|
Alles rund um Windows: Neues Laptop bricht Updates ständig abWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
30.12.2014, 20:08 | #1 |
| Problem: Neues Laptop bricht Updates ständig ab Guten Abend, ich hab heute ein neues Laptop in Betrieb genommen, hat auch soweit alles funktioniert, bis mir dann aufgefallen ist, dass einige Updates anstehen. Dann habe ich versucht diese runterzuladen und zu installieren und es funktioniert nicht. Ein paar haben funktioniert, aber mindestens 75% davon nicht. Was kann ich tun? Danke schon mal für eure Hilfe
__________________ Gruß, Kristine |
30.12.2014, 21:35 | #2 |
| Neues Laptop bricht Updates ständig ab Anleitung / Hilfe Hallo und Willkommen im TB
__________________Gibt es eine Fehlermeldung? versuche sie in 2-3er Paketen zu instalieren und nicht alle auf einmal.
__________________ |
30.12.2014, 22:06 | #3 |
| Neues Laptop bricht Updates ständig ab Details Hallo nochmal Seven
__________________nein, ich hab keine Fehlermeldung. Es updatet einfach nicht obwohl ich automatisch installieren aktiviert hab. Wenn ich es dann manuell versuche, dann auch nicht. Habs auch schon mit der Windowseigenen Fehlerbehebung versucht, hat auch nicht funktionier. Dann hab ichs mit nem kleinen Teil versucht, ging auch nicht... *ratlos*
__________________ |
31.12.2014, 20:56 | #4 |
| Lösung: Neues Laptop bricht Updates ständig ab ok, bitte Log erstellen Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ - Seven Das TB unterstützen |
31.12.2014, 21:32 | #5 |
| Wie Neues Laptop bricht Updates ständig ab alles klar Seven...ist in Arbeit Hier der erste Text: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-12-2014 Ran by Ad (administrator) on FLEXI on 31-12-2014 21:28:09 Running from C:\Users\Ad\Downloads Loaded Profile: Ad (Available profiles: Ad) Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe (Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE (PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe (Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17031_none_fa50b3979b1bcb4a\TiWorker.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\livecomm.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek semiconductor) C:\Windows\RTFTrack.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Pokki) C:\Users\Ad\AppData\Local\Pokki\Engine\HostAppService.exe (Pokki) C:\Users\Ad\AppData\Local\Pokki\Engine\HostAppServiceUpdater.exe () C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Corporation) C:\Windows\WinStore\WSHost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13653208 2013-09-13] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-08-31] (Realtek Semiconductor) HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6340312 2013-08-03] (Realtek semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2771184 2013-10-25] (Synaptics Incorporated) HKLM\...\Run: [Yoga PhoneCompanion] => C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe [844304 2014-08-25] (Lenovo) HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2014-08-25] (Lenovo(beijing) Limited) HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2014-08-25] (Lenovo(beijing) Limited) HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-10-14] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-12-30] (AVAST Software) HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] ( (Atheros Communications)) HKU\S-1-5-21-2090288887-461774072-1095402524-1002\...\Run: [Pokki] => "%LOCALAPPDATA%\Pokki\Engine\HostAppServiceUpdater.exe" /LOGON ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-2090288887-461774072-1095402524-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-2090288887-461774072-1095402524-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-2090288887-461774072-1095402524-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.lenovo.com HKU\S-1-5-21-2090288887-461774072-1095402524-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com SearchScopes: HKU\S-1-5-21-2090288887-461774072-1095402524-1002 -> DefaultScope {4E3A3B91-4278-413C-986B-6C2772A17215} URL = BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 9\npnitromozilla.dll (Nitro PDF) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-12-30] Chrome: ======= CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://de-de.facebook.com/", "hxxp://www.ebay.de/" CHR Profile: C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-30] CHR Extension: (Google Docs) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-30] CHR Extension: (Google Drive) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-30] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-30] CHR Extension: (YouTube) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-30] CHR Extension: (Adblock Plus) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-12-30] CHR Extension: (Google-Suche) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-30] CHR Extension: (Google Tabellen) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-30] CHR Extension: (Avast Online Security) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-12-30] CHR Extension: (Ghostery) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-12-30] CHR Extension: (Google Wallet) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-30] CHR Extension: (Google Mail) - C:\Users\Ad\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-30] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-30] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-10-14] (Advanced Micro Devices, Inc.) [File not signed] R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-30] (AVAST Software) R2 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-12-12] (Nitro PDF Software) R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [163624 2013-10-17] (PointGrab LTD) R2 