| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows Updates und Grafikkartentreiber Update nicht möglichWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
29.01.2015, 21:24
| #1 |
 |  Windows Updates und Grafikkartentreiber Update nicht möglich Hallo zusammen, ich weiß nicht, ob ich einen Virus o.ä. habe und in diesem Forum richtig bin. Falls nein, bitte ich um Entschuldigung, ich kenne mich in diesem Bereich rein gar nicht aus. Ich kann die wichtigen Windows Updates, die mir angeboten werden, nicht mehr durchführen, es kommen immer Fehlermeldungen. Es handelt sich um das Update "Windows.NET Framework 4.5.2 für Windows 7 x64-basierte Systeme". Auch den Treiber für meine Grafikkarte kann ich nicht weiter updaten, es kommt immer die Meldung "funktioniert nicht mehr". Ich habe versucht, die Updates als Administrator durchzuführen, bei ausgeschalteter Firewall und im abgesicherten Modus, das hat leider alles nichts gebracht. Hier ist meine dxdiag file, falls sie hilft: Code:
ATTFilter ------------------
System Information
------------------
Time of this report: 01/29/2014, 14:20:25
Machine name: PC-PC
Operating System: Windows 7 Home Premium 64-bit (6.1, Build 7601) Service Pack 1 (7601.win7sp1_gdr.140706-1506)
Language: German (Regional Setting: German)
System Manufacturer: System manufacturer
System Model: System Product Name
BIOS: BIOS Date: 07/15/10 20:15:05 Ver: 08.00.15
Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz (8 CPUs), ~2.8GHz
Memory: 4096MB RAM
Available OS Memory: 4056MB RAM
Page File: 3773MB used, 4335MB available
Windows Dir: C:\Windows
DirectX Version: DirectX 11
DX Setup Parameters: Not found
User DPI Setting: Using System DPI
System DPI Setting: 96 DPI (100 percent)
DWM DPI Scaling: Disabled
DxDiag Version: 6.01.7601.17514 64bit Unicode
------------
DxDiag Notes
------------
Display Tab 1: No problems found.
Sound Tab 1: No problems found.
Sound Tab 2: No problems found.
Input Tab: No problems found.
--------------------
DirectX Debug Levels
--------------------
Direct3D: 0/4 (retail)
DirectDraw: 0/4 (retail)
DirectInput: 0/5 (retail)
DirectMusic: 0/5 (retail)
DirectPlay: 0/9 (retail)
DirectSound: 0/5 (retail)
DirectShow: 0/6 (retail)
---------------
Display Devices
---------------
Card name: NVIDIA GeForce GTX 460 SE
Manufacturer: NVIDIA
Chip type: GeForce GTX 460 SE
DAC type: Integrated RAMDAC
Device Key: Enum\PCI\VEN_10DE&DEV_0E23&SUBSYS_040110B0&REV_A1
Display Memory: 2748 MB
Dedicated Memory: 977 MB
Shared Memory: 1771 MB
Current Mode: 1920 x 1080 (32 bit) (60Hz)
Monitor Name: PnP-Monitor (Standard)
Monitor Model: E2340
Monitor Id: GSM57A6
Native Mode: 1920 x 1080(p) (60.000Hz)
Output Type: DVI
Driver Name: nvd3dumx.dll,nvwgf2umx.dll,nvwgf2umx.dll,nvd3dum,nvwgf2um,nvwgf2um
Driver File Version: 9.18.0013.4052 (English)
Driver Version: 9.18.13.4052
DDI Version: 11
Driver Model: WDDM 1.1
Driver Attributes: Final Retail
Driver Date/Size: 8/19/2014 22:14:48, 17555104 bytes
WHQL Logo'd: Yes
WHQL Date Stamp:
Device Identifier: {D7B71E3E-4D63-11CF-D47C-0C241CC2C435}
Vendor ID: 0x10DE
Device ID: 0x0E23
SubSys ID: 0x040110B0
Revision ID: 0x00A1
Driver Strong Name: oem22.inf:NVIDIA_SetA_Devices.NTamd64.6.1:Section030:9.18.13.4052:pci\ven_10de&dev_0e23
Rank Of Driver: 00E02001
Video Accel: ModeMPEG2_A ModeMPEG2_C ModeVC1_C ModeWMV9_C
