\de
2013-08-21 22:03 - 2013-08-21 22:03 - 00000020 _____ C:\Windows\èùT
2013-08-21 22:03 - 2013-08-21 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-08-21 22:02 - 2013-08-21 22:03 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-08-21 22:01 - 2013-08-21 23:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\Windows Live
2013-08-20 16:11 - 2013-08-20 16:11 - 00272584 _____ C:\Windows\Minidump\082013-12324-01.dmp
2013-08-19 22:07 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-19 22:07 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-19 22:07 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-19 22:07 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-19 22:07 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-19 22:07 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-19 22:07 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-19 22:07 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-19 22:07 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-19 22:07 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-19 22:07 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

==================== One Month Modified Files and Folders =======

2013-09-17 15:38 - 2009-07-14 19:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2013-09-17 15:38 - 2009-07-14 19:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2013-09-17 15:38 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-17 15:37 - 2013-04-14 01:44 - 00000000 ____D C:\Users\Lucas\Desktop\Stuff
2013-09-17 15:37 - 2009-07-14 06:45 - 00014800 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-17 15:37 - 2009-07-14 06:45 - 00014800 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-17 15:36 - 2012-11-15 20:26 - 01250120 _____ C:\Windows\WindowsUpdate.log
2013-09-17 15:32 - 2012-11-18 12:58 - 00072493 _____ C:\Windows\setupact.log
2013-09-17 15:32 - 2012-11-15 22:47 - 00000000 ____D C:\Users\Lucas\Lucidlogix
2013-09-17 15:32 - 2012-11-15 20:40 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-17 15:32 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-17 15:28 - 2013-05-08 10:54 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-09-17 15:28 - 2012-12-18 16:56 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-17 15:27 - 2013-05-08 10:54 - 00291088 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-09-17 15:27 - 2012-11-17 00:35 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2013-09-17 14:47 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Lucas\AppData\Local\ESN Sonar
2013-09-17 14:42 - 2012-11-15 20:40 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-17 14:33 - 2013-09-14 21:33 - 00000000 ____D C:\Users\Lucas\Desktop\YouTube
2013-09-17 14:30 - 2013-09-17 14:11 - 00000710 _____ C:\Users\Lucas\Desktop\Neues Textdokument (2).txt
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-17 12:23 - 2013-09-17 12:23 - 00044950 _____ C:\Windows\Cmicnfgp.ini.cfl
2013-09-17 12:23 - 2013-09-17 12:23 - 00000941 _____ C:\Windows\Cmicnfgp.ini.imi
2013-09-17 12:23 - 2013-09-17 12:23 - 00000880 _____ C:\Windows\system\Cmicnfgp.ini
2013-09-17 12:23 - 2013-01-15 13:52 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2013-09-17 12:23 - 2013-01-15 13:52 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2013-09-17 12:23 - 2013-01-15 13:52 - 00111616 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2013-09-17 12:23 - 2013-01-15 13:52 - 00102400 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2013-09-17 12:23 - 2013-01-15 13:46 - 00000142 _____ C:\Windows\system\Dlap.pfx
2013-09-17 12:23 - 2013-01-15 13:46 - 00000000 ____D C:\Program Files\ASUS Xonar DGX Audio
2013-09-17 12:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2013-09-17 12:21 - 2013-01-15 13:52 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\ASUS
2013-09-17 12:13 - 2013-09-17 12:13 - 00279832 _____ C:\Windows\Minidump\091713-12246-02.dmp
2013-09-17 12:13 - 2013-08-08 20:54 - 635990974 _____ C:\Windows\MEMORY.DMP
2013-09-17 12:13 - 2012-11-30 02:19 - 00000000 ____D C:\Windows\Minidump
2013-09-17 08:54 - 2012-11-17 17:38 - 00000000 ____D C:\Users\Lucas\AppData\Local\Adobe
2013-09-17 08:44 - 2013-09-17 08:44 - 00279832 _____ C:\Windows\Minidump\091713-12870-01.dmp
2013-09-17 08:38 - 2013-09-17 08:38 - 00279792 _____ C:\Windows\Minidump\091713-12636-01.dmp
2013-09-17 00:04 - 2013-09-17 00:04 - 00279792 _____ C:\Windows\Minidump\091713-12246-01.dmp
2013-09-16 23:34 - 2013-09-16 23:34 - 97845400 _____ C:\Windows\SysWOW64\萪熞ª
2013-09-16 23:30 - 2012-12-05 20:40 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BCA47DEE-9D3C-4E06-BD7A-84C3B024BCD6}
