|
Plagegeister aller Art und deren Bekämpfung: Pc mit mal extrem Langsam!!?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
30.12.2013, 14:48 | #1 |
| Pc mit mal extrem Langsam!!? Hallo ich heiße Hannes und habe ein Problem mit meinem PC! Un zwar habe ich mit freunden einen Film bei Movie2k geschaut. Ein paar Stunden danach wollte ich eine Runde Cs:go zocken habe also mein Pc wieder gestartet, aber er war mit mal extrem langsam! Ich weiß nicht was ich tuen soll ich habe eine Systemwiederherstellung gemacht, was aber nicht geholfen hat! Bitte helft mir auf dem sind wichtige Daten!! |
30.12.2013, 17:20 | #2 |
/// the machine /// TB-Ausbilder | Pc mit mal extrem Langsam!!? hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
30.12.2013, 19:15 | #3 |
| Pc mit mal extrem Langsam!!? FRST Logfile:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01 Ran by Hannes (administrator) on HANNES-PC on 30-12-2013 19:08:11 Running from C:\Users\Hannes\Downloads Windows 8 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe () C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe (Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (CyberLink) C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics) C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe (Realtek semiconductor) C:\Windows\RTFTrack.exe (Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe (Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Somoto) C:\Users\Hannes\AppData\Local\FilesFrog Update Checker\update_checker.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (APN LLC.) C:\Users\Hannes\AppData\Local\VNT\vntldr.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe (Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.EXE (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13260944 2012-11-19] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1253520 2012-11-19] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2958648 2012-10-04] (Synaptics Incorporated) HKLM\...\Run: [SynLenovoGestureMgr] - C:\Program Files\Synaptics\SynTP\SynLenovoGestureMgr.exe [665400 2012-10-04] (Synaptics) HKLM\...\Run: [BTMTrayAgent] - rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6334096 2012-10-17] (Realtek semiconductor) HKLM\...\Run: [OnekeyStudio] - C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-08-10] (Lenovo) HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2012-12-16] (Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\utility.exe [191544 2012-12-16] (Lenovo(beijing) Limited) HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-08-27] (NVIDIA Corporation) HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-08-16] (Intel Corporation) HKLM-x32\...\Run: [YouCam Mirage] - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [136488 2012-07-27] (CyberLink) HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [167024 2012-07-27] (CyberLink Corp.) HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.) HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation) HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM-x32\...\Run: [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe" HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208 2010-06-09] (Hewlett-Packard) HKLM-x32\...\Run: [] - [x] HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3806544 2013-11-29] (LogMeIn Inc.) HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG) HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1778640 2013-12-20] (APN) HKLM-x32\...\Run: [VNT] - C:\Program Files (x86)\VNT\vntldr.exe [202192 2013-12-20] (APN LLC.) HKCU\...\Run: [Overwolf] - C:\Program Files (x86)\Overwolf\Overwolf.exe -silent HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1815464 2013-12-27] (Valve Corporation) HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.) HKCU\...\Run: [SDP] - C:\Users\Hannes\AppData\Local\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto) HKCU\...\Run: [GoogleChromeAutoLaunch_421CD927D602703F060389B1170E4C65] - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [863184 2013-12-04] (Google Inc.) MountPoints2: {60e58496-4fa7-11e3-be8f-6036dd6451cb} - "E:\autorun.exe" MountPoints2: {e0ddb00f-d445-11e2-be7b-6036dd6451cb} - "E:\0data\cbs.exe" AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL [ ] () AppInit_DLLs-x32: C:\PROGRA~2\NVIDIA~1\3DVISI~1\nvStInit.dll [ ] () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com SearchScopes: HKLM - DefaultScope {B6B5E858-0DBC-41A2-B3CE-FD683E99816C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS SearchScopes: HKLM - {B6B5E858-0DBC-41A2-B3CE-FD683E99816C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS SearchScopes: HKLM-x32 - DefaultScope {B6B5E858-0DBC-41A2-B3CE-FD683E99816C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS SearchScopes: HKLM-x32 - {B6B5E858-0DBC-41A2-B3CE-FD683E99816C} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MALNJS SearchScopes: HKCU - DefaultScope {B6B5E858-0DBC-41A2-B3CE-FD683E99816C} URL = SearchScopes: HKCU - {B6B5E858-0DBC-41A2-B3CE-FD683E99816C} URL = BHO: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File BHO-x32: LinkSwift - {323420b6-65e5-4657-8106-a27392d4d4aa} - C:\Program Files (x86)\LinkSwift\LinkSwiftBHO.dll (LinkSwift) BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.) BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.) Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll (APN LLC.) Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\amd64\BingExt.dll (Microsoft Corporation.) Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-4300-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll (APN LLC.) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BingExt.dll (Microsoft Corporation.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\MP3 Skype Recorder\Skype4COM.dll (Skype Technologies) Chrome: ======= CHR RestoreOnStartup: "hxxp://www.google.de/" CHR Extension: (Google Drive) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_1 CHR Extension: (YouTube) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_1 CHR Extension: (Google Search) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_1 CHR Extension: (DVDVideoSoft) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_1 CHR Extension: (Google Wallet) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\pcoohmdcpejoeggdnihdfhohjgdbllgm\30.1_0 CHR Extension: (Gmail) - C:\Users\Hannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR HKLM-x32\...\Chrome\Extension: [odpccdgkmiicgocepijnaeihjnjnomca] - C:\Program Files (x86)\LinkSwift\odpccdgkmiicgocepijnaeihjnjnomca.crx CHR HKLM-x32\...\Chrome\Extension: [pcoohmdcpejoeggdnihdfhohjgdbllgm] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7C\CRX\ToolbarCR.crx ==================== Services (Whitelisted) ================= R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG) R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG) R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.) R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2012-03-30] (Diskeeper Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377104 2013-10-11] (LogMeIn, Inc.) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] () R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-11-18] (Nitro PDF Software) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation) R2 PnkBstrA; C:\WINDOWS\SysWow64\PnkBstrA.exe [76888 2013-10-18] () S2 Update LinkSwift; C:\Program Files (x86)\LinkSwift\updateLinkSwift.exe [66336 2013-11-02] () R2 Util LinkSwift; C:\Program Files (x86)\LinkSwift\bin\utilLinkSwift.exe [66336 2013-11-02] () S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14920 2013-01-29] (Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation) ==================== Drivers (Whitelisted) ==================== R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG) R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG) R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation) R3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132480 2012-10-01] (Motorola Solutions, Inc.) R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1337216 2012-10-01] (Motorola Solutions, Inc.) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2012-03-30] (Diskeeper Corporation) R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [95024 2012-03-30] (Diskeeper Corporation) R3 hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [46136 2013-11-29] (LogMeIn Inc.) R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3345376 2013-10-08] (Intel Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-01-23] () R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8230160 2012-10-17] (Realtek Semiconductor Corp.) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-04] (Synaptics Incorporated) S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2013-04-03] (Anchorfree Inc.) S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-12-30 19:06 - 2013-12-30 19:07 - 00028476 _____ C:\Users\Hannes\Downloads\Addition.txt 2013-12-30 19:05 - 2013-12-30 19:08 - 00018871 _____ C:\Users\Hannes\Downloads\FRST.txt 2013-12-30 19:05 - 2013-12-30 19:05 - 00000000 ____D C:\FRST 2013-12-30 19:04 - 2013-12-30 19:04 - 01931302 _____ (Farbar) C:\Users\Hannes\Downloads\FRST64.exe 2013-12-29 23:42 - 2013-12-29 23:42 - 00000000 ____D C:\Users\Hannes\AppData\Local\VNT 2013-12-29 23:41 - 2013-12-29 23:41 - 00002077 _____ C:\Users\Public\Desktop\Avira Control Center.lnk 2013-12-29 23:41 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2013-12-29 23:41 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2013-12-29 23:41 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2013-12-29 23:41 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys 2013-12-29 23:39 - 2013-12-29 23:40 - 129598176 _____ C:\Users\Hannes\Downloads\avira_free_antivirus_de_14.0.2.286.exe 2013-12-28 13:47 - 2013-12-28 13:49 - 00000000 ____D C:\Users\Hannes\.gimp-2.6 2013-12-28 13:47 - 2013-12-28 13:47 - 00000000 ____D C:\Users\Hannes\Documents\gegl-0.0 2013-12-27 12:58 - 2013-12-27 12:58 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Avira 2013-12-27 12:57 - 2013-12-29 23:42 - 00000000 ____D C:\Program Files (x86)\VNT 2013-12-27 12:57 - 2013-12-27 12:57 - 00000000 ____D C:\ProgramData\AskPartnerNetwork 2013-12-27 12:57 - 2013-12-27 12:57 - 00000000 ____D C:\ProgramData\APN 2013-12-27 12:57 - 2013-12-27 12:57 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork 2013-12-27 12:56 - 2013-12-27 12:56 - 00000000 ____D C:\ProgramData\Avira 2013-12-27 12:56 - 2013-12-27 12:56 - 00000000 ____D C:\Program Files (x86)\Avira 2013-12-23 18:56 - 2013-12-23 18:56 - 04253264 _____ (2013 Gaijin Entertainment Corporation ) C:\Users\Hannes\Downloads\wt_launcher_1.0.1.299 (1).exe 2013-12-23 18:36 - 2013-12-23 19:25 - 00000000 ____D C:\Program Files (x86)\WarThunder 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\Users\Hannes\Documents\My Games 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\Users\Hannes\AppData\Local\WarThunder 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\ProgramData\WarThunder 2013-12-23 18:35 - 2013-12-23 18:36 - 04253264 _____ (2013 Gaijin Entertainment Corporation ) C:\Users\Hannes\Downloads\wt_launcher_1.0.1.299.exe 2013-12-17 16:32 - 2013-12-17 16:32 - 00033528 _____ C:\Users\Hannes\Documents\Enzyme.xcf 2013-12-17 16:32 - 2013-12-17 16:32 - 00017780 _____ C:\Users\Hannes\AppData\Local\recently-used.xbel 2013-12-14 22:29 - 2013-12-14 22:29 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\MatchWare 2013-12-14 22:28 - 2013-12-14 22:28 - 00000000 ____D C:\Program Files (x86)\MatchWare 2013-12-14 22:24 - 2013-12-14 22:25 - 29840096 _____ C:\Users\Hannes\Downloads\mindview5_viewer.exe 2013-12-14 22:23 - 2013-12-14 22:25 - 154668744 _____ C:\Users\Hannes\Downloads\mediator9_ge_demo.exe 2013-12-12 20:08 - 2013-12-12 20:09 - 00000000 ____D C:\Users\Hannes\AppData\Local\Ubisoft Game Launcher 2013-12-12 20:04 - 2013-12-12 20:04 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Ubisoft 2013-12-12 20:04 - 2013-12-12 20:04 - 00000000 ____D C:\ProgramData\Ubisoft 2013-12-12 19:46 - 2013-12-12 20:01 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2013-12-10 20:34 - 2013-12-10 20:34 - 00000000 ____D C:\Users\Hannes\Downloads\CDROM 2013-12-08 14:19 - 2013-12-08 14:19 - 00000000 ____D C:\Users\Hannes\My Games 2013-12-07 21:18 - 2013-12-07 21:18 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2013-12-06 12:54 - 2013-12-07 11:09 - 00000000 ____D C:\Users\Hannes\Desktop\Endcoder 2013-12-06 12:53 - 2013-12-06 12:53 - 07103572 _____ C:\Users\Hannes\Downloads\Easy h264.rar 2013-12-06 12:28 - 2013-12-06 12:29 - 00456544 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _[1].mp4.sfk 2013-12-06 12:27 - 2013-12-06 12:29 - 00496864 _____ C:\Users\Hannes\Desktop\gameplay sno2.mp4.sfk 2013-12-06 11:09 - 2013-12-06 11:09 - 348778365 _____ C:\Users\Hannes\Downloads\gameplay sno2.mp4 2013-12-06 11:01 - 2013-12-06 11:04 - 132410356 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _[1].mp4 2013-12-06 10:51 - 2013-12-06 10:51 - 00456544 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _.mp4.sfk 2013-12-06 10:38 - 2013-12-06 10:41 - 130451250 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #01 _ Hijacked TDM 30-2 Gold MP7 _.mp4 2013-12-06 10:38 - 2013-12-06 10:40 - 132410356 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _.mp4 2013-12-05 14:25 - 2013-12-05 15:02 - 02448748 _____ C:\Users\Hannes\Documents\leon.xcf 2013-12-05 13:55 - 2013-12-05 13:55 - 01583995 _____ C:\Users\Hannes\Documents\ENGLISH_HA.xcf 2013-12-05 13:24 - 2013-12-05 13:24 - 00849235 _____ C:\Users\Hannes\Downloads\Hannes Kleiber.htm 2013-12-05 13:24 - 2013-12-05 13:24 - 00000000 ____D C:\Users\Hannes\Downloads\Hannes Kleiber_files 2013-12-01 13:15 - 2013-12-01 13:17 - 40343735 _____ C:\Users\Hannes\Downloads\Sphax PureBDcraft 64x Hexxit Patch 1.5.2 by werri33.zip 2013-12-01 13:12 - 2013-12-01 13:14 - 36021856 _____ C:\Users\Hannes\Downloads\Sphax_Hexxit _64x(1.1).zip 2013-12-01 10:38 - 2013-12-01 10:38 - 13601104 _____ C:\Users\Hannes\Downloads\Jahrgang_9 (2).zip 2013-11-30 13:54 - 2013-11-30 13:54 - 05877760 _____ C:\Users\Hannes\Downloads\Hamachi-2.2.0.105 (1).msi 2013-11-30 09:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll 2013-11-30 09:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll 2013-11-30 09:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll 2013-11-30 09:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll 2013-11-30 09:50 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll 2013-11-30 09:50 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll 2013-11-30 09:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll 2013-11-30 09:50 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll 2013-11-30 09:50 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll 2013-11-30 09:50 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll 2013-11-30 09:50 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll 2013-11-30 09:50 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll 2013-11-30 09:50 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll 2013-11-30 09:50 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll 2013-11-30 09:50 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll 2013-11-30 09:50 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll 2013-11-30 09:50 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll 2013-11-30 09:50 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll 2013-11-30 09:50 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll 2013-11-30 09:50 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll 2013-11-30 09:50 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll 2013-11-30 09:50 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll 2013-11-30 09:50 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll 2013-11-30 09:50 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll 2013-11-30 09:50 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll 2013-11-30 09:50 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll 2013-11-30 09:50 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll 2013-11-30 09:50 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll 2013-11-30 09:50 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll 2013-11-30 09:50 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll 2013-11-30 09:50 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll 2013-11-30 09:50 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll 2013-11-30 09:50 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll 2013-11-30 09:50 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll 2013-11-30 09:50 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll 2013-11-30 09:50 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll 2013-11-30 09:50 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll 2013-11-30 09:50 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll 2013-11-30 09:50 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll 2013-11-30 09:50 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll 2013-11-30 09:50 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll 2013-11-30 09:50 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll 2013-11-30 09:50 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll 2013-11-30 09:50 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll 2013-11-30 09:50 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll 2013-11-30 09:50 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll 2013-11-30 09:50 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll 2013-11-30 09:50 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll 2013-11-30 09:50 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll 2013-11-30 09:50 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll 2013-11-30 09:50 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll 2013-11-30 09:50 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll 2013-11-30 09:50 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll 2013-11-30 09:50 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll 2013-11-30 09:50 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll 2013-11-30 09:50 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll 2013-11-30 09:50 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll 2013-11-30 09:50 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll 2013-11-30 09:50 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll 2013-11-30 09:50 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll 2013-11-30 09:50 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll 2013-11-30 09:50 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll 2013-11-30 09:50 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll 2013-11-30 09:50 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll 2013-11-30 09:50 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll 2013-11-30 09:50 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll 2013-11-30 09:50 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll 2013-11-30 09:50 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll 2013-11-30 09:50 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll 2013-11-30 09:50 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll 2013-11-30 09:50 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll 2013-11-30 09:50 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll 2013-11-30 09:50 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll 2013-11-30 09:50 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll 2013-11-30 09:50 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll 2013-11-30 09:50 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll 2013-11-30 09:50 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll 2013-11-30 09:50 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll 2013-11-30 09:50 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll 2013-11-30 09:50 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll 2013-11-30 09:50 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll 2013-11-30 09:50 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll 2013-11-30 09:50 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll 2013-11-30 09:50 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll 2013-11-30 09:50 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll 2013-11-30 09:50 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll 2013-11-30 09:50 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll 2013-11-30 09:50 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll 2013-11-30 09:50 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll 2013-11-30 09:50 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll 2013-11-30 09:50 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll 2013-11-30 09:50 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll 2013-11-30 09:50 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll 2013-11-30 09:50 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll 2013-11-30 09:50 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll 2013-11-30 09:50 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll 2013-11-30 09:50 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll 2013-11-30 09:50 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll 2013-11-30 09:50 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll 2013-11-30 09:50 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll 2013-11-30 09:50 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll 2013-11-30 09:50 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll 2013-11-30 09:50 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll 2013-11-30 09:50 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll 2013-11-30 09:50 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll 2013-11-30 09:50 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll 2013-11-30 09:50 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll 2013-11-30 09:50 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll 2013-11-30 09:50 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll 2013-11-30 09:50 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll 2013-11-30 09:50 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll 2013-11-30 09:50 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll 2013-11-30 09:50 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll 2013-11-30 09:50 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll 2013-11-30 09:50 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll 2013-11-30 09:50 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll 2013-11-30 09:50 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll 2013-11-30 09:50 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll 2013-11-30 09:50 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll 2013-11-30 09:50 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll 2013-11-30 09:50 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll 2013-11-30 09:50 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll 2013-11-30 09:50 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll 2013-11-30 09:50 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll 2013-11-30 09:50 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll 2013-11-30 09:50 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll 2013-11-30 09:50 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll 2013-11-30 09:50 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll 2013-11-30 09:50 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll 2013-11-30 09:50 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll 2013-11-30 09:50 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll 2013-11-30 09:50 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll 2013-11-30 09:50 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll 2013-11-30 09:50 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll 2013-11-30 09:50 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll 2013-11-30 09:50 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll 2013-11-30 09:50 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll 2013-11-30 09:50 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll 2013-11-30 09:50 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll 2013-11-30 09:50 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll 2013-11-30 09:50 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll 2013-11-30 09:50 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll 2013-11-30 09:50 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll 2013-11-30 09:50 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll 2013-11-30 09:50 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll 2013-11-30 09:50 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll 2013-11-30 09:50 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll ==================== One Month Modified Files and Folders ======= 2013-12-30 19:08 - 2013-12-30 19:05 - 00018871 _____ C:\Users\Hannes\Downloads\FRST.txt 2013-12-30 19:07 - 2013-12-30 19:06 - 00028476 _____ C:\Users\Hannes\Downloads\Addition.txt 2013-12-30 19:05 - 2013-12-30 19:05 - 00000000 ____D C:\FRST 2013-12-30 19:04 - 2013-12-30 19:04 - 01931302 _____ (Farbar) C:\Users\Hannes\Downloads\FRST64.exe 2013-12-30 19:03 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\sru 2013-12-30 19:02 - 2013-05-23 15:00 - 00000000 ____D C:\Program Files (x86)\Steam 2013-12-30 18:53 - 2012-12-16 19:05 - 01353215 _____ C:\WINDOWS\WindowsUpdate.log 2013-12-30 17:39 - 2013-10-22 14:24 - 00001130 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-30 14:51 - 2013-07-29 13:56 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Skype 2013-12-30 14:50 - 2013-06-20 12:05 - 01384448 ___SH C:\Users\Hannes\Downloads\Thumbs.db 