| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: PC friert im normalen Modus einWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
20.11.2014, 03:04
| #1 |
 |  PC friert im normalen Modus ein Hallo miteinander! Ich hab ein grösseres Problem mit meinem Notebook. Mein Notebook friert einfach ein, ohne das ich irgendwas machen kann. Also die Maus kann man noch bewegen, aber wenn man irgendwo draufklickt passiert nichts! Task-Manager etc. kann man nicht öffnen! Im abgesicherten Modus funktionert mein Notebook. Ich hatte mit AntiVir ein paar Viren gefunden. Doch das Problem blieb bestehen. Also habe ich mein Notebook auf den Werkzustand zurückgesetzt. Das Problem aber ist immernoch da :S Im abgesicherten Modus habe ich noch Malwarebytes Anti Rootkit durchlaufen lassen. Keine Malware (der PC ist ja im Werkzustand!) Ich frage mich, ob das nun ein Virus ist, oder vielleicht doch ein Hardware Problem? Das Problem kam zum ersten Mal gestern. Ich war davor 1 Woche in Belgrad. Dort war ich halt im öffentlichen WLAN drin und mein AntiVir hatte schon dort 1-2 Meldungen angezeigt. Was soll ich tun?  |
|
20.11.2014, 05:40
| #2 |
| /// the machine /// TB-Ausbilder    | PC friert im normalen Modus ein hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
20.11.2014, 17:19
| #3 |
| | PC friert im normalen Modus ein FRST Logfile:
__________________FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-11-2014
Ran by Gaschde (administrator) on GASCHDE-PC on 20-11-2014 11:21:07
Running from C:\Users\Gaschde\Downloads
Loaded Profile: Gaschde (Available profiles: UpdatusUser & Gaschde)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12448872 2012-02-14] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-02-08] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [576376 2012-02-02] (Alps Electric Co., Ltd.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1020064 2012-02-13] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2012-02-13] (Atheros Commnucations)
HKLM\...\Run: [IntelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)
HKLM-x32\...\Run: [SuiteTray] => C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-02] (Symantec Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-06-06] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)
HKLM-x32\...\Run: [OOTag] => C:\Program Files (x86)\Acer\OOBEOffer\OOTag.exe [13856 2010-02-23] (Microsoft)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-02-22] (Dritek System Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-04] (Intel Corporation)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [703736 2014-10-23] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [124720 2014-10-09] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [260928 2012-02-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [215360 2012-02-01] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Tcpip\Parameters: [DhcpNameServer] 192.168.192.1
FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> https://www.google.ch/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?gd=&ctid=CT3320845&octid=EB_ORIGINAL_CTID&ISID=M1B1A073B-C9CA-4067-9BF2-3A8641ACAD7D&SearchSource=55&CUI=&UM=5&UP=SP50E2124A-643B-4EC2-A02F-EC5847033DF2&SSPV=", "hxxp://feed.snapdo.com/?publisher=ShoppingHelper&dpid=ShopHelp&co=CH&userid=36bbb20e-fb7c-b1fa-f8d9-445d7964391d&searchtype=hp&installDate={installDate}", "hxxp://astromenda.com/?f=7&a=ast_frg01_14_37_ch&cd=2XzuyEtN2Y1L1Qzu0EzzyEtD0FtByC0DyDtCtB0B0CtDtDtAtN0D0Tzu0SzyzztAtN1L2XzutAtFtBtFtCtFyCtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StAtCyCyE0A0C0ByBtGtDtAzztAtGyDzzyByCtGzzyBzzyCtGtCtD0CyEyBtDyE0DtCzzyDyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0D0AyCzyyEtCyByDtG0F0B0FzztGyE0DtA0AtGzyyE0FyDtG0FyDzy0Czy0A0EtDtD0D0D0D2Q&cr=1672391307&uref=308&ir="
CHR Profile: C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Präsentationen) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-20]
CHR Extension: (Google Docs) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-20]
CHR Extension: (Google Drive) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-20]
CHR Extension: (Regentropfen) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\bcipapbfhdnmgihoimbjiadmhpcgcnil [2014-11-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-20]
CHR Extension: (Turn Off the Lights) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2014-11-20]
CHR Extension: (YouTube) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-20]
CHR Extension: (Look of Disapproval) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmomlddchhdnchpieaalgkpgaafohlbn [2014-11-20]
CHR Extension: (Google-Suche) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-20]
CHR Extension: (Google Tabellen) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-20]
CHR Extension: (AdBlock) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-11-20]
CHR Extension: (Hola Besseres Internet) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2014-11-20]
CHR Extension: (Eingabe-Test - KeyHero) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcieoaeooeidmpaopkpjpjfakidlabm [2014-11-20]
CHR Extension: (Google Mail-Checker) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2014-11-20]
CHR Extension: (Google Wallet) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-20]
CHR Extension: (Wunderlist for Chrome) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojcflmmmcfpacggndoaaflkmcoblhnbh [2014-11-20]
CHR Extension: (Google Mail) - C:\Users\Gaschde\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-20]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [432888 2014-10-23] (Avira Operations GmbH & Co. KG)
