Windows 7 langsam (PC 2): FRST Log Analyse und Hilfe für Dienste Prozesse

Maiandros · 30.10.2014, 12:04

Code:

ATTFilter

ComboFix 14-10-29.01 - Jerekin 30.10.2014  11:43:49.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.3950.2699 [GMT 1:00]
ausgeführt von:: c:\users\Jerekin\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jerekin\AppData\Roaming\Microsoft\Windows\Recent\PlanetSide 2.url
c:\windows\msdownld.tmp
c:\windows\security\Database\tmp.edb
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\wpcap.dll
.
.
(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ACEDRV11
-------\Legacy_NPF
-------\Service_acedrv11
-------\Service_npf
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-09-28 bis 2014-10-30  ))))))))))))))))))))))))))))))
.
.
2014-10-30 10:53 . 2014-10-30 10:53	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-10-30 07:44 . 2014-10-14 19:59	11627712	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{82DAD743-B16D-478F-8827-C148EE23B0F2}\mpengine.dll
2014-10-29 13:39 . 2014-10-29 13:41	--------	d-----w-	C:\FRST
2014-10-29 09:58 . 2014-10-29 09:58	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2014-10-29 09:58 . 2014-10-29 09:58	--------	d-----r-	c:\program files (x86)\Skype
2014-10-29 09:58 . 2014-10-29 09:58	--------	d-----w-	c:\programdata\Skype
2014-10-25 09:45 . 2014-10-25 09:46	--------	d-----w-	c:\programdata\Freemake
2014-10-25 09:45 . 2014-10-25 09:45	--------	d-----w-	c:\program files (x86)\Freemake
2014-10-20 09:40 . 2014-10-20 09:40	--------	d-----w-	c:\programdata\LogiShrd
2014-10-20 09:39 . 2014-10-20 09:39	--------	d-----w-	c:\program files\Bonjour
2014-10-20 09:39 . 2014-10-20 09:39	--------	d-----w-	c:\program files (x86)\Bonjour
2014-10-20 09:39 . 2014-10-20 09:39	--------	d-----w-	c:\programdata\Apple
2014-10-20 09:38 . 2014-10-20 09:39	--------	d-----w-	c:\program files\Logitech Gaming Software
2014-10-18 16:27 . 2014-10-18 16:27	--------	d-----w-	c:\users\Jerekin\AppData\Local\Broadcom
2014-10-18 16:23 . 2014-10-18 16:23	--------	d-----w-	c:\program files\Broadcom
2014-10-18 16:20 . 2011-05-11 14:17	22056	----a-w-	c:\windows\system32\btwcoins.dll
2014-10-18 16:20 . 2011-05-11 14:17	21544	----a-w-	c:\windows\system32\drivers\btwrchid.sys
2014-10-18 16:20 . 2011-05-11 14:17	163880	----a-w-	c:\windows\system32\drivers\btwavdt.sys
2014-10-18 16:20 . 2011-05-11 14:17	436776	----a-w-	c:\windows\system32\drivers\btwampfl.sys
2014-10-18 16:20 . 2011-05-11 14:17	150568	----a-w-	c:\windows\system32\drivers\btwaudio.sys
2014-10-18 16:20 . 2011-05-11 14:15	39976	----a-w-	c:\windows\system32\drivers\btwl2cap.sys
2014-10-18 16:19 . 2014-10-18 16:19	--------	d-----w-	c:\program files\WIDCOMM
2014-10-18 16:12 . 2014-10-18 16:12	--------	d-----w-	C:\Intel
2014-10-18 15:55 . 2000-01-01 00:00	97624	----a-w-	c:\windows\system32\RTEEL64H.dll
2014-10-18 15:53 . 2014-10-18 15:53	--------	d-----w-	c:\program files (x86)\Marvell
2014-10-18 15:34 . 2014-10-29 22:44	48240	----a-w-	c:\program files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2014-10-18 15:25 . 2014-10-18 15:26	--------	d-----w-	c:\program files (x86)\MosaicCreator