Deinterlace Caps: {6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YUY2,YUY2) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(UYVY,UYVY) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(YV12,0x32315659) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_PixelAdaptive
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(NV12,0x3231564e) Frames(Prev/Fwd/Back)=(0,0,0) Caps=VideoProcess_YUV2RGB VideoProcess_StretchX VideoProcess_StretchY DeinterlaceTech_BOBVerticalStretch
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC1,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC2,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC3,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(IMC4,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(S340,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{6CB69578-7617-4637-91E5-1C02DB810285}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{F9F19DA5-3B09-4B2F-9D89-C64753E3EAAB}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{5A54A0C9-C7EC-4BD9-8EDE-F3C75DC4393B}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
{335AA36E-7884-43A4-9C91-7F87FAF3E37E}: Format(In/Out)=(S342,UNKNOWN) Frames(Prev/Fwd/Back)=(0,0,0) Caps=
D3D9 Overlay: Supported
DXVA-HD: Supported
DDraw Status: Enabled
D3D Status: Enabled
AGP Status: Enabled
-------------
Sound Devices
-------------
Description: Lautsprecher (VIA High Definition Audio)
Default Sound Playback: Yes
Default Voice Playback: Yes
Hardware ID: HDAUDIO\FUNC_01&VEN_1106&DEV_0397&SUBSYS_10438415&REV_1000
Manufacturer ID: 1
Product ID: 100
Type: WDM
Driver Name: viahduaa.sys
Driver Version: 6.00.0001.7900 (English)
Driver Attributes: Final Retail
WHQL Logo'd: Yes
Date and Size: 1/11/2010 11:05:20, 1290752 bytes
Other Files:
Driver Provider: VIA Technologies, Inc.
HW Accel Level: Basic
Cap Flags: 0xF1F
Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
Static/Strm HW 3D Bufs: 0, 0
HW Memory: 0
Voice Management: No
EAX(tm) 2.0 Listen/Src: No, No
I3DL2(tm) Listen/Src: No, No
Sensaura(tm) ZoomFX(tm): No
Description: HD Audio HDMI out (VIA High Definition Audio)
Default Sound Playback: No
Default Voice Playback: No
Hardware ID: HDAUDIO\FUNC_01&VEN_1106&DEV_0397&SUBSYS_10438415&REV_1000
Manufacturer ID: 1
Product ID: 100
Type: WDM
Driver Name: viahduaa.sys
Driver Version: 6.00.0001.7900 (English)
Driver Attributes: Final Retail
WHQL Logo'd: Yes
Date and Size: 1/11/2010 11:05:20, 1290752 bytes
Other Files:
Driver Provider: VIA Technologies, Inc.
HW Accel Level: Basic
Cap Flags: 0xF1F
Min/Max Sample Rate: 100, 200000
Static/Strm HW Mix Bufs: 1, 0
Static/Strm HW 3D Bufs: 0, 0
HW Memory: 0
Voice Management: No
EAX(tm) 2.0 Listen/Src: No, No
I3DL2(tm) Listen/Src: No, No
Sensaura(tm) ZoomFX(tm): No
---------------------
Sound Capture Devices
---------------------
Description: Stereomix (VIA High Definition Audio)
Default Sound Capture: Yes
Default Voice Capture: Yes
Driver Name: viahduaa.sys
Driver Version: 6.00.0001.7900 (English)
Driver Attributes: Final Retail
Date and Size: 1/11/2010 11:05:20, 1290752 bytes
Cap Flags: 0x1
Format Flags: 0xFFFFF
-------------------
DirectInput Devices
-------------------
Device Name: Maus
Attached: 1
Controller ID: n/a
Vendor/Product ID: n/a
FF Driver: n/a
Device Name: Tastatur
Attached: 1
Controller ID: n/a
Vendor/Product ID: n/a
FF Driver: n/a
Device Name: USB Keykoard
Attached: 1
Controller ID: 0x0
Vendor/Product ID: 0x1C4F, 0x0002