S2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [432888 2014-10-23] (Avira Operations GmbH & Co. KG)
S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2012-02-13] (Atheros Commnucations) [File not signed]
S2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [162096 2014-10-09] (Avira Operations GmbH & Co. KG)
S2 CLKMSVC10_80CF330A; C:\Program Files (x86)\Acer\clear.fi SDK20\Movie\NavFilter\kmsvc.exe [240112 2011-11-23] (CyberLink)
S3 DCDhcpService; C:\Program Files (x86)\Acer\WDAgent\DCDhcpService.exe [111776 2012-02-10] (Atheros Communication Inc.) [File not signed]
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
S2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [119272 2014-10-23] (Avira Operations GmbH & Co. KG)
S1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131608 2014-10-23] (Avira Operations GmbH & Co. KG)
S1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-10-23] (Avira Operations GmbH & Co. KG)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-20 11:21 - 2014-11-20 11:21 - 00012325 _____ () C:\Users\Gaschde\Downloads\FRST.txt
2014-11-20 11:21 - 2014-11-20 11:21 - 00000000 ____D () C:\FRST
2014-11-20 11:20 - 2014-11-20 11:20 - 02117120 _____ (Farbar) C:\Users\Gaschde\Downloads\FRST64.exe
2014-11-20 08:46 - 2014-11-20 08:45 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-11-20 08:46 - 2014-11-20 08:45 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-11-20 08:46 - 2014-11-20 02:10 - 00643866 _____ () C:\Windows\system32\perfh007.dat
2014-11-20 08:46 - 2014-11-20 02:10 - 00126394 _____ () C:\Windows\system32\perfc007.dat
2014-11-20 08:45 - 2014-11-20 08:45 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-11-20 08:45 - 2014-11-20 08:45 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-11-20 08:45 - 2014-11-20 08:45 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-11-20 08:45 - 2014-11-20 08:45 - 00000000 ____D () C:\Windows\system32\de
2014-11-20 08:45 - 2014-11-20 08:45 - 00000000 ____D () C:\Windows\system32\0407
2014-11-20 08:40 - 2014-11-20 08:40 - 00000000 ____D () C:\Windows\NAPP_Dism_Log
2014-11-20 02:27 - 2014-11-20 02:48 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-20 02:27 - 2014-11-20 02:27 - 00131800 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-20 02:27 - 2014-11-20 02:27 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-20 02:26 - 2014-11-20 03:02 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-20 02:25 - 2014-11-20 02:48 - 00000000 ____D () C:\Users\Gaschde\Desktop\mbar
2014-11-20 02:24 - 2014-11-20 02:24 - 14439696 _____ (Malwarebytes Corp.) C:\Users\Gaschde\Downloads\mbar-1.08.1.1001.exe
2014-11-20 02:17 - 2014-11-20 02:17 - 32021112 _____ (NVIDIA Corporation) C:\Users\Gaschde\Downloads\GeForce_Experience_v2.1.4.0.exe
2014-11-20 02:13 - 2014-11-20 02:09 - 00043064 _____ () C:\Windows\system32\Drivers\avnetflt.sys
2014-11-20 02:10 - 2014-11-20 02:10 - 00001141 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-11-20 02:09 - 2014-11-20 02:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-11-20 02:09 - 2014-11-20 02:10 - 00000000 ____D () C:\ProgramData\Avira
2014-11-20 02:09 - 2014-11-20 02:10 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-11-20 02:09 - 2014-11-20 02:09 - 00002074 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-11-20 02:09 - 2014-11-20 02:09 - 00000000 ____D () C:\Users\Gaschde\AppData\Roaming\Avira
2014-11-20 02:09 - 2014-11-20 02:09 - 00000000 ____D () C:\ProgramData\Package Cache
2014-11-20 02:09 - 2014-10-23 14:02 - 00131608 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-11-20 02:09 - 2014-10-23 14:02 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-11-20 02:09 - 2014-10-23 14:01 - 00119272 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-11-20 02:03 - 2014-11-20 02:03 - 151804352 _____ () C:\Users\Gaschde\Downloads\avira_free_antivirus_de_14.0.7.342.exe
2014-11-20 01:56 - 2014-11-20 01:56 - 00002255 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-20 01:56 - 2014-11-20 01:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-20 01:55 - 2014-11-20 02:02 - 00000000 ____D () C:\Program Files (x86)\Google
2014-11-20 01:55 - 2014-11-20 01:56 - 00000000 ____D () C:\Users\Gaschde\AppData\Local\Google
2014-11-20 01:55 - 2014-11-20 01:55 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-20 01:55 - 2014-11-20 01:55 - 00000000 ____D () C:\Users\Gaschde\AppData\Local\Deployment
2014-11-20 01:55 - 2014-11-20 01:55 - 00000000 ____D () C:\Users\Gaschde\AppData\Local\Apps\2.0
2014-11-20 01:54 - 2014-11-20 01:54 - 00000000 ____D () C:\Users\Gaschde\AppData\Roaming\Adobe
2014-11-20 01:36 - 2014-11-20 01:36 - 00000000 ____D () C:\Users\Gaschde\AppData\Local\EgisTec IPS
2014-11-20 01:36 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-11-20 01:36 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-11-20 01:36 - 2012-02-17 05:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-11-20 01:36 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-11-20 01:28 - 2014-11-20 01:28 - 00059968 _____ () C:\Users\Gaschde\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-20 01:28 - 2014-11-20 01:28 - 00000000 ____D () C:\Users\Gaschde\AppData\Roaming\Screensaver
2014-11-20 01:28 - 2014-11-20 01:28 - 00000000 ____D () C:\Users\Gaschde\AppData\Roaming\Intel Corporation
2014-11-20 01:28 - 2014-11-20 01:28 - 00000000 ____D () C:\Users\Gaschde\AppData\Roaming\Atheros
2014-11-20 01:27 - 2014-11-20 01:27 - 00001447 _____ () C:\Users\Gaschde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-11-20 01:27 - 2014-11-20 01:27 - 00001413 _____ () C:\Users\Gaschde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-11-20 01:27 - 2014-11-20 01:27 - 00000000 ____D () C:\Users\Gaschde\AppData\Local\VirtualStore