2014-10-18 15:24 . 2014-10-29 22:44	220784	----a-w-	c:\program files (x86)\Mozilla Firefox\sandboxbroker.dll
2014-10-18 15:03 . 2014-10-18 15:03	--------	d-----w-	c:\program files (x86)\OpenOffice 4
2014-10-18 14:29 . 2014-10-18 14:29	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-10-18 14:29 . 2014-10-18 14:29	--------	d-----w-	c:\program files (x86)\Java
2014-10-18 14:16 . 2014-10-18 14:16	--------	d-----w-	c:\users\Jerekin\AppData\Local\Secunia PSI
2014-10-18 14:16 . 2014-10-18 14:16	--------	d-----w-	c:\program files (x86)\Secunia
2014-10-18 13:53 . 2014-10-18 13:53	0	----a-w-	c:\windows\ativpsrm.bin
2014-10-18 13:50 . 2014-10-18 13:50	--------	d-----w-	c:\programdata\AMD
2014-10-18 13:50 . 2014-10-18 13:50	--------	d-----w-	c:\program files (x86)\AMD AVT
2014-10-18 13:50 . 2014-10-18 13:50	--------	d-----w-	c:\program files (x86)\Common Files\ATI Technologies
2014-10-18 13:48 . 2014-10-18 13:48	--------	d-----w-	c:\program files\Common Files\ATI Technologies
2014-10-18 13:37 . 2014-10-18 14:30	--------	d-----w-	c:\program files (x86)\NirSoft
2014-10-18 13:20 . 2014-10-18 13:20	--------	d-----w-	c:\users\Jerekin\AppData\Local\SlimWare Utilities Inc
2014-10-18 13:20 . 2014-10-18 13:20	--------	d-----w-	c:\program files (x86)\SlimDrivers
2014-10-18 13:05 . 2014-10-18 13:05	--------	d-----w-	c:\program files (x86)\RegCleaner
2014-10-18 12:46 . 2014-10-18 12:46	--------	d-----w-	c:\users\Jerekin\AppData\Local\StormFall
2014-10-18 12:41 . 2014-10-18 12:41	--------	d-----w-	c:\program files (x86)\Ashampoo
2014-10-17 05:53 . 2014-09-18 02:00	3241472	----a-w-	c:\windows\system32\msi.dll
2014-10-17 05:53 . 2014-09-18 01:32	2363904	----a-w-	c:\windows\SysWow64\msi.dll
2014-10-17 05:53 . 2014-09-04 05:23	424448	----a-w-	c:\windows\system32\rastls.dll
2014-10-17 05:53 . 2014-09-04 05:04	372736	----a-w-	c:\windows\SysWow64\rastls.dll
2014-10-17 05:53 . 2014-07-17 01:39	3221504	----a-w-	c:\windows\SysWow64\mstscax.dll
2014-10-17 05:53 . 2014-07-17 02:07	3722240	----a-w-	c:\windows\system32\mstscax.dll
2014-10-17 05:53 . 2014-07-17 02:07	1118720	----a-w-	c:\windows\system32\mstsc.exe
2014-10-16 10:28 . 2014-10-16 10:28	--------	d-----w-	c:\program files\Apoint
2014-10-16 10:28 . 2011-03-23 12:13	107376	----a-w-	c:\windows\system32\Vxdif.dll
2014-10-16 10:28 . 2011-03-23 12:13	316024	----a-w-	c:\windows\system32\drivers\Apfiltr.sys
2014-10-14 22:19 . 2014-10-14 22:19	--------	d-----w-	c:\users\Public\Foxit Software
2014-10-13 22:12 . 2014-10-13 22:12	--------	d-----w-	c:\programdata\SeriousBit
2014-10-13 22:11 . 2013-11-25 08:28	41392	----a-w-	c:\windows\system32\drivers\nbdrv.sys
2014-10-13 22:11 . 2014-10-13 22:12	--------	d-----w-	c:\program files\NetBalancer
2014-10-13 22:09 . 2014-10-13 22:11	--------	d-----w-	c:\users\Jerekin\AppData\Roaming\Opera Software
2014-10-13 22:09 . 2014-10-13 22:11	--------	d-----w-	c:\users\Jerekin\AppData\Local\Opera Software
2014-10-13 22:08 . 2014-10-13 22:08	--------	d-----w-	c:\users\Jerekin\AppData\Local\WorldofTanks