PhoneCompanionPusher; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe [249872 2014-08-25] (Lenovo) S3 PhoneCompanionVap; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe [328720 2014-08-25] (Lenovo) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-25] () R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-08-25] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-30] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-30] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-30] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-30] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-30] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-30] () R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-23] (Advanced Micro Devices) R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros) R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [100072 2013-08-03] (GenesysLogic) S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation) R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8873688 2013-08-03] (Realtek Semiconductor Corp.) R3 SensorsAlsDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [230912 2013-08-22] (Microsoft Corporation) R3 SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver_AMDASF.sys [30448 2013-10-25] (Synaptics Incorporated) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-12-31 21:28 - 2014-12-31 21:28 - 00013367 _____ () C:\Users\Ad\Downloads\FRST.txt 2014-12-31 21:28 - 2014-12-31 21:28 - 00000000 ____D () C:\FRST 2014-12-31 21:27 - 2014-12-31 21:27 - 00001391 _____ () C:\Users\Ad\Desktop\FRST64 - Verknüpfung.lnk 2014-12-31 21:26 - 2014-12-31 21:26 - 02123264 _____ (Farbar) C:\Users\Ad\Downloads\FRST64.exe 2014-12-31 06:02 - 2014-12-31 06:02 - 00000000 ____D () C:\Users\Public\Pokki 2014-12-31 06:01 - 2014-12-31 21:20 - 00002334 _____ () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Vorlagen 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Startmenü 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Druckumgebung 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Programme 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\ProgramData\Vorlagen 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\ProgramData\Startmenü 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\ProgramData\Dokumente 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien 2014-12-30 18:22 - 2014-12-30 18:22 - 00000000 _SHDL () C:\Dokumente und Einstellungen 2014-12-30 14:15 - 2014-12-30 14:15 - 00302011 _____ () C:\Users\Ad\Downloads\WindowsUpdateDiagnostic (1).diagcab 2014-12-30 14:11 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2014-12-30 14:11 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2014-12-30 14:11 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll 2014-12-30 14:11 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll 2014-12-30 14:07 - 2014-07-12 05:17 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2014-12-30 14:07 - 2014-05-31 11:07 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2014-12-30 14:07 - 2014-05-31 11:06 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2014-12-30 14:07 - 2014-05-31 04:40 - 13287936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2014-12-30 14:07 - 2014-05-31 04:30 - 11792384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2014-12-30 14:07 - 2014-05-31 04:12 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-30 14:07 - 2014-05-31 04:06 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2014-12-30 14:07 - 2014-05-31 04:03 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2014-12-30 14:07 - 2014-05-31 04:01 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2014-12-30 14:07 - 2014-05-31 03:56 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2014-12-30 14:07 - 2014-05-31 03:54 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2014-12-30 14:07 - 2014-05-31 03:48 - 03463680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2014-12-30 14:07 - 2014-05-31 03:37 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2014-12-30 14:07 - 2014-05-31 03:36 - 00923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2014-12-30 14:07 - 2014-05-31 03:35 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2014-12-30 14:07 - 2014-05-31 03:32 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2014-12-30 14:07 - 2014-04-11 09:25 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2014-12-30 14:07 - 2014-04-11 07:04 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll 2014-12-30 14:07 - 2014-04-11 06:53 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe 2014-12-30 14:07 - 2014-04-11 06:22 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll 2014-12-30 14:07 - 2014-03-11 14:21 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2014-12-30 14:07 - 2014-03-11 14:02 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2014-12-30 14:02 - 2014-12-30 14:02 - 00302011 _____ () C:\Users\Ad\Downloads\WindowsUpdateDiagnostic.diagcab 2014-12-30 13:40 - 2014-12-30 13:40 - 00000000 ____D () C:\Users\Ad\AppData\Roaming\Dropbox 2014-12-30 13:37 - 2014-12-30 13:37 - 00001991 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2014-12-30 13:37 - 2014-12-30 13:37 - 00000000 ____D () C:\Users\Ad\AppData\Roaming\AVAST Software 2014-12-30 13:37 - 2014-12-30 13:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2014-12-30 13:36 - 2014-12-30 13:37 - 01050432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00436624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00364512 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2014-12-30 13:36 - 2014-12-30 13:36 - 00267632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00116728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00093568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00083280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00065776 