2014-11-20 01:27 - 2014-05-14 17:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-11-20 01:27 - 2014-05-14 17:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-11-20 01:27 - 2014-05-14 17:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-11-20 01:27 - 2014-05-14 17:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-11-20 01:26 - 2014-11-20 01:27 - 00000000 ____D () C:\Users\Gaschde
2014-11-20 01:26 - 2014-11-20 01:26 - 00000020 ___SH () C:\Users\Gaschde\ntuser.ini
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Vorlagen
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Startmenü
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Netzwerkumgebung
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Lokale Einstellungen
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Eigene Dateien
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Druckumgebung
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Documents\Eigene Musik
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Documents\Eigene Bilder
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\AppData\Local\Verlauf
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\AppData\Local\Anwendungsdaten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Gaschde\Anwendungsdaten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Programme
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 __SHD () C:\Recovery
2014-11-20 01:26 - 2014-11-20 01:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Family Protection
2014-11-20 01:26 - 2014-05-14 17:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-11-20 01:26 - 2014-05-14 17:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-11-20 01:26 - 2014-05-14 17:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-11-20 01:26 - 2014-05-14 17:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-11-20 01:26 - 2014-05-14 17:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-11-20 01:26 - 2014-05-14 17:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-11-20 01:26 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-11-20 01:26 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-11-20 01:26 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-11-20 01:26 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-11-20 01:26 - 2012-02-24 14:30 - 00000000 ____D () C:\Users\Gaschde\AppData\Roaming\Macromedia
2014-11-20 01:26 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Gaschde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-20 01:26 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\Gaschde\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-11-20 00:21 - 2014-11-20 00:21 - 00001162 _____ () C:\Users\Public\Desktop\clear.fi Photo.lnk
2014-11-20 00:21 - 2014-11-20 00:21 - 00000032 _____ () C:\ProgramData\PS.log
2014-11-20 00:20 - 2014-11-20 00:22 - 00002454 _____ () C:\ProgramData\clear.fiSDK20.log
2014-11-20 00:20 - 2014-11-20 00:22 - 00000000 ____D () C:\ProgramData\CyberLink
2014-11-20 00:20 - 2014-11-20 00:21 - 00000000 ____D () C:\ProgramData\install_clap
2014-11-20 00:20 - 2014-11-20 00:21 - 00000000 ____D () C:\ProgramData\CLSK
2014-11-20 00:20 - 2014-11-20 00:20 - 00001162 _____ () C:\Users\Public\Desktop\clear.fi Media.lnk
2014-11-20 00:19 - 2014-11-20 00:19 - 00001024 ___RH () C:\Users\Public\Documents\NTILiveUpdateV9.dll
2014-11-20 00:19 - 2014-11-20 00:19 - 00000000 ____D () C:\ProgramData\NTI Launcher
2014-11-20 00:19 - 2014-11-20 00:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NTI Media Maker 9
2014-11-20 00:18 - 2014-11-20 00:18 - 00001024 ___RH () C:\Users\Public\Documents\NTIMMV9REGET.dll
2014-11-20 00:18 - 2014-11-20 00:18 - 00001024 ___RH () C:\Users\Public\Documents\NTIMMV9Acer.dll
2014-11-20 00:18 - 2014-11-20 00:18 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-11-20 00:17 - 2014-11-20 00:17 - 00002435 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
2014-11-20 00:17 - 2014-11-20 00:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-11-20 00:15 - 2014-11-20 00:27 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-11-20 00:15 - 2014-11-20 00:27 - 00000000 ____D () C:\Windows\system32\NV
2014-11-20 00:12 - 2014-11-20 00:12 - 00000032 _____ () C:\Windows\SysWOW64\setup.log
2014-11-20 00:12 - 2014-11-20 00:12 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-11-20 00:11 - 2014-11-20 00:16 - 00000000 ____D () C:\ProgramData\Atheros
2014-11-20 00:11 - 2014-11-20 00:12 - 00000000 ____D () C:\Program Files (x86)\Atheros
2014-11-20 00:11 - 2012-02-07 04:01 - 03538432 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys
2014-11-20 00:06 - 2014-11-20 00:06 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf
2014-11-20 00:04 - 2014-11-20 00:05 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-11-20 00:04 - 2014-11-20 00:05 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-11-20 00:03 - 2014-11-20 00:03 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2014-11-20 00:02 - 2014-11-20 00:02 - 00004730 _____ () C:\Windows\DPINST.LOG
2014-11-20 00:02 - 2014-11-20 00:02 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-11-20 00:02 - 2014-11-20 00:02 - 00000000 ____D () C:\Program Files\Apoint2K
2014-11-20 00:02 - 2012-01-04 20:58 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2014-11-20 00:01 - 2014-11-20 00:10 - 00000000 ____D () C:\Program Files\Intel
2014-11-20 00:01 - 2011-12-16 03:40 - 00015128 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-11-20 00:00 - 2014-11-20 00:15 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-11-20 00:00 - 2014-11-20 00:00 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-11-20 00:00 - 2014-11-20 00:00 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-11-20 00:00 - 2012-02-24 14:30 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Macromedia