FF Driver: n/a
Device Name: USB Keykoard
Attached: 1
Controller ID: 0x0
Vendor/Product ID: 0x1C4F, 0x0002
FF Driver: n/a
Poll w/ Interrupt: No
-----------
USB Devices
-----------
+ USB-Root-Hub
| Vendor/Product ID: 0x8086, 0x3B3C
| Matching Device ID: usb\root_hub20
| Service: usbhub
| Driver: usbhub.sys, 11/27/2013 02:41:37, 343040 bytes
| Driver: usbd.sys, 11/27/2013 02:41:03, 7808 bytes
|
+-+ Generic USB Hub
| | Vendor/Product ID: 0x8087, 0x0020
| | Location: Port_#0001.Hub_#0001
| | Matching Device ID: usb\class_09
| | Service: usbhub
| | Driver: usbhub.sys, 11/27/2013 02:41:37, 343040 bytes
----------------
Gameport Devices
----------------
------------
PS/2 Devices
------------
+ HID-Tastatur
| Vendor/Product ID: 0x1C4F, 0x0002
| Matching Device ID: hid_device_system_keyboard
| Service: kbdhid
| Driver: kbdhid.sys, 7/14/2009 01:00:20, 33280 bytes
| Driver: kbdclass.sys, 7/14/2009 02:48:04, 50768 bytes
|
+ Terminalserver-Tastaturtreiber
| Matching Device ID: root\rdp_kbd
| Upper Filters: kbdclass
| Service: TermDD
| Driver: i8042prt.sys, 7/14/2009 00:19:57, 105472 bytes
| Driver: kbdclass.sys, 7/14/2009 02:48:04, 50768 bytes
|
+ HID-konforme Maus
| Vendor/Product ID: 0x192F, 0x0916
| Matching Device ID: hid_device_system_mouse
| Service: mouhid
| Driver: mouhid.sys, 7/14/2009 01:00:20, 31232 bytes
| Driver: mouclass.sys, 7/14/2009 02:48:27, 49216 bytes
|
+ Terminalserver-Maustreiber
| Matching Device ID: root\rdp_mou
| Upper Filters: mouclass
| Service: TermDD
| Driver: termdd.sys, 11/20/2010 14:33:57, 63360 bytes
| Driver: sermouse.sys, 7/14/2009 01:00:20, 26624 bytes
| Driver: mouclass.sys, 7/14/2009 02:48:27, 49216 bytes
------------------------
Disk & DVD/CD-ROM Drives
------------------------
Drive: C:
Free Space: 145.2 GB
Total Space: 953.8 GB
File System: NTFS
Model: ST1000DM003-9YN162 ATA Device
Drive: D:
Model: HL-DT-ST DVDRRW GSA-H30L ATA Device
Driver: c:\windows\system32\drivers\cdrom.sys, 6.01.7601.17514 (German), 11/20/2010 10:19:21, 147456 bytes
--------------
System Devices
--------------
Name: Intel(R) QuickPath Interconnect - D151
Device ID: PCI\VEN_8086&DEV_D151&SUBSYS_00000000&REV_11\3&11583659&0&81
Driver: n/a
Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 3 - 3B46
Device ID: PCI\VEN_8086&DEV_3B46&SUBSYS_83831043&REV_06\3&11583659&0&E2
Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes
Name: Intel(R) 82801 PCI-Brücke - 244E
Device ID: PCI\VEN_8086&DEV_244E&SUBSYS_83831043&REV_A6\3&11583659&0&F0
Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes
Name: Intel(R) QuickPath Interconnect - D150
Device ID: PCI\VEN_8086&DEV_D150&SUBSYS_00000000&REV_11\3&11583659&0&80
Driver: n/a
Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 1 - 3B42
Device ID: PCI\VEN_8086&DEV_3B42&SUBSYS_83831043&REV_06\3&11583659&0&E0
Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes
Name: Realtek PCIe GBE Family Controller
Device ID: PCI\VEN_10EC&DEV_8168&SUBSYS_83A31043&REV_03\4&FD5DF6&0&00E5
Driver: n/a
Name: Intel(R) processor PCI Express Root Port 1 - D138
Device ID: PCI\VEN_8086&DEV_D138&SUBSYS_83831043&REV_11\3&11583659&0&18
Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes
Name: Intel(R) 5 Series/3400 Series Chipset Family USB Enhanced Host Controller - 3B3C
Device ID: PCI\VEN_8086&DEV_3B3C&SUBSYS_83831043&REV_06\3&11583659&0&D0
Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.18328 (English), 11/27/2013 02:41:11, 53248 bytes
Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:11, 325120 bytes
Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:37, 343040 bytes
Name: NVIDIA GeForce GTX 460 SE
Device ID: PCI\VEN_10DE&DEV_0E23&SUBSYS_040110B0&REV_A1\4&113C73B2&0&0018
Driver: C:\Program Files\NVIDIA Corporation\Drs\dbInstaller.exe, 9.18.0013.4052 (English), 8/19/2014 22:13:54, 441120 bytes
Driver: C:\Program Files\NVIDIA Corporation\Drs\nvdrsdb.bin, 8/19/2014 22:14:50, 1192732 bytes
Driver: C:\Windows\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_neutral_06aea030233e53aa\NvCplSetupInt.exe, 1.00.0001.0000 (German), 8/19/2014 22:14:40, 83141328 bytes
Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\Nvd3d9wrap.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:46, 164496 bytes
Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\detoured.dll, 8/19/2014 22:14:50, 13272 bytes
Driver: C:\Program Files (x86)\NVIDIA Corporation\coprocmanager\nvdxgiwrap.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:50, 113008 bytes
Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\Nvd3d9wrapx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:46, 191264 bytes
Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\detoured.dll, 8/19/2014 22:14:50, 13088 bytes
Driver: C:\Program Files\NVIDIA Corporation\coprocmanager\nvdxgiwrapx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:50, 130488 bytes
Driver: C:\Program Files\NVIDIA Corporation\license.txt, 8/19/2014 22:13:58, 21904 bytes
Driver: C:\Program Files\NVIDIA Corporation\NVSMI\MCU.exe, 1.01.5204.20580 (German), 8/19/2014 22:13:58, 842528 bytes
Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvdebugdump.exe, 6.14.0013.4052 (English), 8/19/2014 22:14:50, 229320 bytes
Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.1.pdf, 8/19/2014 22:14:54, 56700 bytes
Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvidia-smi.exe, 8.17.0013.4052 (English), 8/19/2014 22:14:54, 338776 bytes
Driver: C:\Program Files\NVIDIA Corporation\NVSMI\nvml.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:58, 649160 bytes
Driver: C:\Program Files\NVIDIA Corporation\OpenCL\OpenCL.dll, 1.00.0000.0000 (English), 8/19/2014 22:15:22, 61912 bytes
Driver: C:\Program Files\NVIDIA Corporation\OpenCL\OpenCL64.dll, 1.00.0000.0000 (English), 8/19/2014 22:15:22, 75040 bytes
Driver: C:\Windows\system32\DRIVERS\nvlddmkm.sys, 9.18.0013.4052 (English), 8/19/2014 22:14:58, 12866008 bytes
Driver: C:\Windows\system32\NvFBC64.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:50, 903624 bytes
Driver: C:\Windows\system32\NvIFR64.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:56, 944928 bytes
Driver: C:\Windows\system32\nvapi64.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:00, 3196816 bytes
Driver: C:\Windows\system32\nvcompiler.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:04, 22994208 bytes
Driver: C:\Windows\system32\nvcuda.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:44, 13835208 bytes
Driver: C:\Windows\system32\nvcuvid.dll, 7.17.0013.4052 (English), 8/19/2014 22:14:46, 4247000 bytes
Driver: C:\Windows\system32\nvd3dumx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:48, 17555104 bytes
Driver: C:\Windows\system32\nvinfo.pb, 8/19/2014 22:14:56, 26353 bytes
Driver: C:\Windows\system32\nvinitx.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:56, 166568 bytes