2014-10-13 21:59 . 2014-10-13 21:59	--------	d-----w-	c:\program files\Microsoft Network Monitor 3
2014-10-11 20:04 . 2014-10-11 20:04	--------	d-----w-	c:\users\Jerekin\AppData\Roaming\Oracle
2014-10-11 17:27 . 2014-10-11 17:27	--------	d-----w-	c:\users\Jerekin\AppData\Local\PackageAware
2014-10-11 13:41 . 2014-10-11 13:41	--------	d-----w-	c:\programdata\ProcessLasso
2014-10-11 13:41 . 2014-10-29 10:08	--------	d-----w-	c:\users\Jerekin\AppData\Roaming\ProcessLasso
2014-10-11 13:41 . 2014-10-29 10:08	--------	d-----w-	c:\program files\Process Lasso
2014-10-10 12:35 . 2014-10-10 12:35	--------	d-----w-	c:\users\Jerekin\AppData\Roaming\ClipboardPath
2014-10-10 10:51 . 2014-10-10 10:52	--------	d-----w-	c:\users\Jerekin\AppData\Local\MetaGeek,_LLC
2014-10-10 10:51 . 2014-10-10 10:51	--------	d-----w-	c:\program files (x86)\MetaGeek
2014-10-10 10:20 . 2014-10-10 10:21	--------	d-----w-	c:\program files (x86)\Hedgewars 0.9.20
2014-10-07 02:34 . 2014-10-07 02:34	--------	d-----w-	c:\programdata\Riot Games
2014-10-01 07:23 . 2014-09-25 02:08	371712	----a-w-	c:\windows\system32\qdvd.dll
2014-10-01 07:23 . 2014-09-25 01:40	519680	----a-w-	c:\windows\SysWow64\qdvd.dll
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-22 14:28 . 2012-10-21 12:14	18960	----a-w-	c:\windows\system32\drivers\LNonPnP.sys
2014-10-18 14:27 . 2012-08-05 17:03	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-10-18 14:27 . 2012-08-05 17:03	701104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-10-17 07:13 . 2012-08-05 18:30	103265616	----a-w-	c:\windows\system32\MRT.exe
2014-10-13 07:35 . 2010-09-15 12:44	1721576	----a-w-	c:\windows\system32\WdfCoinstaller01009.dll
2014-10-02 13:53 . 2012-08-05 17:07	278152	------w-	c:\windows\system32\MpSigStub.exe
2014-09-15 22:32 . 2014-09-15 22:32	78432	----a-w-	c:\windows\system32\atimpc64.dll
2014-09-15 22:32 . 2014-09-15 22:32	78432	----a-w-	c:\windows\system32\amdpcom64.dll
2014-09-15 22:32 . 2014-09-15 22:32	71704	----a-w-	c:\windows\SysWow64\atimpc32.dll
2014-09-15 22:32 . 2014-09-15 22:32	71704	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2014-09-15 22:31 . 2014-09-15 22:31	144328	----a-w-	c:\windows\system32\atiuxp64.dll
2014-09-15 22:31 . 2014-09-15 22:31	126848	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2014-09-15 22:31 . 2014-09-15 22:31	118096	----a-w-	c:\windows\system32\atiu9p64.dll
2014-09-15 22:31 . 2014-09-15 22:31	100032	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2014-09-15 22:31 . 2014-09-15 22:31	1335544	----a-w-	c:\windows\system32\aticfx64.dll
2014-09-15 22:31 . 2014-09-15 22:31	1113576	----a-w-	c:\windows\SysWow64\aticfx32.dll
2014-09-15 22:31 . 2014-09-15 22:31	10826488	----a-w-	c:\windows\system32\atidxx64.dll
2014-09-15 22:31 . 2014-09-15 22:31	9254184	----a-w-	c:\windows\SysWow64\atidxx32.dll
2014-09-15 22:31 . 2014-09-15 22:31	7207592	----a-w-	c:\windows\SysWow64\atiumdva.dll
2014-09-15 22:31 . 2014-09-15 22:31	7028336	----a-w-	c:\windows\SysWow64\atiumdag.dll
2014-09-15 22:31 . 2014-09-15 22:31	8044976	----a-w-	c:\windows\system32\atiumd6a.dll