2014-11-20 00:00 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-20 00:00 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-11-19 23:59 - 2014-11-20 00:14 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-11-19 23:59 - 2014-11-20 00:00 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-11-19 23:59 - 2014-11-19 23:59 - 00000184 _____ () C:\Windows\LMv4.UNI
2014-11-19 23:59 - 2014-11-19 23:59 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-11-19 23:59 - 2012-02-01 03:55 - 25541952 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 25222976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 19443520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 17643840 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 17543488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 15010624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 14324544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-11-19 23:59 - 2012-02-01 03:55 - 09816384 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 08010048 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 07811392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 05894464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 02872640 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 02672448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 02660160 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 02517312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 02437440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 02301248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 01737536 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 01466176 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco64.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00962368 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00812352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00364352 _____ (NVIDIA Corporation) C:\Windows\system32\nvdecodemft.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00301376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvdecodemft.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00260928 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00215360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-11-19 23:59 - 2012-02-01 03:55 - 00028992 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-11-19 23:59 - 2012-02-01 03:55 - 00011770 _____ () C:\Windows\system32\nvinfo.pb
2014-11-19 23:59 - 2012-01-28 11:40 - 06073664 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-11-19 23:59 - 2012-01-28 11:39 - 03089728 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-11-19 23:59 - 2012-01-28 11:39 - 02561856 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-11-19 23:59 - 2012-01-28 11:39 - 02477468 _____ () C:\Windows\system32\nvcoproc.bin
2014-11-19 23:59 - 2012-01-28 11:39 - 00889664 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-11-19 23:59 - 2012-01-28 11:39 - 00849728 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-11-19 23:59 - 2012-01-28 11:39 - 00118080 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-11-19 23:59 - 2012-01-28 11:39 - 00063296 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-11-19 23:59 - 2012-01-28 11:39 - 00055616 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-11-19 23:58 - 2014-11-19 23:59 - 00000000 ____D () C:\Program Files (x86)\Launch Manager
2014-11-19 23:57 - 2014-11-20 00:25 - 00000000 ____D () C:\Dolby PCEE4
2014-11-19 23:57 - 2014-11-19 23:57 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-11-19 23:57 - 2014-11-19 23:57 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-11-19 23:57 - 2014-11-19 23:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2014-11-19 23:57 - 2014-11-19 23:57 - 00000000 ____D () C:\Program Files\Realtek
2014-11-19 23:57 - 2012-02-14 12:03 - 04744808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-11-19 23:57 - 2012-02-14 04:14 - 03846248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-11-19 23:57 - 2012-02-13 07:22 - 00100968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-11-19 23:57 - 2012-02-13 07:13 - 02719744 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-11-19 23:57 - 2012-02-13 06:12 - 00115256 _____ () C:\Windows\system32\Drivers\RtPCEE4.DAT
2014-11-19 23:57 - 2012-02-13 04:01 - 00238448 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-11-19 23:57 - 2012-02-10 03:44 - 02652264 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-11-19 23:57 - 2012-02-08 13:08 - 02528832 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-11-19 23:57 - 2012-01-10 07:48 - 00958296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-11-19 23:57 - 2011-12-23 06:30 - 00823912 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-11-19 23:57 - 2011-12-20 08:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-11-19 23:57 - 2011-12-19 22:43 - 00220776 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2014-11-19 23:57 - 2011-12-18 10:58 - 05996376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll
2014-11-19 23:57 - 2011-12-18 10:58 - 02603864 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-11-19 23:57 - 2011-12-18 10:58 - 02131288 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-11-19 23:57 - 2011-12-18 10:58 - 01247576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-11-19 23:57 - 2011-12-13 09:58 - 01560168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-11-19 23:57 - 2011-12-13 04:01 - 01698408 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-11-19 23:57 - 2011-11-22 09:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-11-19 23:57 - 2011-11-22 02:17 - 00376936 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2014-11-19 23:57 - 2011-09-26 15:41 - 00000024 _____ () C:\Windows\system32\Drivers\rtkhdaud.dat