Driver: C:\Windows\system32\nvoglshim64.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:58, 354016 bytes
Driver: C:\Windows\system32\nvoglv64.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:02, 31512520 bytes
Driver: C:\Windows\system32\nvopencl.dll, 8.17.0013.4052 (English), 8/19/2014 22:15:04, 13922752 bytes
Driver: C:\Windows\system32\nvumdshimx.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:08, 965312 bytes
Driver: C:\Windows\system32\nvwgf2umx.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:16, 18626304 bytes
Driver: C:\Windows\SysWow64\NvFBC.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:50, 869152 bytes
Driver: C:\Windows\SysWow64\NvIFR.dll, 6.14.0013.4052 (English), 8/19/2014 22:14:56, 907096 bytes
Driver: C:\Windows\SysWow64\nvapi.dll, 9.18.0013.4052 (English), 8/19/2014 22:13:58, 2814656 bytes
Driver: C:\Windows\SysWow64\nvcompiler.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:06, 15294296 bytes
Driver: C:\Windows\SysWow64\nvcuda.dll, 8.17.0013.4052 (English), 8/19/2014 22:14:44, 11222048 bytes
Driver: C:\Windows\SysWow64\nvcuvid.dll, 7.17.0013.4052 (English), 8/19/2014 22:14:46, 3989960 bytes
Driver: C:\Windows\SysWow64\nvd3dum.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:48, 14498552 bytes
Driver: C:\Windows\SysWow64\nvinit.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:56, 146480 bytes
Driver: C:\Windows\SysWow64\nvoglshim32.dll, 9.18.0013.4052 (English), 8/19/2014 22:14:58, 305600 bytes
Driver: C:\Windows\SysWow64\nvoglv32.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:00, 24196896 bytes
Driver: C:\Windows\SysWow64\nvopencl.dll, 8.17.0013.4052 (English), 8/19/2014 22:15:04, 11283344 bytes
Driver: C:\Windows\SysWow64\nvumdshim.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:08, 846832 bytes
Driver: C:\Windows\SysWow64\nvwgf2um.dll, 9.18.0013.4052 (English), 8/19/2014 22:15:14, 16122344 bytes
Driver: C:\Windows\system32\nvdispco6434052.dll, 2.00.0040.0004 (English), 8/19/2014 22:14:50, 1890080 bytes
Driver: C:\Windows\system32\nvdispgenco6434052.dll, 2.00.0019.0002 (English), 8/19/2014 22:14:50, 1539928 bytes
Name: Intel(R) processor DMI - D131
Device ID: PCI\VEN_8086&DEV_D131&SUBSYS_83831043&REV_11\3&11583659&0&00
Driver: n/a
Name: Intel(R) 5 Series/3400 Series Chipset Family USB Enhanced Host Controller - 3B34
Device ID: PCI\VEN_8086&DEV_3B34&SUBSYS_83831043&REV_06\3&11583659&0&E8
Driver: C:\Windows\system32\drivers\usbehci.sys, 6.01.7601.18328 (English), 11/27/2013 02:41:11, 53248 bytes
Driver: C:\Windows\system32\drivers\usbport.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:11, 325120 bytes
Driver: C:\Windows\system32\drivers\usbhub.sys, 6.01.7601.18328 (German), 11/27/2013 02:41:37, 343040 bytes
Name: High Definition Audio-Controller
Device ID: PCI\VEN_10DE&DEV_0BEB&SUBSYS_040110B0&REV_A1\4&113C73B2&0&0118
Driver: C:\Windows\system32\DRIVERS\hdaudbus.sys, 6.01.7601.17514 (German), 11/20/2010 11:43:43, 122368 bytes
Name: Intel(R) processor Miscellaneous Registers - D158
Device ID: PCI\VEN_8086&DEV_D158&SUBSYS_00000000&REV_11\3&11583659&0&43
Driver: n/a
Name: Intel(R) Management Engine Interface
Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_83831043&REV_06\3&11583659&0&B0
Driver: C:\Windows\system32\DRIVERS\HECIx64.sys, 6.00.0000.1179 (English), 9/17/2009 12:54:54, 56344 bytes