2014-09-15 22:31 . 2014-09-15 22:31	8296296	----a-w-	c:\windows\system32\atiumd64.dll
2014-09-15 22:29 . 2014-09-15 22:29	293088	----a-w-	c:\windows\system32\drivers\amdacpksd.sys
2014-09-15 22:26 . 2014-09-15 22:26	16750080	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2014-09-15 22:18 . 2014-09-15 22:18	235008	----a-w-	c:\windows\system32\clinfo.exe
2014-09-15 22:18 . 2014-09-15 22:18	995342	----a-w-	c:\windows\SysWow64\amdocl_as32.exe
2014-09-15 22:18 . 2014-09-15 22:18	798734	----a-w-	c:\windows\SysWow64\amdocl_ld32.exe
2014-09-15 22:18 . 2014-09-15 22:18	1187342	----a-w-	c:\windows\system32\amdocl_as64.exe
2014-09-15 22:18 . 2014-09-15 22:18	1061902	----a-w-	c:\windows\system32\amdocl_ld64.exe
2014-09-15 22:18 . 2014-09-15 22:18	98816	----a-w-	c:\windows\system32\OpenVideo64.dll
2014-09-15 22:17 . 2014-09-15 22:17	83456	----a-w-	c:\windows\SysWow64\OpenVideo.dll
2014-09-15 22:17 . 2014-09-15 22:17	86528	----a-w-	c:\windows\system32\OVDecode64.dll
2014-09-15 22:17 . 2014-09-15 22:17	73216	----a-w-	c:\windows\SysWow64\OVDecode.dll
2014-09-15 22:17 . 2014-09-15 22:17	33867264	----a-w-	c:\windows\system32\amdocl64.dll
2014-09-15 22:17 . 2014-09-15 22:17	28770304	----a-w-	c:\windows\SysWow64\amdocl.dll
2014-09-15 22:16 . 2014-09-15 22:16	65024	----a-w-	c:\windows\system32\OpenCL.dll
2014-09-15 22:16 . 2014-09-15 22:16	58880	----a-w-	c:\windows\SysWow64\OpenCL.dll
2014-09-15 22:13 . 2014-09-15 22:13	27918336	----a-w-	c:\windows\system32\atio6axx.dll
2014-09-15 22:09 . 2014-09-15 22:09	48128	----a-w-	c:\windows\system32\amdmmcl6.dll
2014-09-15 22:09 . 2014-09-15 22:09	37888	----a-w-	c:\windows\SysWow64\amdmmcl.dll
2014-09-15 22:09 . 2014-09-15 22:09	127488	----a-w-	c:\windows\system32\mantle64.dll
2014-09-15 22:09 . 2014-09-15 22:09	113664	----a-w-	c:\windows\SysWow64\mantle32.dll
2014-09-15 22:09 . 2014-09-15 22:09	5639168	----a-w-	c:\windows\system32\amdmantle64.dll
2014-09-15 22:08 . 2014-09-15 22:08	23375360	----a-w-	c:\windows\SysWow64\atioglxx.dll
2014-09-15 22:07 . 2014-09-15 22:07	367104	----a-w-	c:\windows\system32\atiapfxx.exe
2014-09-15 22:07 . 2014-09-15 22:07	62464	----a-w-	c:\windows\system32\aticalrt64.dll
2014-09-15 22:07 . 2014-09-15 22:07	52224	----a-w-	c:\windows\SysWow64\aticalrt.dll
2014-09-15 22:07 . 2014-09-15 22:07	55808	----a-w-	c:\windows\system32\aticalcl64.dll
2014-09-15 22:07 . 2014-09-15 22:07	49152	----a-w-	c:\windows\SysWow64\aticalcl.dll
2014-09-15 22:07 . 2014-09-15 22:07	15716352	----a-w-	c:\windows\system32\aticaldd64.dll
2014-09-15 22:06 . 2014-09-15 22:06	14302208	----a-w-	c:\windows\SysWow64\aticaldd.dll
2014-09-15 22:05 . 2014-09-15 22:05	4480000	----a-w-	c:\windows\SysWow64\amdmantle32.dll
2014-09-15 22:03 . 2014-09-15 22:03	442368	----a-w-	c:\windows\system32\atidemgy.dll
2014-09-15 22:03 . 2014-09-15 22:03	31232	----a-w-	c:\windows\system32\atimuixx.dll
2014-09-15 22:03 . 2014-09-15 22:03	619008	----a-w-	c:\windows\system32\atieclxx.exe
2014-09-15 22:03 . 2014-09-15 22:03	239616	----a-w-	c:\windows\system32\atiesrxx.exe
2014-09-15 22:03 . 2014-09-15 22:03	91648	----a-w-	c:\windows\system32\mantleaxl64.dll