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2014-12-30 13:36 - 2014-12-30 13:36 - 00029208 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys 2014-12-30 13:36 - 2014-12-30 13:36 - 00003924 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update 2014-12-30 13:35 - 2014-12-30 13:35 - 00000000 ____D () C:\Program Files\AVAST Software 2014-12-30 13:34 - 2014-12-30 13:35 - 00000000 ____D () C:\ProgramData\AVAST Software 2014-12-30 13:32 - 2014-12-30 13:34 - 132469808 _____ (AVAST Software) C:\Users\Ad\Downloads\avast_free_antivirus_setup.exe 2014-12-30 13:17 - 2014-04-30 05:43 - 01975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2014-12-30 13:17 - 2014-04-30 05:26 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2014-12-30 13:17 - 2014-04-30 04:47 - 01509888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2014-12-30 13:17 - 2014-04-18 15:57 - 00032600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll 2014-12-30 13:17 - 2014-04-18 15:44 - 01466856 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll 2014-12-30 13:17 - 2014-04-18 14:29 - 01200288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll 2014-12-30 13:17 - 2014-04-18 10:44 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll 2014-12-30 13:17 - 2014-04-18 09:32 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2014-12-30 13:17 - 2014-04-18 09:21 - 01126912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll 2014-12-30 13:17 - 2014-04-18 09:09 - 08652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2014-12-30 13:17 - 2014-04-18 08:51 - 00836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll 2014-12-30 13:17 - 2014-04-18 08:49 - 05833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2014-12-30 13:17 - 2014-04-14 10:20 - 00324888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll 2014-12-30 13:17 - 2014-04-14 09:01 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll 2014-12-30 13:17 - 2014-04-11 07:13 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2014-12-30 13:17 - 2014-04-11 05:51 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2014-12-30 13:17 - 2014-04-11 05:23 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2014-12-30 13:17 - 2014-04-11 04:30 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll 2014-12-30 13:17 - 2014-04-09 12:53 - 00337240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2014-12-30 13:17 - 2014-04-09 07:39 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll 2014-12-30 13:17 - 2014-04-09 06:44 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll 2014-12-30 13:17 - 2014-04-09 05:35 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2014-12-30 13:17 - 2014-04-09 04:33 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2014-12-30 13:17 - 2014-04-08 03:01 - 00589656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2014-12-30 13:17 - 2014-04-06 17:34 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2014-12-30 13:17 - 2014-04-06 17:34 - 00275800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys 2014-12-30 13:17 - 2014-04-06 17:32 - 00125496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2014-12-30 13:17 - 2014-04-06 17:31 - 21268952 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2014-12-30 13:17 - 2014-04-06 17:30 - 00201920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll 2014-12-30 13:17 - 2014-04-06 17:24 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys 2014-12-30 13:17 - 2014-04-06 17:20 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 01403856 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 01379064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00765408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00609448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00491744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00467496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00463256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00244880 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2014-12-30 13:17 - 2014-04-06 17:20 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2014-12-30 13:17 - 2014-04-06 17:20 - 00028408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2014-12-30 13:17 - 2014-04-06 16:23 - 00098584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2014-12-30 13:17 - 2014-04-06 16:22 - 18755672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2014-12-30 13:17 - 2014-04-06 16:22 - 00178184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 01209616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00669856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00518544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00406504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00387896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2014-12-30 13:17 - 2014-04-06 16:16 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2014-12-30 13:17 - 2014-04-06 15:10 - 04190720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2014-12-30 13:17 - 2014-04-06 13:58 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll 2014-12-30 13:17 - 2014-04-06 13:51 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll 2014-12-30 13:17 - 2014-04-06 13:33 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe 2014-12-30 13:17 - 2014-04-06 13:24 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe 2014-12-30 13:17 - 2014-04-06 13:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll 2014-12-30 13:17 - 2014-04-06 12:55 - 16872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2014-12-30 13:17 - 2014-04-06 12:54 - 12711424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2014-12-30 13:17 - 2014-04-06 12:26 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll 2014-12-30 13:17 - 2014-04-06 12:20 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2014-12-30 13:17 - 2014-04-06 12:01 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2014-12-30 13:17 - 2014-04-06 11:52 - 00955904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2014-12-30 13:17 - 2014-04-06 11:51 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2014-12-30 13:17 - 2014-04-06 11:37 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2014-12-30 13:17 - 2014-04-06 11:36 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2014-12-30 13:17 - 2014-04-06 11:05 - 01222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2014-12-30 13:17 - 2014-04-06 10:59 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2014-12-30 13:17 - 2014-04-03 09:12 - 02124840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2014-12-30 13:17 - 2014-04-03 09:12 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2014-12-30 13:17 - 2014-04-03 09:12 - 00130144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll 2014-12-30 13:17 - 2014-04-03 05:03 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2014-12-30 13:17 - 2014-04-03 05:03 - 00111528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll 2014-12-30 13:17 - 2014-04-03 04:53 - 01797896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2014-12-30 13:17 - 2014-04-03 03:53 - 04269056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2014-12-30 13:17 - 2014-04-03 03:53 - 00677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys 2014-12-30 13:17 - 2014-04-03 03:51 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2014-12-30 13:17 - 2014-04-03 03:23 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2014-12-30 13:17 - 2014-04-03 03:23 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2014-12-30 13:17 - 2014-04-03 03:23 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tlscsp.dll 2014-12-30 13:17 - 2014-04-03 03:22 - 03359744 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2014-12-30 13:17 - 2014-04-03 03:22 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tlscsp.dll 2014-12-30 13:17 - 2014-04-01 07:23 - 00384856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2014-12-30 13:17 - 2014-03-31 06:42 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2014-12-30 13:17 - 2014-03-31 06:35 - 02518360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2014-12-30 13:17 - 2014-03-31 06:35 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2014-12-30 13:17 - 2014-03-31 01:41 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll 2014-12-30 13:17 - 2014-03-31 01:01 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll 2014-12-30 13:17 - 2014-03-31 00:43 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll 2014-12-30 13:17 - 2014-03-30 23:54 - 01308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2014-12-30 13:17 - 2014-03-30 23:49 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2014-12-30 13:17 - 2014-03-30 23:35 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2014-12-30 13:17 - 2014-03-30 23:11 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll 2014-12-30 13:17 - 2014-03-30 22:47 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe 2014-12-30 13:17 - 2014-03-28 16:58 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2014-12-30 13:17 - 2014-03-27 07:16 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys 2014-12-30 13:17 - 2014-03-27 06:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2014-12-30 13:17 - 2014-03-27 05:59 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2014-12-30 13:17 - 2014-03-27 05:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2014-12-30 13:17 - 2014-03-27 05:19 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2014-12-30 13:17 - 2014-03-27 04:46 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll 2014-12-30 13:17 - 2014-03-27 04:15 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll 2014-12-30 13:17 - 2014-03-27 04:10 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe 2014-12-30 13:17 - 2014-03-24 23:58 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2014-12-30 13:17 - 2014-03-20 04:48 - 00263424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2014-12-30 13:17 - 2014-03-20 01:44 - 06645248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2014-12-30 13:17 - 2014-03-20 00:33 - 05774848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2014-12-30 13:17 - 2014-03-19 09:15 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll 2014-12-30 13:17 - 2014-03-19 09:07 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys 2014-12-30 13:17 - 2014-03-19 08:24 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-12-30 13:17 - 2014-03-19 08:17 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll 2014-12-30 13:17 - 2014-03-19 07:36 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll 2014-12-30 13:17 - 2014-03-19 06:56 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll 2014-12-30 13:17 - 2014-03-19 06:45 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll 2014-12-30 13:17 - 2014-03-19 06:19 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2014-12-30 13:17 - 2014-03-19 06:07 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2014-12-30 13:17 - 2014-03-19 06:02 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2014-12-30 13:17 - 2014-03-19 06:00 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll 2014-12-30 13:17 - 2014-03-19 05:51 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll 2014-12-30 13:17 - 2014-03-19 05:31 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll 2014-12-30 13:17 - 2014-03-19 05:18 - 02688000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll 2014-12-30 13:17 - 2014-03-18 09:19 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2014-12-30 13:17 - 2014-03-18 