2013-12-30 14:34 - 2013-08-02 14:36 - 00039276 _____ C:\autoupdate.log 2013-12-30 14:34 - 2012-12-17 03:42 - 00754172 _____ C:\WINDOWS\system32\perfh007.dat 2013-12-30 14:34 - 2012-12-17 03:42 - 00156362 _____ C:\WINDOWS\system32\perfc007.dat 2013-12-30 14:34 - 2012-07-26 08:28 - 01748838 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2013-12-30 14:31 - 2013-08-01 12:31 - 00000000 ____D C:\Users\Hannes\AppData\Local\LogMeIn Hamachi 2013-12-30 14:26 - 2013-10-22 14:24 - 00001126 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-30 14:23 - 2012-12-16 18:58 - 00000000 ____D C:\ProgramData\NVIDIA 2013-12-30 14:23 - 2012-10-10 00:08 - 00360200 _____ C:\WINDOWS\PFRO.log 2013-12-30 14:23 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2013-12-29 23:54 - 2013-05-22 19:48 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1530443442-412923981-4076020994-1002 2013-12-29 23:42 - 2013-12-29 23:42 - 00000000 ____D C:\Users\Hannes\AppData\Local\VNT 2013-12-29 23:42 - 2013-12-27 12:57 - 00000000 ____D C:\Program Files (x86)\VNT 2013-12-29 23:41 - 2013-12-29 23:41 - 00002077 _____ C:\Users\Public\Desktop\Avira Control Center.lnk 2013-12-29 23:40 - 2013-12-29 23:39 - 129598176 _____ C:\Users\Hannes\Downloads\avira_free_antivirus_de_14.0.2.286.exe 2013-12-29 23:34 - 2013-05-22 19:39 - 00000000 ____D C:\Users\Hannes 2013-12-29 23:32 - 2013-08-01 11:30 - 00000000 ____D C:\Users\Hannes\Desktop\Spiele 2013-12-29 23:32 - 2012-07-26 09:12 - 00000000 __RHD C:\Users\Public\Libraries 2013-12-29 23:32 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\registration 2013-12-29 20:09 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\NDF 2013-12-28 13:49 - 2013-12-28 13:47 - 00000000 ____D C:\Users\Hannes\.gimp-2.6 2013-12-28 13:47 - 2013-12-28 13:47 - 00000000 ____D C:\Users\Hannes\Documents\gegl-0.0 2013-12-27 12:58 - 2013-12-27 12:58 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Avira 2013-12-27 12:57 - 2013-12-27 12:57 - 00000000 ____D C:\ProgramData\AskPartnerNetwork 2013-12-27 12:57 - 2013-12-27 12:57 - 00000000 ____D C:\ProgramData\APN 2013-12-27 12:57 - 2013-12-27 12:57 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork 2013-12-27 12:56 - 2013-12-27 12:56 - 00000000 ____D C:\ProgramData\Avira 2013-12-27 12:56 - 2013-12-27 12:56 - 00000000 ____D C:\Program Files (x86)\Avira 2013-12-26 12:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent 2013-12-25 14:22 - 2013-06-20 11:43 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Audacity 2013-12-23 19:25 - 2013-12-23 18:36 - 00000000 ____D C:\Program Files (x86)\WarThunder 2013-12-23 18:56 - 2013-12-23 18:56 - 04253264 _____ (2013 Gaijin Entertainment Corporation ) C:\Users\Hannes\Downloads\wt_launcher_1.0.1.299 (1).exe 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\Users\Hannes\Documents\My Games 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\Users\Hannes\AppData\Local\WarThunder 2013-12-23 18:36 - 2013-12-23 18:36 - 00000000 ____D C:\ProgramData\WarThunder 2013-12-23 18:36 - 2013-12-23 18:35 - 04253264 _____ (2013 Gaijin Entertainment Corporation ) C:\Users\Hannes\Downloads\wt_launcher_1.0.1.299.exe 2013-12-23 12:52 - 2013-05-24 18:36 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\TS3Client 2013-12-22 11:25 - 2013-07-11 08:15 - 00419328 ___SH C:\Users\Hannes\Desktop\Thumbs.db 2013-12-22 11:14 - 2013-06-13 18:35 - 00000000 ____D C:\Users\Hannes\AppData\Local\Windows Live 2013-12-19 19:31 - 2013-07-06 17:32 - 00463872 ___SH C:\Users\Hannes\Documents\Thumbs.db 2013-12-17 16:32 - 2013-12-17 16:32 - 00033528 _____ C:\Users\Hannes\Documents\Enzyme.xcf 2013-12-17 16:32 - 2013-12-17 16:32 - 00017780 _____ C:\Users\Hannes\AppData\Local\recently-used.xbel 2013-12-17 16:32 - 2013-07-23 13:19 - 00000000 ____D C:\Users\Hannes\AppData\Local\gtk-2.0 2013-12-17 16:32 - 2013-07-23 13:11 - 00000000 ____D C:\Users\Hannes\.gimp-2.8 2013-12-14 22:32 - 2013-05-28 05:04 - 00332819 _____ C:\WINDOWS\DirectX.log 2013-12-14 22:29 - 2013-12-14 22:29 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\MatchWare 2013-12-14 22:28 - 2013-12-14 22:28 - 00000000 ____D C:\Program Files (x86)\MatchWare 2013-12-14 22:25 - 2013-12-14 22:24 - 29840096 _____ C:\Users\Hannes\Downloads\mindview5_viewer.exe 2013-12-14 22:25 - 2013-12-14 22:23 - 154668744 _____ C:\Users\Hannes\Downloads\mediator9_ge_demo.exe 2013-12-14 10:00 - 2013-08-14 18:33 - 00000000 ____D C:\WINDOWS\system32\MRT 2013-12-14 09:57 - 2013-05-24 16:25 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2013-12-12 20:09 - 2013-12-12 20:08 - 00000000 ____D C:\Users\Hannes\AppData\Local\Ubisoft Game Launcher 2013-12-12 20:04 - 2013-12-12 20:04 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\Ubisoft 2013-12-12 20:04 - 2013-12-12 20:04 - 00000000 ____D C:\ProgramData\Ubisoft 2013-12-12 20:01 - 2013-12-12 19:46 - 00000000 ____D C:\Program Files (x86)\Ubisoft 2013-12-12 20:01 - 2012-12-16 18:55 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-12-12 19:56 - 2013-05-27 15:35 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-12-10 20:34 - 2013-12-10 20:34 - 00000000 ____D C:\Users\Hannes\Downloads\CDROM 2013-12-09 11:37 - 2013-12-29 23:41 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2013-12-09 11:37 - 2013-12-29 23:41 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2013-12-09 11:37 - 2013-12-29 23:41 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys 2013-12-09 11:37 - 2013-12-29 23:41 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys 2013-12-08 18:34 - 2013-10-22 14:24 - 00004102 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2013-12-08 18:34 - 2013-10-22 14:24 - 00003866 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2013-12-08 14:19 - 2013-12-08 14:19 - 00000000 ____D C:\Users\Hannes\My Games 2013-12-07 21:18 - 2013-12-07 21:18 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2013-12-07 11:09 - 2013-12-06 12:54 - 00000000 ____D C:\Users\Hannes\Desktop\Endcoder 2013-12-07 11:09 - 2013-11-18 17:44 - 00000000 ____D C:\Users\Hannes\Desktop\Schule und soo 2013-12-06 14:22 - 2013-09-10 14:24 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\vlc 2013-12-06 14:17 - 2013-06-16 16:51 - 00000000 ____D C:\Users\Hannes\Documents\Movie Studio Platinum 12.0 Projekte 2013-12-06 12:53 - 2013-12-06 12:53 - 07103572 _____ C:\Users\Hannes\Downloads\Easy h264.rar 2013-12-06 12:29 - 2013-12-06 12:28 - 00456544 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _[1].mp4.sfk 2013-12-06 12:29 - 2013-12-06 12:27 - 00496864 _____ C:\Users\Hannes\Desktop\gameplay sno2.mp4.sfk 2013-12-06 11:09 - 2013-12-06 11:09 - 348778365 _____ C:\Users\Hannes\Downloads\gameplay sno2.mp4 2013-12-06 11:04 - 2013-12-06 11:01 - 132410356 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _[1].mp4 2013-12-06 10:51 - 2013-12-06 10:51 - 00456544 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _.mp4.sfk 2013-12-06 10:41 - 2013-12-06 10:38 - 130451250 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #01 _ Hijacked TDM 30-2 Gold MP7 _.mp4 2013-12-06 10:40 - 2013-12-06 10:38 - 132410356 _____ C:\Users\Hannes\Documents\Free Gameplays to Use _ #02 _ Mission FFA 30-6 Gold ACR _.mp4 2013-12-05 15:02 - 2013-12-05 14:25 - 02448748 _____ C:\Users\Hannes\Documents\leon.xcf 2013-12-05 13:55 - 2013-12-05 13:55 - 01583995 _____ C:\Users\Hannes\Documents\ENGLISH_HA.xcf 2013-12-05 13:24 - 2013-12-05 13:24 - 00849235 _____ C:\Users\Hannes\Downloads\Hannes Kleiber.htm 2013-12-05 13:24 - 2013-12-05 13:24 - 00000000 ____D C:\Users\Hannes\Downloads\Hannes Kleiber_files 2013-12-05 10:35 - 2013-10-22 14:25 - 00002186 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-12-01 13:17 - 2013-12-01 13:15 - 40343735 _____ C:\Users\Hannes\Downloads\Sphax PureBDcraft 64x Hexxit Patch 1.5.2 by werri33.zip 2013-12-01 13:14 - 2013-12-01 13:12 - 36021856 _____ C:\Users\Hannes\Downloads\Sphax_Hexxit _64x(1.1).zip 2013-12-01 10:38 - 2013-12-01 10:38 - 13601104 _____ C:\Users\Hannes\Downloads\Jahrgang_9 (2).zip 2013-11-30 13:54 - 2013-11-30 13:54 - 05877760 _____ C:\Users\Hannes\Downloads\Hamachi-2.2.0.105 (1).msi 2013-11-30 13:51 - 2013-07-14 15:35 - 00000000 ____D C:\Users\Hannes\AppData\Roaming\.minecraft 2013-11-30 13:45 - 2013-11-29 17:44 - 00000000 ____D C:\Users\Hannes\Downloads\Google-Ergebnis für http www.feuerwehr-prenzlau.de images Berichte TdoT09 1.jpg_files Some content of TEMP: ==================== C:\Users\Hannes\AppData\Local\Temp\7z920.exe C:\Users\Hannes\AppData\Local\Temp\a2zLyrics_1060-8102_v122.exe C:\Users\Hannes\AppData\Local\Temp\appshat-distribution.exe C:\Users\Hannes\AppData\Local\Temp\AskSLib.dll