2013-09-16 23:26 - 2013-09-16 23:26 - 00279832 _____ C:\Windows\Minidump\091613-15568-01.dmp
2013-09-16 23:26 - 2009-07-14 06:45 - 04977024 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-16 23:23 - 2013-09-15 22:12 - 00000000 ____D C:\Users\Lucas\Desktop\Adobe After Effects CS6
2013-09-16 23:23 - 2013-09-15 22:03 - 00000021 _____ C:\Windows\SurCode.INI
2013-09-16 23:23 - 2012-11-15 22:49 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Adobe
2013-09-16 23:23 - 2012-03-30 02:56 - 00000000 ___HD C:\Users\Lucas\AppData\Local\s1I6mPsfxd
2013-09-16 23:22 - 2012-11-15 20:39 - 00090216 _____ C:\Users\Lucas\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-16 22:50 - 2012-12-17 18:30 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\uTorrent
2013-09-16 22:41 - 2013-09-16 22:41 - 00279832 _____ C:\Windows\Minidump\091613-11528-01.dmp
2013-09-16 19:22 - 2013-09-16 19:22 - 00279832 _____ C:\Windows\Minidump\091613-12183-01.dmp
2013-09-16 17:49 - 2013-09-16 17:49 - 00279832 _____ C:\Windows\Minidump\091613-12636-01.dmp
2013-09-16 17:34 - 2013-09-16 17:34 - 00279832 _____ C:\Windows\Minidump\091613-12760-01.dmp
2013-09-16 17:34 - 2012-11-18 12:58 - 02356534 _____ C:\Windows\PFRO.log
2013-09-16 13:25 - 2013-09-16 13:23 - 00000568 _____ C:\Users\Lucas\Desktop\Neues Textdokument.txt
2013-09-16 13:12 - 2012-11-17 20:54 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-16 13:12 - 2009-07-14 01:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2013-09-16 13:12 - 2009-07-14 01:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2013-09-16 11:48 - 2013-09-16 11:48 - 00279832 _____ C:\Windows\Minidump\091613-12932-01.dmp
2013-09-16 10:31 - 2013-09-15 20:09 - 00000000 ____D C:\Program Files\Adobe
2013-09-16 10:30 - 2013-09-16 10:30 - 00000000 ____D C:\Program Files\NewBlue
2013-09-16 10:27 - 2013-09-16 10:27 - 00279832 _____ C:\Windows\Minidump\091613-12948-01.dmp
2013-09-16 10:08 - 2012-11-15 22:49 - 00000000 ____D C:\ProgramData\Adobe
2013-09-15 22:12 - 2012-11-16 15:56 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\Documents\Adobe
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Program Files\Common Files\PACE Anti-Piracy
2013-09-15 22:03 - 2013-01-16 16:54 - 00000000 ___HD C:\Users\Lucas\AppData\Local\ALA3K1uH81OE
2013-09-15 20:11 - 2013-09-15 20:11 - 00003502 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Lucas-PC-Lucas
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PDAppFlex
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-09-15 20:10 - 2013-09-15 20:09 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-15 20:10 - 2012-11-15 22:49 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-09-15 19:37 - 2012-11-17 17:22 - 00014808 _____ C:\Users\Lucas\Documents\Stundenplan.xlsx
2013-09-15 18:46 - 2013-04-26 17:28 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sony
2013-09-15 18:46 - 2012-11-15 22:29 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Skype
2013-09-15 17:50 - 2012-12-17 19:10 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\HpUpdate
2013-09-15 17:31 - 2013-09-15 17:31 - 00279832 _____ C:\Windows\Minidump\091513-12495-01.dmp
2013-09-15 16:08 - 2013-09-15 16:08 - 00279832 _____ C:\Windows\Minidump\091513-13228-01.dmp
2013-09-15 15:05 - 2013-09-15 15:05 - 00013651 _____ C:\Users\Lucas\Desktop\Mozilla Firefox.lnk
2013-09-15 02:39 - 2013-09-15 02:39 - 00002105 _____ C:\Users\Lucas\Desktop\Stundenplan.lnk
2013-09-15 02:37 - 2013-09-15 02:37 - 00000000 ____D C:\Users\Lucas\Desktop\partycompany bewerbung
2013-09-15 02:09 - 2013-09-15 02:09 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sony Creative Software Inc
2013-09-14 23:10 - 2012-11-17 17:22 - 00000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2013-09-14 23:09 - 2012-11-16 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Paint.NET
2013-09-14 22:54 - 2013-09-14 22:54 - 00279888 _____ C:\Windows\Minidump\091413-12511-01.dmp
2013-09-14 20:47 - 2013-09-14 20:47 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Publish Providers
2013-09-14 20:47 - 2013-09-14 20:35 - 00001038 _____ C:\Users\Public\Desktop\Vegas Pro 12.0.lnk
2013-09-14 20:46 - 2013-09-14 20:46 - 00000000 ____D C:\Program Files\Sony
2013-09-14 20:46 - 2013-09-14 20:04 - 00000000 ____D C:\Users\Lucas\AppData\Local\Sony
2013-09-14 20:46 - 2013-04-26 16:31 - 00000000 ____D C:\ProgramData\Sony
2013-09-14 20:46 - 2013-04-26 16:31 - 00000000 ____D C:\Program Files (x86)\Sony
2013-09-14 20:00 - 2013-09-14 20:00 - 00279832 _____ C:\Windows\Minidump\091413-12355-01.dmp
2013-09-14 19:23 - 2012-12-17 18:31 - 00000000 ____D C:\Program Files (x86)\uTorrent
2013-09-14 14:17 - 2012-11-15 23:32 - 00000000 ___RD C:\Users\Lucas\Desktop\Games