06:00 - 07173120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2014-12-30 13:17 - 2014-03-18 05:52 - 05104640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2014-12-30 13:17 - 2014-03-17 06:09 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll 2014-12-30 13:17 - 2014-03-17 05:11 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll 2014-12-30 13:17 - 2014-03-17 04:01 - 00486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2014-12-30 13:17 - 2014-03-17 03:47 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2014-12-30 13:17 - 2014-03-17 03:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2014-12-30 13:17 - 2014-03-14 07:26 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll 2014-12-30 13:17 - 2014-03-14 07:10 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll 2014-12-30 13:17 - 2014-03-08 21:47 - 00565536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2014-12-30 13:17 - 2014-03-08 21:47 - 00180056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2014-12-30 13:17 - 2014-03-08 10:34 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll 2014-12-30 13:17 - 2014-03-08 09:44 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll 2014-12-30 13:17 - 2014-03-06 13:42 - 00310616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys 2014-12-30 13:17 - 2014-03-06 10:19 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2014-12-30 13:17 - 2014-03-06 09:20 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2014-12-30 13:17 - 2014-01-27 19:21 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2014-12-30 13:14 - 2014-05-19 07:31 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe 2014-12-30 13:14 - 2014-05-19 07:21 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe 2014-12-30 13:14 - 2014-05-19 06:23 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe 2014-12-30 13:14 - 2014-05-01 14:31 - 03048904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2014-12-30 13:14 - 2014-05-01 14:31 - 00055328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys 2014-12-30 13:14 - 2014-05-01 08:14 - 03118080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll 2014-12-30 13:14 - 2014-05-01 08:05 - 02861056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll 2014-12-30 13:14 - 2014-05-01 07:51 - 02344448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll 2014-12-30 13:14 - 2014-05-01 06:24 - 02834944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll 2014-12-30 13:14 - 2014-03-06 10:19 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll 2014-12-30 13:06 - 2014-12-30 13:06 - 00000000 ____D () C:\ProgramData\tmp 2014-12-30 13:06 - 2014-12-30 13:06 - 00000000 ____D () C:\ProgramData\hps 2014-12-30 13:03 - 2014-12-30 13:03 - 00002278 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-12-30 13:03 - 2014-12-30 13:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-12-30 13:02 - 2014-12-31 21:19 - 00001110 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-12-30 13:02 - 2014-12-31 06:07 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-12-30 13:02 - 2014-12-30 13:03 - 00000000 ____D () C:\Users\Ad\AppData\Local\Google 2014-12-30 13:02 - 2014-12-30 13:03 - 00000000 ____D () C:\Program Files (x86)\Google 2014-12-30 13:02 - 2014-12-30 13:02 - 00004086 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2014-12-30 13:02 - 2014-12-30 13:02 - 00003850 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2014-12-30 13:02 - 2014-12-30 13:02 - 00000000 ____D () C:\Users\Ad\AppData\Local\Deployment 2014-12-30 13:02 - 2014-12-30 13:02 - 00000000 ____D () C:\Users\Ad\AppData\Local\Apps\2.0 2014-12-30 12:59 - 2014-12-30 12:59 - 00000000 __SHD () C:\Users\Ad\AppData\Local\EmieUserList 2014-12-30 12:59 - 2014-12-30 12:59 - 00000000 __SHD () C:\Users\Ad\AppData\Local\EmieSiteList 2014-12-30 12:40 - 2014-12-31 21:24 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2090288887-461774072-1095402524-1002 2014-12-30 12:40 - 2014-12-31 21:20 - 00000000 __RDO () C:\Users\Ad\OneDrive 2014-12-30 12:36 - 2014-12-30 12:36 - 00000000 ____D () C:\Users\Ad\Documents\Bluetooth Folder 2014-12-30 12:36 - 2014-12-30 12:36 - 00000000 ____D () C:\Users\Ad\AppData\Local\BMExplorer 2014-12-30 12:35 - 2014-12-30 12:36 - 00000000 ____D () C:\ProgramData\Atheros 2014-12-30 12:35 - 2014-12-30 12:35 - 00000000 ____D () C:\Users\Ad\AppData\Roaming\Macromedia 2014-12-30 12:35 - 2014-12-30 12:35 - 00000000 ____D () C:\Users\Ad\AppData\Roaming\Atheros 2014-12-30 12:34 - 2014-12-31 21:27 - 00000000 ____D () C:\Users\Ad\AppData\Local\Packages 2014-12-30 12:34 - 2014-12-30 12:34 - 00001461 _____ () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-12-30 12:34 - 2014-12-30 12:34 - 00000000 ____D () C:\Users\Ad\AppData\Roaming\Adobe 2014-12-30 12:34 - 2014-12-30 12:34 - 00000000 ____D () C:\Users\Ad\AppData\Local\VirtualStore 2014-12-30 12:33 - 2014-12-31 21:22 - 00000000 ____D () C:\Users\Ad\AppData\Local\Pokki 2014-12-30 12:33 - 2014-12-30 12:40 - 00000000 ____D () C:\Users\Ad 2014-12-30 12:33 - 2014-12-30 12:33 - 00000020 ___SH () C:\Users\Ad\ntuser.ini 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Vorlagen 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Startmenü 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Netzwerkumgebung 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Lokale Einstellungen 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Eigene Dateien 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Druckumgebung 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Documents\Eigene Musik 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Documents\Eigene Bilder 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\AppData\Local\Verlauf 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\AppData\Local\Anwendungsdaten 