2014-11-19 23:57 - 2011-09-02 07:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-11-19 23:57 - 2011-09-02 07:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-11-19 23:57 - 2011-09-02 07:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-11-19 23:57 - 2011-07-22 12:35 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-11-19 23:57 - 2011-05-31 02:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-11-19 23:57 - 2011-05-02 07:27 - 03308376 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2014-11-19 23:57 - 2011-05-02 07:27 - 00426328 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2014-11-19 23:57 - 2011-05-02 07:27 - 00136024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2014-11-19 23:57 - 2011-05-02 07:27 - 00118104 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2014-11-19 23:57 - 2011-05-02 07:27 - 00074072 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2014-11-19 23:57 - 2010-11-08 00:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-11-19 23:57 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-11-19 23:57 - 2010-11-08 00:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-11-19 23:57 - 2010-11-08 00:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-11-19 23:57 - 2010-11-08 00:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-11-19 23:57 - 2010-11-08 00:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-11-19 23:57 - 2010-11-03 11:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-11-19 23:57 - 2010-10-03 06:46 - 00341336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-11-19 23:57 - 2010-09-27 02:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-11-19 23:57 - 2010-09-23 10:21 - 00039672 _____ () C:\Windows\system32\Drivers\RtPCEE3.DAT
2014-11-19 23:57 - 2010-07-22 09:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-11-19 23:57 - 2010-07-22 09:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-11-19 23:57 - 2010-05-06 10:34 - 00334680 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-11-19 23:57 - 2010-03-22 06:21 - 00247560 _____ () C:\Windows\system32\Drivers\RTConvEQ.dat
2014-11-19 23:57 - 2010-03-22 06:21 - 00001448 _____ () C:\Windows\system32\Drivers\RtHdatEx.dat
2014-11-19 23:57 - 2010-02-11 08:45 - 00000176 _____ () C:\Windows\system32\Drivers\RTHDAEQ1.dat
2014-11-19 23:57 - 2010-01-26 14:52 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX3.dat
2014-11-19 23:57 - 2009-11-24 02:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-11-19 23:57 - 2009-11-24 02:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-11-19 23:57 - 2009-11-24 02:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-11-19 23:57 - 2009-11-24 02:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-11-19 23:57 - 2009-11-17 11:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-11-19 23:57 - 2008-08-21 06:43 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX2.dat
2014-11-19 23:57 - 2005-06-26 22:29 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX1.dat
2014-11-19 23:57 - 2005-06-26 22:29 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX0.dat
2014-11-19 23:55 - 2014-11-20 00:01 - 00000000 ____D () C:\ProgramData\Intel
2014-11-19 23:55 - 2014-11-19 23:55 - 00019214 _____ () C:\Windows\system32\results.xml
2014-11-19 23:55 - 2014-11-19 23:55 - 00000000 ___HD () C:\book
2014-11-19 23:55 - 2014-11-19 23:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem
2014-11-19 23:55 - 2014-11-19 23:55 - 00000000 ____D () C:\ProgramData\EgisTec
2014-11-19 23:53 - 2014-11-19 23:53 - 00000025 _____ () C:\Windows\mSataSettings.log
2014-11-19 23:52 - 2014-11-20 02:18 - 00330355 _____ () C:\Windows\WindowsUpdate.log
2014-11-19 23:52 - 2014-11-19 23:52 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-11-19 23:51 - 2014-11-20 00:14 - 00000495 _____ () C:\Windows\Driver_install.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-11-20 08:47 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-11-20 08:47 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-11-20 08:47 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-11-20 08:47 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-11-20 08:47 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-11-20 08:47 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-11-20 08:45 - 2010-11-21 08:17 - 00000000 ____D () C:\Program Files\Windows Journal
2014-11-20 08:45 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-11-20 08:45 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-11-20 08:45 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-11-20 08:45 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\com
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME
2014-11-20 08:45 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-11-20 08:37 - 2009-07-14 06:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-11-20 08:37 - 2009-07-14 06:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-11-20 03:32 - 2012-02-24 14:23 - 00000000 ____D () C:\ProgramData\oem
2014-11-20 02:54 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-20 02:54 - 2009-07-14 05:51 - 00042746 _____ () C:\Windows\setupact.log
2014-11-20 02:49 - 2012-02-24 13:59 - 00000000 ____D () C:\ProgramData\McAfee
2014-11-20 02:15 - 2010-11-21 04:47 - 00168472 _____ () C:\Windows\PFRO.log
2014-11-20 02:10 - 2009-07-14 06:13 - 01472002 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-20 02:08 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-20 02:08 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-20 01:36 - 2012-02-24 14:35 - 00005772 _____ () C:\Windows\Patch.log