2013-09-14 14:11 - 2013-03-09 13:08 - 00000000 ____D C:\Users\Lucas\AppData\Local\Arma 3 Alpha
2013-09-14 13:55 - 2012-11-19 17:33 - 00009207 _____ C:\ProgramData\hpzinstall.log
2013-09-14 13:34 - 2009-07-14 04:34 - 00000666 _____ C:\Windows\win.ini
2013-09-14 13:33 - 2013-09-14 13:28 - 00241402 _____ C:\Windows\hpoins35.dat
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\Windows\SysWOW64\spool
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\ProgramData\HP Product Assistant
2013-09-14 13:32 - 2012-11-19 17:36 - 00000000 ____D C:\Program Files (x86)\HP
2013-09-14 13:32 - 2012-11-19 17:33 - 00000000 ____D C:\ProgramData\HP
2013-09-12 13:59 - 2013-09-12 13:59 - 00279832 _____ C:\Windows\Minidump\091213-11887-01.dmp
2013-09-11 22:46 - 2013-09-11 22:46 - 00279832 _____ C:\Windows\Minidump\091113-11762-01.dmp
2013-09-11 20:59 - 2013-09-11 20:59 - 00279832 _____ C:\Windows\Minidump\091113-11294-01.dmp
2013-09-11 11:17 - 2013-09-11 11:17 - 97080355 _____ C:\Windows\SysWOW64\汸襊£
2013-09-07 22:00 - 2012-11-17 17:37 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-07 22:00 - 2012-11-17 17:37 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-07 21:25 - 2013-08-09 04:04 - 00000000 ____D C:\Android
2013-09-07 21:09 - 2013-09-07 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2013-09-07 20:17 - 2013-05-26 16:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-09-07 20:15 - 2013-09-07 17:36 - 00001912 _____ C:\Windows\epplauncher.mif
2013-09-07 20:08 - 2012-12-08 16:40 - 00000000 ____D C:\Users\Lucas\Documents\Eigene Scans
2013-09-07 19:41 - 2013-09-07 19:41 - 00003062 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00003060 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2013-09-07 19:41 - 2012-12-05 20:20 - 00003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2013-09-07 19:41 - 2012-12-05 20:20 - 00003092 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2013-09-07 19:41 - 2012-11-17 02:39 - 00003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2013-09-07 17:37 - 2013-09-07 17:36 - 00000000 ____D C:\Windows\system32\MRT
2013-09-07 17:37 - 2012-11-16 15:11 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-07 12:53 - 2013-06-25 16:47 - 00119296 _____ C:\Windows\SysWOW64\zlib.dll
2013-09-06 16:01 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2013-09-06 16:01 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Local\Origin
2013-09-05 14:38 - 2013-07-03 10:17 - 00000000 ___RD C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-05 14:10 - 2013-09-05 14:10 - 00000936 _____ C:\Users\Lucas\Desktop\Evernote.lnk
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Users\Lucas\AppData\Local\Evernote
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Program Files (x86)\Evernote
2013-09-05 14:01 - 2013-05-07 12:20 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-05 14:01 - 2013-04-07 23:15 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-05 14:01 - 2013-04-07 23:15 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-01 23:25 - 2013-09-01 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashRpt
2013-09-01 23:25 - 2013-09-01 22:55 - 00000000 ____D C:\Users\Lucas\AppData\Local\JC2MP
2013-09-01 22:52 - 2012-12-16 18:07 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-09-01 16:54 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-30 15:35 - 2012-11-15 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2013-08-30 15:35 - 2012-11-15 22:25 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2013-08-29 19:48 - 2013-01-05 15:42 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\TS3Client
2013-08-25 18:01 - 2013-02-18 20:43 - 00000000 ____D C:\Users\Lucas\AppData\Local\ArmA 2 OA
2013-08-25 12:48 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-08-25 01:41 - 2013-07-04 15:19 - 00000000 ____D C:\Users\Lucas\AppData\Local\PMB Files
2013-08-25 01:41 - 2013-07-04 15:19 - 00000000 ____D C:\ProgramData\PMB Files
2013-08-23 12:38 - 2013-08-23 12:38 - 00000000 ____D C:\Users\Lucas\Documents\Square Enix
2013-08-21 23:03 - 2013-08-21 22:01 - 00000000 ____D C:\Users\Lucas\AppData\Local\Windows Live
2013-08-21 22:04 - 2013-08-21 22:04 - 00000000 ____D C:\Windows\de
2013-08-21 22:03 - 2013-08-21 22:03 - 00000020 _____ C:\Windows\èùT
2013-08-21 22:03 - 2013-08-21 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-08-21 22:03 - 2013-08-21 22:02 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-08-21 22:02 - 2012-11-21 20:43 - 00459415 _____ C:\Windows\DirectX.log
2013-08-21 22:02 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-20 16:11 - 2013-08-20 16:11 - 00272584 _____ C:\Windows\Minidump\082013-12324-01.dmp