2014-12-30 12:33 - 2014-12-30 12:33 - 00000000 _SHDL () C:\Users\Ad\Anwendungsdaten 2014-12-30 12:33 - 2014-03-18 11:05 - 00000000 ___RD () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-12-30 12:33 - 2014-03-18 11:05 - 00000000 ___RD () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-12-30 12:33 - 2014-03-18 10:55 - 00000369 _____ () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2014-12-30 12:33 - 2014-03-18 10:55 - 00000369 _____ () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2014-12-30 12:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-12-30 12:33 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Ad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-12-31 21:27 - 2014-08-25 22:45 - 01962583 _____ () C:\WINDOWS\WindowsUpdate.log 2014-12-31 21:27 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-12-31 21:23 - 2013-08-22 16:20 - 00000000 ____D () C:\WINDOWS\CbsTemp 2014-12-31 21:17 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-12-31 06:20 - 2014-08-25 22:46 - 00065536 _____ () C:\WINDOWS\system32\spu_storage.bin 2014-12-30 18:23 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-12-30 18:22 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows NT 2014-12-30 18:22 - 2013-08-22 14:36 - 00000000 ___HD () C:\Users\Default 2014-12-30 15:02 - 2014-08-26 08:26 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat 2014-12-30 15:02 - 2014-08-26 08:26 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat 2014-12-30 15:02 - 2014-03-18 10:53 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-12-30 14:55 - 2014-08-25 23:16 - 00000000 ____D () C:\ProgramData\McAfee 2014-12-30 14:54 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-12-30 14:54 - 2013-08-22 15:44 - 00344840 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-12-30 14:53 - 2014-03-18 10:44 - 00004466 _____ () C:\WINDOWS\PFRO.log 2014-12-30 14:53 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-12-30 14:52 - 2014-08-25 23:24 - 00002560 _____ () C:\WINDOWS\system32\VfService.trf 2014-12-30 14:52 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData 2014-12-30 14:51 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel 2014-12-30 14:51 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\WinStore 2014-12-30 14:51 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-12-30 14:51 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\oobe 2014-12-30 14:14 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF 2014-12-30 13:31 - 2013-08-22 16:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP 2014-12-30 13:11 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\restore 2014-12-30 12:39 - 2014-08-25 23:26 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Lenovo 2014-12-30 12:35 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM 2014-12-30 12:34 - 2014-08-26 08:16 - 00094251 ____H () C:\WINDOWS\modules.log 2014-12-30 12:34 - 2014-04-03 20:15 - 00000000 ____D () C:\WINDOWS\Panther Some content of TEMP: ==================== C:\Users\Ad\AppData\Local\Temp\oct8ADA.tmp.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-25 22:32 ==================== End Of Log ============================ --- --- --- --- --- --- und der zweite: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-12-2014 Ran by Ad at 2014-12-31 21:29:36 Running from C:\Users\Ad\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) AMD Catalyst Install Manager (HKLM\...\{99524E42-E11D-953D-BDC9-58CD0527F56A}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software) Benutzerhandbücher (x32 Version: 3.0.0.3 - Lenovo) Hidden CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.) CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.3.2.2 - Dolby Laboratories Inc) Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.35 - Lenovo) Energy Manager (x32 Version: 1.0.0.35 - Lenovo) Hidden Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.0.7 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Host App Service (HKU\S-1-5-21-2090288887-461774072-1095402524-1002\...\Pokki) (Version: 0.269.4.145 - Pokki) Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10242 - Realtek Semiconductor Corp.) Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.0.4.0 - Lenovo) Lenovo Motion Control (HKLM-x32\...\InstallShield_{3963D1D4-8723-4EE4-9694-D1078BB26B75}) (Version: 2.0.0.1017 - PointGrab) Lenovo Motion Control (x32 Version: 2.0.0.1017 - PointGrab) Hidden Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.) Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.7 - CEWE COLOR AG u Co. OHG) Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo) Lenovo Yoga PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.1.9.3 - Lenovo) Lenovo Yoga PhoneCompanion (x32 Version: 1.1.9.3 - Lenovo) Hidden Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Nitro Pro 9 (HKLM\...\{4C32F7E8-A65F-4D3C-9153-9F3B57CB6872}) (Version: 9.0.5.9 - Nitro) OEM Application Profile (HKLM-x32\...\{70D5F822-F4C4-33D9-7EEC-2A4AF4EA7BDC}) (Version: 1.00.0000 - Ihr Firmenname) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.) Start Menu (HKU\S-1-5-21-2090288887-461774072-1095402524-1002\...\Pokki_Start_Menu) (Version: 0.269.4.145 - Pokki) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.6.53 - Synaptics Incorporated) User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo) Windows-Treiberpaket - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo) Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 30-12-2014 13:11:23 McAfee Vulnerability Scanner ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {49245C5E-5423-472B-8D46-D693D725FCB8} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Office2013\OFFICEICON.vbs [2013-06-03] () Task: {B6427FA2-2DBE-4A8D-8CEC-4D322834B504} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-30] (AVAST Software) Task: {C320B4FE-F5DD-4BA6-8424-FC81705543D2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-30] (Google Inc.) Task: {DE938C91-0E7E-4A97-8E0B-B6150D313142} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2013-06-03] (Lenovo) Task: {E0596504-DD40-4067-8313-12B5F291E2B1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-12-30] (Google Inc.