2014-11-20 01:26 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\restore
2014-11-20 01:26 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-11-20 01:26 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-11-20 01:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-11-20 01:26 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-11-20 01:22 - 2009-07-14 05:46 - 00004059 _____ () C:\Windows\DtcInstall.log
2014-11-20 01:22 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-11-20 01:22 - 2007-07-12 02:49 - 00000000 ____D () C:\Windows\Panther
2014-11-20 00:27 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2014-11-20 00:26 - 2012-02-24 14:01 - 00000000 ____D () C:\Program Files (x86)\Acer
2014-11-20 00:25 - 2012-02-24 13:19 - 00000000 ___HD () C:\OEM
2014-11-20 00:24 - 2012-02-24 14:02 - 00000000 ____D () C:\Program Files\Acer
2014-11-20 00:24 - 2012-02-24 13:47 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-11-20 00:23 - 2012-02-24 14:31 - 00000000 ____D () C:\ProgramData\Temp
2014-11-20 00:22 - 2012-02-24 14:32 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-11-20 00:21 - 2012-02-24 14:01 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2014-11-20 00:20 - 2012-02-24 13:56 - 00000000 ____D () C:\Program Files (x86)\Acer Games
2014-11-20 00:20 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-11-20 00:19 - 2012-02-24 14:26 - 00000000 ____D () C:\Program Files (x86)\NTI
2014-11-20 00:10 - 2012-02-24 13:47 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-11-20 00:07 - 2012-02-24 14:22 - 00000000 ____D () C:\ProgramData\EgisTec IPS
2014-11-20 00:05 - 2012-02-13 10:27 - 00246804 _____ () C:\Windows\system32\Drivers\AtherosBt.bin
2014-11-20 00:05 - 2012-02-13 10:27 - 00001796 _____ () C:\Windows\system32\Drivers\ramps_0x11020000_40.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001242 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x01.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001228 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x04.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001214 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x03.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001198 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu
2014-11-20 00:05 - 2012-02-13 10:27 - 00001192 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26_0x01.dfu
2014-11-20 00:05 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-11-20 00:02 - 2012-02-24 13:47 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-11-20 00:01 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-11-19 23:57 - 2012-02-24 13:49 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-11-19 23:55 - 2011-02-12 04:43 - 00000000 ____D () C:\Windows\DeployWinRE2
2014-11-19 23:55 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-11-19 23:51 - 2012-02-24 13:47 - 00000000 ___HD () C:\Intel
2014-11-19 23:51 - 2012-02-24 13:33 - 00003652 _____ () C:\Windows\TSSysprep.log
2014-11-19 23:49 - 2009-07-14 05:45 - 00283104 _____ () C:\Windows\system32\FNTCACHE.DAT
Some content of TEMP:
====================
C:\Users\Gaschde\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2012-02-24 13:30
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-11-2014
Ran by Gaschde at 2014-11-20 11:21:45
Running from C:\Users\Gaschde\Downloads
Boot Mode: Safe Mode (with Networking)
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Out of date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {86355677-4064-3EA7-ABB3-1B136EB04637}
AS: Avira Desktop (Enabled - Out of date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus und Anti-Spyware (Disabled - Up to date) {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall (Disabled) {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
clear.fi SDK - MVP 2 (x32 Version: 2.0.1415 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.0.1406 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{0B61BBD5-DA3C-409A-8730-0C3DC3B0F270}) (Version: 3.0.0.100 - NTI Corporation)
Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.2108.00 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.5.2108.00 - CyberLink Corp.) Hidden
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 6.00.3010 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3505 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0913.2011 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3501 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.3.183.10 - Adobe Systems Incorporated)
Adobe Reader X (10.1.0) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.0 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.109.2020.205 - Alps Electric)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.122 - Atheros)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
Avira (HKLM-x32\...\{905d3ded-fe60-432c-b56e-7cd19f2899ac}) (Version: 1.1.24.28609 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.24.28609 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.7.342 - Avira)
Backup Manager V3 (x32 Version: 3.0.0.100 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bing Bar (HKLM-x32\...\{C28D96C0-6A90-459E-A077-A6706F4EC0FC}) (Version: 7.0.765.0 - Microsoft Corporation)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3003 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3003 - Acer Incorporated)
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.7 - Dolby Laboratories Inc)
Evernote v. 4.5.1 (HKLM-x32\...\{28921580-E4BB-11E0-9FD7-1CC1DEF07CBE}) (Version: 4.5.1.5451 - Evernote Corp.)