2014-09-15 22:03 . 2014-09-15 22:03	85504	----a-w-	c:\windows\SysWow64\mantleaxl32.dll
2014-09-15 22:03 . 2014-09-15 22:03	190976	----a-w-	c:\windows\system32\atitmm64.dll
2014-09-15 21:59 . 2014-09-15 21:59	827392	----a-w-	c:\windows\system32\coinst_14.30.dll
2014-09-15 21:59 . 2014-09-15 21:59	1210880	----a-w-	c:\windows\system32\atiadlxx.dll
2014-09-15 21:59 . 2014-09-15 21:59	900608	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2014-09-15 21:59 . 2014-09-15 21:59	75264	----a-w-	c:\windows\system32\atig6pxx.dll
2014-09-15 21:59 . 2014-09-15 21:59	69632	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2014-09-15 21:59 . 2014-09-15 21:59	69632	----a-w-	c:\windows\system32\atiglpxx.dll
2014-09-15 21:59 . 2014-09-15 21:59	146944	----a-w-	c:\windows\system32\atig6txx.dll
2014-09-15 21:59 . 2014-09-15 21:59	133632	----a-w-	c:\windows\SysWow64\atigktxx.dll
2014-09-15 21:59 . 2014-09-15 21:59	576000	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2014-09-15 21:58 . 2014-09-15 21:58	43520	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2014-09-15 16:21 . 2014-09-15 16:21	51200	----a-w-	c:\windows\system32\kdbsdk64.dll
2014-09-15 16:19 . 2014-09-15 16:19	38912	----a-w-	c:\windows\SysWow64\kdbsdk32.dll
2014-09-09 22:11 . 2014-09-23 19:02	2048	----a-w-	c:\windows\system32\tzres.dll
2014-09-09 21:47 . 2014-09-23 19:02	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2014-08-23 02:07 . 2014-08-29 17:06	404480	----a-w-	c:\windows\system32\gdi32.dll
2014-08-23 01:45 . 2014-08-29 17:06	311808	----a-w-	c:\windows\SysWow64\gdi32.dll
2014-08-01 11:53 . 2014-09-10 10:45	1031168	----a-w-	c:\windows\system32\TSWorkspace.dll
2014-08-01 11:35 . 2014-09-10 10:45	793600	----a-w-	c:\windows\SysWow64\TSWorkspace.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-08-02 4085896]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2011-3-24 1219360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"<NO NAME>"= 1
"NoSimpleNetIDList"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 btwampfl;btwampfl;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 netr7364;RT73 USB-Drahtlos-LAN-Kartentreiber für Vista;c:\windows\system32\DRIVERS\netr7364.sys;c:\windows\SYSNATIVE\DRIVERS\netr7364.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys;c:\windows\SYSNATIVE\Drivers\TFsExDisk.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswKbd;aswKbd; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 nbdrv;NetBalancer LightWeight Filter;c:\windows\system32\DRIVERS\nbdrv.sys;c:\windows\SYSNATIVE\DRIVERS\nbdrv.sys [x]
S1 nm3;Microsoft Network Monitor 3 Driver;c:\windows\system32\DRIVERS\nm3.sys;c:\windows\SYSNATIVE\DRIVERS\nm3.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 CGVPNCliService;CyberGhost 5 Client Service;c:\program files\CyberGhost 5\Service.exe;c:\program files\CyberGhost 5\Service.exe [x]
S2 FreemakeVideoCapture;FreemakeVideoCapture;c:\program files (x86)\Freemake\CaptureLib\CaptureLibService.exe;c:\program files (x86)\Freemake\CaptureLib\CaptureLibService.exe [x]