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-10-14 05:52 - 2013-10-14 05:52 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll 2014-08-25 23:22 - 2012-04-25 03:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2014-08-25 23:24 - 2014-08-25 23:24 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe 2014-08-25 23:24 - 2014-08-25 23:24 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll 2014-03-18 10:40 - 2014-03-18 10:40 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe\ErrorReporting.dll 2013-09-07 00:48 - 2013-09-07 00:48 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-09-07 00:45 - 2013-09-07 00:45 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll 2013-09-07 00:52 - 2013-09-07 00:52 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe 2014-08-25 23:23 - 2014-08-25 23:23 - 00161792 _____ () C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe 2014-12-30 13:40 - 2014-12-30 13:40 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14123000\algo.dll 2014-12-31 06:06 - 2014-12-31 06:06 - 02908160 _____ () C:\Program Files\AVAST Software\Avast\defs\14123001\algo.dll 2014-12-30 13:36 - 2014-12-30 13:36 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2013-10-17 16:17 - 2013-10-17 16:17 - 02439488 _____ () C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterFilter.ax 2014-12-30 13:03 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll 2014-12-30 13:03 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll 2014-12-30 13:03 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll 2014-12-30 13:03 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) AlternateDataStreams: C:\Users\Ad\OneDrive:ms-properties ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) ========================= Accounts: ========================== Ad (S-1-5-21-2090288887-461774072-1095402524-1002 - Administrator - Enabled) => C:\Users\Ad Administrator (S-1-5-21-2090288887-461774072-1095402524-500 - Administrator - Disabled) Gast (S-1-5-21-2090288887-461774072-1095402524-501 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-2090288887-461774072-1095402524-1004 - Limited - Enabled) Kristine (S-1-5-21-2090288887-461774072-1095402524-1005 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (12/31/2014 09:21:02 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest. Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest. Error: (12/30/2014 00:34:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Fehler bei der Lizenzaktivierung (slui.exe). Fehlercode: hr=0xC004E028 Befehlszeilenargumente: RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c7c00280-b24d-4e82-89ca-4f1288eb1d9e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 System errors: ============= Error: (12/30/2014 02:56:16 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 70. Der Windows-SChannel-Fehlerstatus lautet: 105. Error: (12/30/2014 02:51:30 PM) (Source: Service Control Manager) (EventID: 7043) (User: ) Description: Der Dienst Windows Update konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden. Error: (12/30/2014 02:50:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: Sicherheitsupdate für Windows 8.1 für x64-basierte Systeme (KB2957189) Error: (12/30/2014 02:50:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB2956575) Error: (12/30/2014 02:50:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT) Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x8007045b fehlgeschlagen: Update für Windows 8.1 für x64-Systeme (KB2939087) Error: (12/30/2014 01:41:14 PM) (Source: DCOM) (EventID: 10010) (User: FLEXI) Description: {4AA0A5C4-1B9B-4F2E-99D7-99C6AEC83474} Error: (12/30/2014 01:30:16 PM) (Source: DCOM) (EventID: 10010) (User: FLEXI) Description: {209500FC-6B45-4693-8871-6296C4843751} Error: (12/30/2014 01:29:46 PM) (Source: DCOM) (EventID: 10010) (User: FLEXI) Description: {209500FC-6B45-4693-8871-6296C4843751} Error: (12/30/2014 01:27:51 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst mfecore erreicht. Error: (08/25/2014 11:37:50 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Microsoft Office Sessions: ========================= Error: (12/31/2014 09:21:02 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Users\Ad\AppData\Local\Pokki\Engine\HostAppService.exe Error: (12/30/2014 00:34:48 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: hr=0xC004E028RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c7c00280-b24d-4e82-89ca-4f1288eb1d9e;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 ==================== Memory info =========================== Processor: AMD A6-5200 APU with Radeon(TM) HD Graphics Percentage of memory in use: 28% Total physical RAM: 7889.26 MB Available physical RAM: 5650.24 MB Total Pagefile: 9809.26 MB Available Pagefile: 7525.88 MB Total Virtual: 131072 MB Available Virtual: 131071.8 MB ==================== Drives ================================ Drive c: (Windows8_OS) (Fixed) (Total:891.6 GB) (Free:861.97 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.73 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 4F2FE25A) Partition: GPT Partition Type. ==================== End Of Log ============================
__________________ Gruß, Kristine |
31.12.2014, 22:21 | #6 |
| Wo Neues Laptop bricht Updates ständig ab Lösung! Downloade Dir bitte Malwarebytes Anti-Malware
dann Downloade Dir bitte AdwCleaner auf deinen Desktop.