C:\Users\Hannes\AppData\Local\Temp\avgnt.exe C:\Users\Hannes\AppData\Local\Temp\BabylonTB.exe C:\Users\Hannes\AppData\Local\Temp\FLVPlayerSetup.exe C:\Users\Hannes\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe C:\Users\Hannes\AppData\Local\Temp\FreemakeVideoConverter_4.0.2.17.exe C:\Users\Hannes\AppData\Local\Temp\ICReinstall_DownloadManagerSetup.exe C:\Users\Hannes\AppData\Local\Temp\Java.exe C:\Users\Hannes\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe C:\Users\Hannes\AppData\Local\Temp\kgpushark.exe C:\Users\Hannes\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Hannes\AppData\Local\Temp\nvSCPAPI64.dll C:\Users\Hannes\AppData\Local\Temp\nvStInst.exe C:\Users\Hannes\AppData\Local\Temp\Offercast_AVIRAV7_.exe C:\Users\Hannes\AppData\Local\Temp\sonarinst.exe C:\Users\Hannes\AppData\Local\Temp\swt-win32-3349.dll C:\Users\Hannes\AppData\Local\Temp\ubiD1C2.tmp.exe C:\Users\Hannes\AppData\Local\Temp\UpdateCheckerSetup.exe C:\Users\Hannes\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-12-28 13:41 ==================== End Of Log ============================ --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-12-2013 01 Ran by Hannes at 2013-12-30 19:09:07 Running from C:\Users\Hannes\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) 7-Zip 9.20 (x32 Version: - ) 7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov) Amazon Browser App (x32 Version: 1.0.0.0 - Amazon) Apple Application Support (x32 Version: 2.3.6 - Apple Inc.) Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.) Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.) Assassin's Creed II (x32 Version: 1.00 - Ubisoft) Audacity 2.0.3 (x32 Version: 2.0.3 - Audacity Team) Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira) Avira SearchFree Toolbar (x32 Version: 12.10.0.2951 - APN, LLC) Battlefield Play4Free (Hannes) (HKCU Version: - EA Digital illusions) Benutzerhandbuch (x32 Version: 1.0.0.9 - Lenovo) Bing Bar (x32 Version: 7.3.124.0 - Microsoft Corporation) Bonjour (Version: 3.0.0.10 - Apple Inc.) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Bundled software uninstaller (x32 Version: - ) <==== ATTENTION Call of Duty: Black Ops II - Multiplayer (x32 Version: - ) Call of Duty: Black Ops II - Zombies (x32 Version: - ) Call of Duty: Black Ops II (x32 Version: - Treyarch) Call of Duty: Modern Warfare 2 - Multiplayer (x32 Version: - Infinity Ward) Call of Duty: Modern Warfare 2 (x32 Version: - Infinity Ward) Copy (x32 Version: 140.0.298.000 - Hewlett-Packard) Counter-Strike: Global Offensive (x32 Version: - Valve) Crysis® 2 (x32 Version: 1.0.0.0 - Electronic Arts) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Dead Island (x32 Version: - Techland) Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) DJ_AIO_03_F2200_Software_Min (x32 Version: 140.0.425.000 - Hewlett-Packard) DMUninstaller (x32 Version: - ) DocProc (x32 Version: 140.0.185.000 - Hewlett-Packard) Dota 2 (x32 Version: - Valve) DVD Architect Studio 5.0 (x32 Version: 5.0.161 - Sony) Energy Management (x32 Version: 8.0.2.4 - Lenovo) ExpressCache (Version: 1.0.86 - Diskeeper Corporation) F2200 (x32 Version: 140.0.425.000 - Hewlett-Packard) FilesFrog Update Checker (x32 Version: - ) <==== ATTENTION Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Fraps (remove only) (x32 Version: - ) Free YouTube to MP3 Converter version 3.12.11.812 (x32 Version: 3.12.11.812 - DVDVideoSoft Ltd.) Freemake Video Converter Version 4.0.2 (x32 Version: 4.0.2 - Ellora Assets Corporation) GeForce Experience NvStream Client Components (Version: 0.1.87 - NVIDIA Corporation) Ghost Recon Online (EU) (HKCU Version: 1.34.4116.1 - Ubisoft) GIMP 2.8.6 (Version: 2.8.6 - The GIMP Team) Google Chrome (x32 Version: 31.0.1650.63 - Google Inc.) Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Grabster AV 300 MX Driver Installation (64 Bit) (x32 Version: 1.0.8.30 - TERRATEC Electronic GmbH) Grewe Scanner-Interface 7 (x32 Version: 7 - Grewe Computertechnik GmbH) Haunted Memories (x32 Version: - MadMan Theory Games) HP Customer Participation Program 14.0 (Version: 14.0 - HP) HP Deskjet F2200 All-In-One Driver Software 14.0 Rel. 6 (Version: 14.0 - HP) HP Imaging Device Functions 14.0 (Version: 14.0 - HP) HP Product Detection (x32 Version: 11.15.0009 - HP) HP Solution Center 14.0 (Version: 14.0 - HP) HP Update (x32 Version: 5.002.006.003 - Hewlett-Packard) HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Intel AppUp(SM) center (x32 Version: 3.6.1.33057.10 - Intel) Intel(R) Control Center (x32 Version: 1.2.1.1008 - Intel Corporation) Intel(R) Management Engine Components (x32 Version: 8.1.0.1252 - Intel Corporation) Intel(R) PRO/Wireless Driver (Version: 16.01.5000.0577 - Intel Corporation) Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (Version: 15.5.4.0423 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 2.6.1210.0278 - Intel Corporation) Intel(R) Rapid Storage Technology (x32 Version: 11.5.4.1001 - Intel Corporation) Intel® PROSet/Wireless Software (x32 Version: 16.1.5 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (Version: 16.01.5000.0269 - Intel Corporation) Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Intelligent Touchpad (x32 Version: 2.00.0012.0723 - Lenovo) iTunes (Version: 11.1.0.126 - Apple Inc.) Java 7 Update 45 (64-bit) (Version: 7.0.450 - Oracle) JMicron Flash Media Controller Driver (x32 Version: 1.0.71.1 - JMicron Technology Corp.) Left 4 Dead 2 (x32 Version: - Valve) Lenovo EasyCamera (x32 Version: 6.2.9200.10192 - Realtek Semiconductor Corp.) Lenovo OneKey Recovery (Version: 8.0.0.0710 - CyberLink Corp.) Lenovo OneKey Recovery (x32 Version: 8.0.0.0710 - CyberLink Corp.) Lenovo Photos (x32 Version: 4.8.5 - CEWE COLOR AG u Co. OHG) Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) LinkSwift 1.0.0 (Version: 1.0.0 - LinkSwift) LogMeIn Hamachi (x32 Version: 2.2.0.109 - LogMeIn, Inc.) MAGIX Video easy TERRATEC Edition (Version: 3.0.1.50 - MAGIX AG) MAGIX Video easy TERRATEC Edition (x32 Version: 3.0.1.50 - MAGIX AG) MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) MatchWare Mediator 9 Demo (x32 Version: 9.0.151 - MatchWare A/S) Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Microsoft Office (x32 Version: 14.0.6120.5004 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Movie Studio Platinum 12.0 (64-bit) (Version: 12.0.334 - Sony) Movie Studio Platinum 12.0 (x32 Version: 12.0.895 - Sony) MP3 Skype Recorder (x32 Version: 3.1.3 - Alexander Nikiforov) MSI Afterburner 2.3.1 (x32 Version: 2.3.1 - MSI Co., LTD) MSI Kombustor 2.5.0 (x32 Version: - MSI Co., LTD) MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation) Nitro Pro 8 (Version: 8.0.7.3 - Nitro) No More Room in Hell (x32 Version: - No More Room in Hell Team) Notepad++ (x32 Version: 6.4.3 - Notepad++ Team) NVIDIA 3D Vision Treiber 327.23 (Version: 327.23 - NVIDIA Corporation) NVIDIA GeForce Experience 1.6.1 (Version: 1.6.1 - NVIDIA Corporation) NVIDIA Grafiktreiber 327.23 (Version: 327.23 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.26.4 (Version: 1.3.26.4 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.133.902 - NVIDIA Corporation) NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2723 - NVIDIA Corporation) NVIDIA Systemsteuerung 327.23 (Version: 327.23 - NVIDIA Corporation) NVIDIA Update 8.3.14 (Version: 8.3.14 - NVIDIA Corporation) NVIDIA Update Components (Version: 8.3.14 - NVIDIA Corporation) NVIDIA Virtual Audio 1.2.5 (Version: 1.2.5 - NVIDIA Corporation) OCR Software by I.R.I.S. 14.0 (Version: 14.0 - HP) Onekey Theater (x32 Version: 3.0.0.9 - Lenovo) Origin (x32 Version: 9.1.15.109 - Electronic Arts, Inc.) Pando Media Booster (x32 Version: 2.6.0.7 - Pando Networks Inc.) PAYDAY 2 Demo (x32 Version: - OVERKILL - a Starbreeze Studio.) Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Pinball Arcade (x32 Version: - FarSight Studios) Power2Go (x32 Version: 5.6.0.9109 - CyberLink Corp.) PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.) Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.12 - Qualcomm Atheros Communications Inc.) Razer Game Booster (x32 Version: 3.7 - Razer USA Ltd) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6788 - Realtek Semiconductor Corp.) ROCCAT Power-Grid Version 0.458 (x32 Version: 0.458 - ROCCAT GmbH) Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Shared C Run-time for x64 (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 1.05.28 - NVIDIA Corporation) Shop for HP Supplies (Version: 14.0 - HP) Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.) SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Sound Forge Audio Studio 10.0 (x32 Version: 10.0.178 - Sony) Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Steam (x32 Version: 1.0.0.0 - Valve Corporation) SugarSync Manager (x32 Version: 1.9.61.90905 - SugarSync, Inc.) Synaptics Pointing Device Driver (Version: 16.2.18.0 - Synaptics Incorporated) Tactical Intervention (x32 Version: - FIX Korea) Team Fortress 2 (x32 Version: - Valve) TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH) Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT) Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32 Version: - Microsoft) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (x32 Version: - Microsoft) Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft) Update für Microsoft Office Outlook 2007 Help (KB963677) (x32 Version: - Microsoft) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft) Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft) UserGuide (x32 Version: 1.0.0.9 - Lenovo) VLC media player 2.0.8 (x32 Version: 2.0.8 - VideoLAN) War Thunder Launcher 1.0.1.299 (x32 Version: - 2013 Gaijin Entertainment Corporation) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Windows-Treiberpaket - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (Version: 06/15/2012 8.1.0.1 - Lenovo) Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733 - Lenovo) Windows-Treiberpaket - TERRATEC (SMIGrabber3C) Media (02/23/2011 1.0.8.30) (Version: 02/23/2011 1.0.8.30 - TERRATEC ) YTD Video Downloader 4.1 (x32 Version: 4.1 - GreenTree Applications SRL) ==================== Restore Points ========================= ==================== Hosts content: ========================== 2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {4DF3806B-84B5-4CB1-B584-CB762892D5EB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-22] (Google Inc.) Task: {5CD7C855-3FCC-4EB1-886C-78BF207963EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-22] (Google Inc.) Task: {642D86D8-16D7-4D2E-A630-130AAC1ABE20} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2013-06-05] () Task: {8C29A0A5-93D2-46B2-A1EF-BAC50386D9FC} - System32\Tasks\OFFICE2010ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [2012-03-08] () Task: {8D476D5A-B9DF-46ED-AFA2-8681809D31D9} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2012-07-27] (CyberLink) Task: {9B9222A5-79DA-4F3F-83A2-88FE45294D98} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\System32\Dism.exe [2012-07-26] (Microsoft Corporation) Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2012-12-16 18:58 - 2013-09-12 08:25 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2013-06-01 10:00 - 2013-06-01 10:00 - 00176048 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll 2013-12-29 23:41 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll 2013-09-13 18:51 - 2013-09-13 18:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-09-13 18:51 - 2013-09-13 18:51 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2013-12-15 17:23 - 2013-12-12 23:19 - 00142848 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll 2013-12-15 17:23 - 2013-11-05 02:12 - 00890592 _____ () C:\Program Files (x86)\Steam\libavutil-52.dll 2013-04-23 17:30 - 2013-12-12 23:04 - 00716800 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2013-05-03 14:35 - 2013-12-27 20:43 - 01138088 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2013-03-26 15:16 - 2013-12-12 23:04 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2012-12-11 08:51 - 2013-06-15 00:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll 2012-12-11 08:51 - 2013-06-15 00:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll 2012-12-11 08:51 - 2013-06-15 00:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll 2013-05-03 14:35 - 2013-12-27 20:43 - 00121256 _____ () C:\Program Files (x86)\Steam\bin\audio.dll 2012-09-07 14:37 - 2013-06-15 00:49 - 00071680 _____ () C:\Program Files (x86)\Steam\bin\mssmp3.asi 2013-07-11 07:54 - 2013-06-15 00:49 - 00153088 _____ () C:\Program Files (x86)\Steam\bin\mssvoice.asi 2013-12-05 10:35 - 2013-12-04 03:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll 2013-12-05 10:35 - 2013-12-04 03:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll 2013-12-05 10:35 - 2013-12-04 03:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll 2013-12-05 10:35 - 2013-12-04 03:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll 2013-12-05 10:35 - 2013-12-04 03:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll 2013-06-01 10:42 - 2013-06-01 10:42 - 00017920 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\b7e46cbfac63d17d07c7ab439f13c0da\PSIClient.ni.dll 2012-12-16 18:57 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2013-12-05 10:35 - 2013-12-04 03:48 - 13586896 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\Windows:nlsPreferences ==================== Safe Mode (whitelisted) =================== HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/30/2013 06:55:32 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 3187 Error: (12/30/2013 06:55:32 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 3187 Error: (12/30/2013 06:55:32 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/30/2013 06:55:31 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2140 Error: (12/30/2013 06:55:31 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2140 Error: (12/30/2013 06:55:31 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/30/2013 06:55:30 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1078 Error: (12/30/2013 06:55:30 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1078 Error: (12/30/2013 06:55:30 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/30/2013 06:31:10 PM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5640 System errors: ============= Error: (12/30/2013 02:25:37 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/30/2013 02:25:37 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst LogMeIn Hamachi Tunneling Engine erreicht. Error: (12/30/2013 02:24:43 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Update LinkSwift" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/30/2013 02:24:43 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Update LinkSwift erreicht. Error: (12/30/2013 02:23:29 PM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 30.12.2013 um 00:54:03 unerwartet heruntergefahren. Error: (12/30/2013 00:39:54 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/30/2013 00:39:54 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht. Error: (12/29/2013 11:41:31 PM) (Source: DCOM) (User: NT-AUTORITÄT) Description: {4EB61BAC-A3B6-4760-9581-655041EF4D69} Error: (12/29/2013 11:35:46 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Util LinkSwift" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/29/2013 11:35:46 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Util LinkSwift erreicht. Microsoft Office Sessions: ========================= CodeIntegrity Errors: =================================== Date: 2013-12-30 18:11:13.037 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:56:19.380 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:55:46.617 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:55:05.521 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:55:04.439 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:31:10.464 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:30:25.372 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:29:21.049 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 17:00:10.856 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. Date: 2013-12-30 16:53:07.866 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system. ==================== Memory info =========================== Percentage of memory in use: 21% Total physical RAM: 16331.27 MB Available physical RAM: 12799.31 MB Total Pagefile: 18635.27 MB Available Pagefile: 14197.96 MB Total Virtual: 8192 MB Available Virtual: 8191.77 MB ==================== Drives ================================ Drive c: (Windows8_OS) (Fixed) (Total:884.18 GB) (Free:258.68 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.63 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 15 GB) (Disk ID: 19BC858E) Partition: GPT Partition Type ======================================================== Disk: 1 (Size: 932 GB) (Disk ID: 19BC858F) Partition: GPT Partition Type ==================== End Of Log ============================ Ich bedanke mich schon mal für deine Hilfe lieber schrauber |
31.12.2013, 15:08 | #4 | ||
/// the machine /// TB-Ausbilder | Pc mit mal extrem Langsam!!?Zitat:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
01.01.2014, 01:41 | #5 |