Some content of TEMP:
====================
C:\Users\Lucas\AppData\Local\Temp\MouseKeyboardCenterx64_1031.exe
C:\Users\Lucas\AppData\Local\Temp\nsf52D5.exe
C:\Users\Lucas\AppData\Local\Temp\nsj5911.exe
C:\Users\Lucas\AppData\Local\Temp\nsp5623.exe
C:\Users\Lucas\AppData\Local\Temp\nsu15F7.exe
C:\Users\Lucas\AppData\Local\Temp\nsz12BA.exe
C:\Users\Lucas\AppData\Local\Temp\nsz148F.exe
C:\Users\Lucas\AppData\Local\Temp\nsz579A.exe
C:\Users\Lucas\AppData\Local\Temp\Paint.NET.3.5.11.Install.exe
C:\Users\Lucas\AppData\Local\Temp\setup_3.2.20.exe
C:\Users\Lucas\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Lucas\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Lucas\AppData\Local\Temp\utt771.tmp.exe
C:\Users\Lucas\AppData\Local\Temp\utt85F3.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-25 17:31

==================== End Of Log ============================

Auswertung der FRST Logdatei :)

Log-Analyse und Auswertung: Auswertung der FRST Logdatei :)

Auswertung der FRST Logdatei :)

Ähnliche Themen: Auswertung der FRST Logdatei :)