__________________ --> Neues Laptop bricht Updates ständig ab |
31.12.2014, 23:05 | #7 |
| Neues Laptop bricht Updates ständig ab alles klar, ich fang jetzt an so, hier erst mal mbam: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 31.12.2014 Suchlauf-Zeit: 22:29:04 Logdatei: mbam.txt Administrator: Ja Version: 2.00.4.1028 Malware Datenbank: v2014.12.31.05 Rootkit Datenbank: v2014.12.30.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: Ad Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 321250 Verstrichene Zeit: 15 Min, 22 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 0 (Keine schädliche Elemente erkannt) Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 0 (Keine schädliche Elemente erkannt) Dateien: 0 (Keine schädliche Elemente erkannt) Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) Code:
ATTFilter # AdwCleaner v4.106 - Bericht erstellt am 31/12/2014 um 23:01:15 # Aktualisiert 21/12/2014 von Xplode # Database : 2014-12-30.1 [Live] # Betriebssystem : Windows 8.1 (64 bits) # Benutzername : Ad - FLEXI # Gestartet von : C:\Users\Ad\Downloads\AdwCleaner_4.106.exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** ***** [ Tasks ] ***** ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKCU\Software\Classes\pokki Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki] Schlüssel Gelöscht : HKCU\Software\Pokki Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki ***** [ Browser ] ***** -\\ Internet Explorer v11.0.9600.17037 -\\ Google Chrome v39.0.2171.95 ************************* AdwCleaner[R0].txt - [1043 octets] - [31/12/2014 22:48:45] AdwCleaner[S0].txt - [918 octets] - [31/12/2014 23:01:15] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [977 octets] ##########
__________________ Gruß, Kristine |
01.01.2015, 14:00 | #8 |
| Neues Laptop bricht Updates ständig ab Gut, Bitte mal ausfuehren: http://www.trojaner-board.de/72874-s...eparieren.html Danach: - neustarten nochmal versuchen bis keine Fehler kommen
__________________ - Seven Das TB unterstützen |
01.01.2015, 19:21 | #9 |
| Neues Laptop bricht Updates ständig ab Hallo Seven, wie meinst du das mit nochmal versuchen? Soll ich nach dem Scan und Neustart nochmal die Updates versuchen und wenn sie nicht gehen nochmal scannen ?
__________________ Gruß, Kristine |
01.01.2015, 19:24 | #10 |
| Neues Laptop bricht Updates ständig ab [gelöst] Kamen beim SFC fehler oder wurden keine Fehler gefunden?
__________________ - Seven Das TB unterstützen |
01.01.2015, 19:45 | #11 |
| Neues Laptop bricht Updates ständig ab [gelöst] Bin noch dabei....63% So, Scan ist erledigt und es wurden keine Integritätsverletzung gefunden
__________________ Gruß, Kristine |
01.01.2015, 19:49 | #12 |
| Neues Laptop bricht Updates ständig ab [gelöst] Gut! Updates gehen immer noch nicht, richtig? Jetzt bitte folgendes laufen lassen: http://www.trojaner-board.de/126216-...epair-aio.html
__________________ - Seven Das TB unterstützen |
01.01.2015, 20:09 | #13 |
| Neues Laptop bricht Updates ständig ab [gelöst] Du, Seven....so wie es aussieht wird gerade installiert. Unglaublich. Konntest du den was sehen an den anderen Scans die wir laufen ließen? Ich melde mich nachher und sag dir ob alle installiert wurden oder ob wieder Fehler aufgetaucht sind. Bis gleich
__________________ Gruß, Kristine |
01.01.2015, 21:30 | #14 | |
| Neues Laptop bricht Updates ständig ab [gelöst]Zitat:
Bischen Adware-Reste aber sonst alles in Ordnung
__________________ - Seven Das TB unterstützen |
01.01.2015, 21:41 | #15 |
| Neues Laptop bricht Updates ständig ab [gelöst] Na sowas...kannst du mir sagen wie das auf ein neues Laptop draufkommt, welches gerade erst in Betrieb genommen wurde? Zu den Updates, also es sind jetzt ca 50 installiert worden und 2 nicht. Allerdings wenn ich auf Updates suchen gehe, dann werden keine neu zu installierende angezeigt.
__________________ Gruß, Kristine |
Themen zu Neues Laptop bricht Updates ständig ab |
abend, betrieb, bricht, fehler 0x8007045b, fehlercode 0x8007045b, funktionier, funktioniert, guten, heute, hilfe, installiere, installieren, laptop, mindestens, neues, runterzuladen, stehe, updates, updates ist mit fehler 0x8007045b fehlgeschlagen, versuch, versucht |