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Fooz Kids (HKLM-x32\...\FoozKids) (Version: 3.0.8 - FUHU, Inc.)
Fooz Kids (x32 Version: 3.0.8 - FUHU, Inc.) Hidden
Fooz Kids Platform (HKLM-x32\...\{8D68CE08-9A14-4B7B-9857-3C646A2F34C7}) (Version: 2.1 - FUHU, Inc.)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2653 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.1.209 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 5.1.12 - Acer Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.19 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) Hidden
newsXpresso (HKLM-x32\...\InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}) (Version: 1.0.0.40 - esobi Inc.)
newsXpresso (x32 Version: 1.0.0.40 - esobi Inc.) Hidden
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
NTI Media Maker 9 (HKLM-x32\...\InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}) (Version: 9.0.2.9006 - NTI Corporation)
NTI Media Maker 9 (x32 Version: 9.0.2.9006 - NTI Corporation) Hidden
NVIDIA Grafiktreiber 295.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 295.55 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Qualcomm Atheros Direct Connect (x32 Version: 3.1 - Qualcomm Atheros) Hidden
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 3.1 - Qualcomm Atheros)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.85 - Realtek Semiconductor Corp.)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Skype™ 5.5 (HKLM-x32\...\{AA59DDE4-B672-4621-A016-4C248204957A}) (Version: 5.5.117 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Überwachungstool für die Intel® Turbo-Boost-Technik 2.5 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.5.1.0 - Intel)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3505 - Acer Incorporated)
WildTangent Games App (Acer Games) (x32 Version: 4.0.5.32 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
20-11-2014 00:26:27 Windows Update
20-11-2014 00:36:37 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {33094747-B6E0-42A8-85DC-14B2EFBD8F1F} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2011-03-29] (Egis Technology Inc.)
Task: {6B303BA3-EE78-47EF-8213-15B52E22309D} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-05-20] (CyberLink)
Task: {87A8145C-A900-4AE4-A2E4-AADFCE4F6310} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2011-03-29] (Egis Technology Inc.)
Task: {89697942-354F-4E0C-8E7B-0949A8BBA680} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2012-01-19] (Acer)
Task: {C3FE2E1A-FD58-4098-B71F-39393E096D72} - System32\Tasks\UALU notificatin => C:\Program Files\Acer\Acer Updater\UALU.exe [2012-02-07] (Acer Incorporated)
Task: {ED79777F-1604-4D1D-A8A7-F0D7611A91AE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-11-20 01:56 - 2014-11-14 22:15 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\pdf.dll
2014-11-20 01:56 - 2014-11-14 22:15 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-3995982429-2718046672-3976818250-500 - Administrator - Disabled)
Gaschde (S-1-5-21-3995982429-2718046672-3976818250-1002 - Administrator - Enabled) => C:\Users\Gaschde
Gast (S-1-5-21-3995982429-2718046672-3976818250-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3995982429-2718046672-3976818250-1003 - Limited - Enabled)
UpdatusUser (S-1-5-21-3995982429-2718046672-3976818250-1000 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/20/2014 02:58:18 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:54:59 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Ungültige XML-Syntax.
Error: (11/20/2014 02:54:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:54:23 AM) (Source: Avira Antivirus) (EventID: 4122) (User: NT-AUTORITÄT)
Description: Die Datei avreg.dll konnte nicht geladen werden.
Fehlercode: 0x2
Error: (11/20/2014 02:54:15 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Ungültige XML-Syntax.
Error: (11/20/2014 02:51:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:49:51 AM) (Source: Avira Antivirus) (EventID: 4122) (User: NT-AUTORITÄT)
Description: Die Datei avreg.dll konnte nicht geladen werden.
Fehlercode: 0x2
Error: (11/20/2014 02:49:41 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3.
Ungültige XML-Syntax.
Error: (11/20/2014 02:16:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:08:28 AM) (Source: ESENT) (EventID: 481) (User: )
Description: wuaueng.dll (1172) SUS20ClientDataStore: Versuch, aus Datei "C:\Windows\SoftwareDistribution\DataStore\DataStore.edb" bei Offset 206438400 (0x000000000c4e0000) für 32768 (0x00008000) Bytes zu lesen, ist nach wuaueng.dll0 Sekunden mit Systemfehler 1117 (0x0000045d): "Die Anforderung konnte wegen eines E/A-Gerätefehlers nicht ausgeführt werden. " fehlgeschlagen. Fehler -1022 (0xfffffc02) bei Leseoperation. Wenn dieser Zustand andauert, ist die Datei möglicherweise beschädigt und muss aus einer vorherigen Sicherung wiederhergestellt werden.