S2 NetBalancerService;NetBalancerService;c:\program files\NetBalancer\SeriousBit.NetBalancer.Service.exe;c:\program files\NetBalancer\SeriousBit.NetBalancer.Service.exe [x]
S2 rimspci;rimspci;c:\windows\system32\DRIVERS\rimssne64.sys;c:\windows\SYSNATIVE\DRIVERS\rimssne64.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys;c:\windows\SYSNATIVE\DRIVERS\dc3d.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys;c:\windows\SYSNATIVE\DRIVERS\SFEP.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2014-10-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-05 14:27]
.
2014-10-29 c:\windows\Tasks\Process Lasso Core Engine Only.job
- c:\program files\Process Lasso\ProcessGovernor.exe [2014-09-22 16:52]
.
2014-10-29 c:\windows\Tasks\Process Lasso Management Console (GUI).job
- c:\program files\Process Lasso\ProcessLasso.exe [2014-09-22 16:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-08 10:49	634872	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2000-01-01 13671640]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2000-01-01 1385840]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2000-01-01 1385840]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2014-09-16 11877656]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = www.google.com
mDefault_Page_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Jerekin\AppData\Roaming\Mozilla\Firefox\Profiles\w2kaq1k7.default\
FF - prefs.js: browser.search.defaulturl - hxxp://de.yhs4.search.yahoo.com/yhs/search
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul
FF - prefs.js: keyword.URL - hxxp://de.yhs4.search.yahoo.com/yhs/search
FF - prefs.js: network.proxy.http - 176.35.77.154
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.type - 0
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
BHO-{21EAF666-26B3-4a3c-ABD0-CA2F5A326744} - (no file)
HKLM-Run-Apoint - c:\program files (x86)\Apoint\Apoint.exe
AddRemove-{43B74FAB-FB58-447D-8D3A-5F638AF36FD1} - c:\programdata\{BA58D0EE-89D1-4191-9F19-B6AD920B04F7}\Netzmanager1.081.0201_140124a.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_189_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_15_0_0_189_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_189_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_15_0_0_189_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.15"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_15_0_0_189.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-10-30  12:02:18 - PC wurde neu gestartet
ComboFix-quarantined-files.txt  2014-10-30 11:02
.
Vor Suchlauf: 7 Verzeichnis(se), 150.209.712.128 Bytes frei
Nach Suchlauf: 11 Verzeichnis(se), 149.588.320.256 Bytes frei
.
- - End Of File - - C0B1DF801474A5C126CD5020D2777B92
A36C5E4F47E84449FF07ED3517B43A31

Windows 7 langsam (PC 2): FRST Log Analyse und Hilfe für Dienste Prozesse

Log-Analyse und Auswertung: Windows 7 langsam (PC 2): FRST Log Analyse und Hilfe für Dienste Prozesse

Windows 7 langsam (PC 2): FRST Log Analyse und Hilfe für Dienste Prozesse

Ähnliche Themen: Windows 7 langsam (PC 2): FRST Log Analyse und Hilfe für Dienste Prozesse