| Pc mit mal extrem Langsam!!? So also mal vorweg inzwischen ist mein Laptop wieder genau so schnell wie damals. Wenn ich auf den Arbeitsplatz gehe wird mir kein Laufwerk E angezeigt! Zur zeit des Scans war eine tastatur,eine Maus und ein Headset angeschlossen vllt hilft dir das weiter. Code:
ATTFilter ComboFix 13-12-31.01 - Hannes 01.01.2014 1:28.1.8 - x64 Microsoft Windows 8 6.2.9200.0.1252.49.1031.18.16331.11294 [GMT 1:00] ausgeführt von:: c:\users\Hannes\Desktop\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ADS - WINDOWS: deleted 192 bytes in 1 streams. . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\LinkSwift c:\program files (x86)\LinkSwift\bin\plugins\LinkSwift.FFUpdate.dll c:\program files (x86)\LinkSwift\bin\plugins\LinkSwift.GCUpdate.dll c:\program files (x86)\LinkSwift\bin\plugins\LinkSwift.IEUpdate.dll c:\program files (x86)\LinkSwift\bin\sqlite3.dll c:\program files (x86)\LinkSwift\bin\utilLinkSwift.exe c:\program files (x86)\LinkSwift\bin\utilLinkSwift.InstallState c:\program files (x86)\LinkSwift\LinkSwift.ico c:\program files (x86)\LinkSwift\LinkSwiftBHO.dll c:\program files (x86)\LinkSwift\LinkSwiftUninstall.exe c:\program files (x86)\LinkSwift\odpccdgkmiicgocepijnaeihjnjnomca.crx c:\program files (x86)\LinkSwift\sqlite3.exe c:\program files (x86)\LinkSwift\updateLinkSwift.exe c:\program files (x86)\LinkSwift\updateLinkSwift.InstallState c:\programdata\Roaming c:\users\Hannes\AppData\Local\Microsoft\Windows\Temporary Internet Files\LinkSwift_iels c:\windows\SysWow64\frapsvid.dll . . ((((((((((((((((((((((((((((((((((((((( Treiber/Dienste ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_Update_LinkSwift -------\Legacy_Util_LinkSwift -------\Legacy_Update_LinkSwift -------\Legacy_Util_LinkSwift -------\Service_Update LinkSwift -------\Service_Util LinkSwift -------\Service_Update LinkSwift -------\Service_Util LinkSwift . . ((((((((((((((((((((((( Dateien erstellt von 2013-12-01 bis 2014-01-01 )))))))))))))))))))))))))))))) . . 2014-01-01 00:32 . 2014-01-01 00:32 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2013-12-30 19:44 . 2013-12-30 19:44 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi 2013-12-30 18:05 . 2013-12-30 18:05 -------- d-----w- C:\FRST 2013-12-29 22:42 . 2013-12-29 22:42 -------- d-----w- c:\users\Hannes\AppData\Local\VNT 2013-12-29 22:41 . 2013-12-09 10:37 84720 ----a-w- c:\windows\system32\drivers\avnetflt.sys 2013-12-29 22:41 . 2013-12-09 10:37 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys 2013-12-29 22:41 . 2013-12-09 10:37 131576 ----a-w- c:\windows\system32\drivers\avipbb.sys 2013-12-29 22:41 . 2013-12-09 10:37 108440 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2013-12-28 12:47 . 2013-12-28 12:49 -------- d-----w- c:\users\Hannes\.gimp-2.6 2013-12-27 11:58 . 2013-12-27 11:58 -------- d-----w- c:\users\Hannes\AppData\Roaming\Avira 2013-12-27 11:57 . 2013-12-29 22:42 -------- d-----w- c:\program files (x86)\VNT 2013-12-27 11:57 . 2013-12-27 11:57 -------- d-----w- c:\programdata\AskPartnerNetwork 2013-12-27 11:57 . 2013-12-27 11:57 -------- d-----w- c:\program files (x86)\AskPartnerNetwork 2013-12-27 11:57 . 2013-12-27 11:57 -------- d-----w- c:\programdata\APN 2013-12-27 11:56 . 2013-12-27 11:56 -------- d-----w- c:\programdata\Avira 2013-12-27 11:56 . 2013-12-27 11:56 -------- d-----w- c:\program files (x86)\Avira 2013-12-23 17:36 . 2013-12-23 17:36 -------- d-----w- c:\users\Hannes\AppData\Local\WarThunder 2013-12-23 17:36 . 2013-12-23 17:36 -------- d-----w- c:\programdata\WarThunder 2013-12-23 17:36 . 2013-12-23 18:25 -------- d-----w- c:\program files (x86)\WarThunder 2013-12-14 21:29 . 2013-12-14 21:29 -------- d-----w- c:\users\Hannes\AppData\Roaming\MatchWare 2013-12-14 21:28 . 2013-12-14 21:28 -------- d-----w- c:\program files (x86)\MatchWare 2013-12-14 21:25 . 2013-12-14 21:25 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard 2013-12-12 19:08 . 2013-12-12 19:09 -------- d-----w- c:\users\Hannes\AppData\Local\Ubisoft Game Launcher 2013-12-12 19:04 . 2013-12-12 19:04 -------- d-----w- c:\users\Hannes\AppData\Roaming\Ubisoft 2013-12-12 19:04 . 2013-12-12 19:04 -------- d-----w- c:\programdata\Ubisoft 2013-12-12 18:46 . 2013-12-12 19:01 -------- d-----w- c:\program files (x86)\Ubisoft 2013-12-08 13:19 . 2013-12-08 13:19 -------- d-----w- c:\users\Hannes\My Games . . . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-12-14 08:57 . 2013-05-24 15:25 90708896 ----a-w- c:\windows\system32\MRT.exe 2013-11-29 19:12 . 2013-11-29 19:12 108968 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll 2013-11-29 19:12 . 2013-11-29 19:12 312744 ----a-w- c:\windows\system32\javaws.exe 2013-11-29 19:12 . 2013-11-29 19:12 189352 ----a-w- c:\windows\system32\javaw.exe 2013-11-29 19:12 . 2013-11-29 19:12 189352 ----a-w- c:\windows\system32\java.exe 2013-11-29 15:19 . 2013-11-29 15:19 46136 ---ha-w- c:\windows\system32\drivers\Hamdrv.sys 2013-11-19 10:21 . 2013-11-29 16:30 267936 ------w- c:\windows\system32\MpSigStub.exe 2013-11-18 00:28 . 2013-11-30 11:36 10285968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6CF31D3D-83E8-4E6A-BC3E-8D23EB3DAC4F}\mpengine.dll 2013-10-18 21:45 . 2013-05-23 13:21 298584 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr 2013-10-18 21:45 . 2013-05-23 13:05 298584 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2013-10-18 21:32 . 2013-05-23 13:05 281872 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0 2013-10-18 21:32 . 2013-05-23 13:05 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe 2013-10-08 21:12 . 2013-10-08 21:12 2193136 ----a-w- c:\windows\system32\Netwuw01.dll 2013-10-08 21:12 . 2013-10-08 21:12 3345376 ----a-w- c:\windows\system32\drivers\NETwew00.sys . . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{41564952-412D-5637-4300-7A786E7484D7}] 2013-12-20 21:02 12240 ----a-w- c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 2013-08-15 15:40 277560 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{41564952-412D-5637-4300-7A786E7484D7}"= "c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport.dll" [2013-12-20 12240] . [HKEY_CLASSES_ROOT\clsid\{41564952-412d-5637-4300-7a786e7484d7}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Steam"="c:\program files (x86)\Steam\steam.exe" [2013-12-27 1815464] "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-11-14 20584608] "SDP"="c:\users\Hannes\AppData\Local\FilesFrog Update Checker\update_checker.exe" [2013-01-31 201808] "GoogleChromeAutoLaunch_421CD927D602703F060389B1170E4C65"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2013-12-04 863184] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-08-23 56128] "YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2012-07-27 136488] "YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-07-27 167024] "UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-18 217088] "Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488] "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720] "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2010-06-09 49208] "avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-12-09 684600] "ApnTBMon"="c:\program files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2013-12-20 1778640] "VNT"="c:\program files (x86)\VNT\vntldr.exe" [2013-12-20 202192] "LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-11-29 3806544] . c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\ HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2011-4-29 276328] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "EnableUIADesktopToggle"= 0 (0x0) "EnableCursorSuppression"= 1 (0x1) "ConsentPromptBehaviorUser"= 3 (0x3) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon] "Userinit"="userinit.exe" . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 AMPPALP;Intel® Centrino® Wireless Bluetooth® + High Speed Protokoll;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x] R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe [x] R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x] R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x] R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys;c:\program files (x86)\MSI Afterburner\RTCore64.sys [x] R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x] R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x] R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x] S0 excsd;ExpressCache Storage Filter Driver;c:\windows\system32\DRIVERS\excsd.sys;c:\windows\SYSNATIVE\DRIVERS\excsd.sys [x] S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x] S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x] S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x] S1 excfs;ExpressCache File System Filter Driver;c:\windows\system32\DRIVERS\excfs.sys;c:\windows\SYSNATIVE\DRIVERS\excfs.sys [x] S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x] S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x] S2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x] S2 APNMCP;Ask Aktualisierungsdienst;c:\program files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe;c:\program files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [x] S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x] S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe [x] S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x] S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x] S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x] S2 ExpressCache;ExpressCache;c:\program files\Diskeeper Corporation\ExpressCache\ExpressCache.exe;c:\program files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [x] S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x] S2 IAStorDataMgrSvc;Intel(R) Rapid Storage-Technologie;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x] S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x] S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x] S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x] S2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [x] S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x] S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x] S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x] S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x] S3 AMPPAL;Intel® Centrino® Wireless Bluetooth® + High Speed - Virtueller Adapter;c:\windows\System32\drivers\AMPPAL.sys;c:\windows\SYSNATIVE\drivers\AMPPAL.sys [x] S3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x] S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x] S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x] S3 ibtfltcoex;ibtfltcoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x] S3 JMCR;JMCR;c:\windows\System32\drivers\jmcr.sys;c:\windows\SYSNATIVE\drivers\jmcr.sys [x] S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x] S3 NETwNe64;Intel(R) Wireless WiFi Link der Serie 5000 Adaptertreiber für Windows 8 64-Bit;c:\windows\system32\DRIVERS\NETwew00.sys;c:\windows\SYSNATIVE\DRIVERS\NETwew00.sys [x] S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x] S3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x] S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x] S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-12-05 09:34 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe . Inhalt des "geplante Tasks" Ordners . 2014-01-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-10-22 13:24] . 2013-12-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-10-22 13:24] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41564952-412D-5637-4300-7A786E7484D7}] 2013-12-20 21:02 13776 ----a-w- c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] 2013-08-15 15:40 336952 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{41564952-412D-5637-4300-7A786E7484D7}"= "c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7C\Passport_x64.dll" [2013-12-20 13776] . [HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-4300-7A786E7484D7}] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp] @="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}" [HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}] 2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending] @="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}" [HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}] 2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot] @="{A759AFF6-5851-457D-A540-F4ECED148351}" [HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}] 2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared] @="{1574C9EF-7D58-488F-B358-8B78C1538F51}" [HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}] 2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-11-19 13260944] "RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-11-19 1253520] "BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshellex.dll" [2012-09-30 11582848] "RtsFT"="RTFTrack.exe" [2012-10-17 6334096] "OnekeyStudio"="c:\program files\Lenovo\Onekey Theater\OnekeyStudio.exe" [2012-08-10 4196432] "Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2012-12-16 17080376] "EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2012-12-16 191544] "Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-08-27 1028896] . ------- Zusätzlicher Suchlauf ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://lenovo13.msn.com mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: An Bluetooth senden - c:\program files (x86)\Intel\Bluetooth\btSendToObject.htm IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll TCP: DhcpNameServer = 192.168.2.1 . - - - - Entfernte verwaiste Registrierungseinträge - - - - . BHO-{323420b6-65e5-4657-8106-a27392d4d4aa} - c:\program files (x86)\LinkSwift\LinkSwiftbho.dll Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-Overwolf - c:\program files (x86)\Overwolf\Overwolf.exe Wow6432Node-HKLM-Run-iTunesHelper - c:\program files (x86)\iTunes\iTunesHelper.exe Wow6432Node-HKLM-Run-<NO NAME> - (no file) BHO-{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - c:\program files (x86)\Hotspot Shield\HssIE\HssIE_64.dll Toolbar-Locked - (no file) HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe HKLM-Run-SynLenovoGestureMgr - c:\program files (x86)\Synaptics\SynTP\SynLenovoGestureMgr.exe . . . --------------------- Gesperrte Registrierungsschluessel --------------------- . [HKEY_USERS\.DefaultCsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\Microsoft\Internet Explorer\Approved Extensions] @Denied: (2) (LocalSystem) "{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96, 76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07, 72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57 "{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db, df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd "{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}"=hex:51,66,7a,6c,4c,1d,38,12,27,28,80, ea,f2,9b,77,08,dc,cc,8d,48,4c,7b,c9,f2 "{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}"=hex:51,66,7a,6c,4c,1d,38,12,3a,a3,f7, fd,83,a7,ad,0e,fc,b5,35,e1,ab,2d,25,64 "{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47, 2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85 "{FF059E31-CC5A-4E2E-BF3B-96E929D65503}"=hex:51,66,7a,6c,4c,1d,38,12,5f,9d,16, fb,68,82,40,0b,c0,2d,d5,a9,2c,88,11,17 "{BDEADE7F-C265-11D0-BCED-00A0C90AB50F}"=hex:51,66,7a,6c,4c,1d,38,12,11,dd,f9, b9,57,8c,be,54,c3,fb,43,e0,cc,54,f1,1b . [HKEY_USERS\.DefaultCsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration] @Denied: (2) (LocalSystem) "Timestamp"=hex:11,fc,7c,6b,f1,a7,ce,01 . [HKEY_USERS\.DefaultCsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\Microsoft\Internet Explorer\User Preferences] @Denied: (2) (LocalSystem) "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,96,22,c7,5e,a3,4f,7d,4f,a0,31,b7,\ "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15, d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,96,22,c7,5e,a3,4f,7d,4f,a0,31,b7,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) @SACL=(02 0000) . ------------------------ Weitere laufende Prozesse ------------------------ . c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe c:\windows\SysWOW64\PnkBstrA.exe c:\program files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe c:\program files (x86)\HP\Digital Imaging\bin\hpqbam08.exe c:\program files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe . ************************************************************************** . Zeit der Fertigstellung: 2014-01-01 01:37:44 - PC wurde neu gestartet ComboFix-quarantined-files.txt 2014-01-01 00:37 . Vor Suchlauf: 14 Verzeichnis(se), 304.374.984.704 Bytes frei Nach Suchlauf: 20 Verzeichnis(se), 305.832.505.344 Bytes frei . - - End Of File - - 32F6EA13337A8E72E78877D7235D7381 |
01.01.2014, 13:41 | #6 |
/// the machine /// TB-Ausbilder | Pc mit mal extrem Langsam!!? Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Pc mit mal extrem Langsam!!? |
Themen zu Pc mit mal extrem Langsam!!? |
cs:go, daten, ellung, extrem, extrem langsam, film, freunde, geholfen, gestartet, helft, langsam, langsamer pc, movie, movie2k, problem, runde, stunde, stunden, systemwiederherstellung, systemwiederherstellung gemacht, trojaner, virus, wichtige, wichtige daten, zocken |