System errors:
=============
Error: (11/20/2014 11:20:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:20:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:20:29 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:18:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:18:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:18:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:13:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:13:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:13:21 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Error: (11/20/2014 11:11:15 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068
Microsoft Office Sessions:
=========================
Error: (11/20/2014 02:58:18 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:54:59 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exeC:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe.Config0
Error: (11/20/2014 02:54:59 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:54:23 AM) (Source: Avira Antivirus) (EventID: 4122) (User: NT-AUTORITÄT)
Description: avreg.dll0x2
Error: (11/20/2014 02:54:15 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exeC:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe.Config0
Error: (11/20/2014 02:51:25 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:49:51 AM) (Source: Avira Antivirus) (EventID: 4122) (User: NT-AUTORITÄT)
Description: avreg.dll0x2
Error: (11/20/2014 02:49:41 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exeC:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe.Config0
Error: (11/20/2014 02:16:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (11/20/2014 02:08:28 AM) (Source: ESENT) (EventID: 481) (User: )
Description: wuaueng.dll1172SUS20ClientDataStore: C:\Windows\SoftwareDistribution\DataStore\DataStore.edb206438400 (0x000000000c4e0000)32768 (0x00008000)-1022 (0xfffffc02)1117 (0x0000045d)Die Anforderung konnte wegen eines E/A-Gerätefehlers nicht ausgeführt werden. 147
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Percentage of memory in use: 9%
Total physical RAM: 16222.36 MB
Available physical RAM: 14733.23 MB
Total Pagefile: 32442.91 MB
Available Pagefile: 30981.6 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:915.91 GB) (Free:856.15 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 47DB5F5E)
Partition 1: (Not Active) - (Size=15.5 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=915.9 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Noch was! Hab nun mein ganzen laptop aufgemacht und den ganzen staub rausgesaugt. Hätte vielleicht sein können, das die hitze den pc einfrieren lies. Nun aber hab ich auch im abgesicherten modus ein problem. Dort friert der pc auch teilweise ein. Sobald ich einen browser öffnen will oder unten in die task liste klicke friert er ein. Ich schreibe gerade von meinem handy aus 😣😣😣 Hab so einen schlimmen virus eingefangen? Oder ist es wahrscheinlich hardware technisch? Und nochmals eine Erkentniss. Die Funktionstasten funktionieren... also ich kann ich den bildschirm heller und dünkler machen, obwohl der PC sozusagen eingefroren ist(maus kann man bewegen). Auch kam jetzt zum ersten Mal eine Fehlermeldung: Explorer.exe Starten des Servers fehlgeschlagen. Noch eine allerletzte Erkentniss  der Pc "friert" nicht ein. Nur läuft er fast nicht mehr! Ich hab z.b auf systemsterung geklickt und es geht erst nach ca. 5-10min auf. Und wenn ich nochmals wo drauf klicke gehts etwa 5minuten... also geht einfach nicht! Villeicht spinnt der explorer? |
|
21.11.2014, 16:14
| #4 |
| /// the machine /// TB-Ausbilder | PC friert im normalen Modus ein Im Safe Mode alles an AV Programmen deinstallieren.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
21.11.2014, 23:15
| #5 |
| | PC friert im normalen Modus ein Was ist av programm? Ah anti viren programme...mache ich gerade So gemacht! Was nun? |
|
22.11.2014, 18:30
| #6 |
| /// the machine /// TB-Ausbilder | PC friert im normalen Modus ein Wie verhält sich der Rechner jetzt?
__________________ --> PC friert im normalen Modus ein |
|
23.11.2014, 19:49
| #7 |
| | PC friert im normalen Modus ein ein bisschen besser... ich kann ein bisschen was machen (in der systemsteurung rumspielen, programma deinstallieren) aber er ist immernoch mega langsam. Und wenn ich google chrome aufmache, friert der pc ganz ein :S |
|
24.11.2014, 18:00
| #8 |
| /// the machine /// TB-Ausbilder | PC friert im normalen Modus ein Ein AV Programm installieren. Ich empfehle immer Emsisoft Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.12.2014, 19:05
| #9 |
| | PC friert im normalen Modus ein Hallo schrauber Erstmal besten Dank für deine Mühe und deinen Einsatz! Nach weiteren Tests, konnte ich mein Notebook immer noch nicht wieder richtig benutzen. Auch denke ich, dass noch mehr an dieser Schrottkiste zu arbeiten, kein Erfolg bringen wird. Ich habe mir nun einen neuen PC zusammengebastelt^^ Trotzallem - Besten Dank! Gaschde |
|
18.12.2014, 20:25
| #10 |
| /// the machine /// TB-Ausbilder | PC friert im normalen Modus ein ok 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu PC friert im normalen Modus ein |
| abgesicherte, abgesicherten, ander, antivir, blieb, einfach, frage, friert, hardware, immernoch, malwarebytes, maus, meldungen, miteinander, modus, nicht öffnen, nichts, normalen, problem, rootkit, task-manager, viren, virus, wlan, woche, öffnen |
WARNUNG an die MITLESER: 
Linear-Darstellung