Name: Intel(R) 5 Series/3400 Series Chipset Family SMBus Controller - 3B30
Device ID: PCI\VEN_8086&DEV_3B30&SUBSYS_83831043&REV_06\3&11583659&0&FB
Driver: n/a
Name: Intel(R) processor System Control and Status Registers - D157
Device ID: PCI\VEN_8086&DEV_D157&SUBSYS_00000000&REV_11\3&11583659&0&42
Driver: n/a
Name: High Definition Audio-Controller
Device ID: PCI\VEN_8086&DEV_3B56&SUBSYS_84151043&REV_06\3&11583659&0&D8
Driver: C:\Windows\system32\DRIVERS\hdaudbus.sys, 6.01.7601.17514 (German), 11/20/2010 11:43:43, 122368 bytes
Name: Intel(R) 5 Series/3400 Series Chipset Family 2 port Serial ATA Storage Controller - 3B26
Device ID: PCI\VEN_8086&DEV_3B26&SUBSYS_83831043&REV_06\3&11583659&0&FD
Driver: C:\Windows\system32\DRIVERS\pciide.sys, 6.01.7600.16385 (English), 7/14/2009 02:45:45, 12352 bytes
Driver: C:\Windows\system32\DRIVERS\pciidex.sys, 6.01.7600.16385 (German), 7/14/2009 02:45:46, 48720 bytes
Driver: C:\Windows\system32\DRIVERS\atapi.sys, 6.01.7600.16385 (English), 7/14/2009 02:52:21, 24128 bytes
Driver: C:\Windows\system32\DRIVERS\ataport.sys, 6.01.7601.18231 (German), 8/5/2013 03:25:45, 155584 bytes
Name: Intel(R) processor Semaphore and Scratchpad Registers - D156
Device ID: PCI\VEN_8086&DEV_D156&SUBSYS_00000000&REV_11\3&11583659&0&41
Driver: n/a
Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 6 - 3B4C
Device ID: PCI\VEN_8086&DEV_3B4C&SUBSYS_83831043&REV_06\3&11583659&0&E5
Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes
Name: Intel(R) 5 Series/3400 Series Chipset Family 4 port Serial ATA Storage Controller - 3B20
Device ID: PCI\VEN_8086&DEV_3B20&SUBSYS_83831043&REV_06\3&11583659&0&FA
Driver: C:\Windows\system32\DRIVERS\pciide.sys, 6.01.7600.16385 (English), 7/14/2009 02:45:45, 12352 bytes
Driver: C:\Windows\system32\DRIVERS\pciidex.sys, 6.01.7600.16385 (German), 7/14/2009 02:45:46, 48720 bytes
Driver: C:\Windows\system32\DRIVERS\atapi.sys, 6.01.7600.16385 (English), 7/14/2009 02:52:21, 24128 bytes
Driver: C:\Windows\system32\DRIVERS\ataport.sys, 6.01.7601.18231 (German), 8/5/2013 03:25:45, 155584 bytes
Name: Intel(R) processor System Management Registers - D155
Device ID: PCI\VEN_8086&DEV_D155&SUBSYS_00000000&REV_11\3&11583659&0&40
Driver: n/a
Name: Intel(R) 5 Series/3400 Series Chipset Family PCI Express Root Port 5 - 3B4A
Device ID: PCI\VEN_8086&DEV_3B4A&SUBSYS_83831043&REV_06\3&11583659&0&E4
Driver: C:\Windows\system32\DRIVERS\pci.sys, 6.01.7601.17514 (German), 11/20/2010 14:33:48, 184704 bytes
Name: Intel(R) H55 Express Chipset LPC Interface Controller - 3B06
Device ID: PCI\VEN_8086&DEV_3B06&SUBSYS_83831043&REV_06\3&11583659&0&F8
Driver: C:\Windows\system32\DRIVERS\msisadrv.sys, 6.01.7600.16385 (English), 7/14/2009 02:48:27, 15424 bytes
------------------
DirectShow Filters
------------------
DirectShow Filters:
WMAudio Decoder DMO,0x00800800,1,1,WMADMOD.DLL,6.01.7601.17514
WMAPro over S/PDIF DMO,0x00600800,1,1,WMADMOD.DLL,6.01.7601.17514
WMSpeech Decoder DMO,0x00600800,1,1,WMSPDMOD.DLL,6.01.7601.17514
MP3 Decoder DMO,0x00600800,1,1,mp3dmod.dll,6.01.7600.16385
Mpeg4s Decoder DMO,0x00800001,1,1,mp4sdecd.dll,6.01.7600.16385
WMV Screen decoder DMO,0x00600800,1,1,wmvsdecd.dll,6.01.7601.17514
WMVideo Decoder DMO,0x00800001,1,1,wmvdecod.dll,6.01.7601.18221
Mpeg43 Decoder DMO,0x00800001,1,1,mp43decd.dll,6.01.7600.16385
Mpeg4 Decoder DMO,0x00800001,1,1,mpg4decd.dll,6.01.7600.16385
DV Muxer,0x00400000,0,0,qdv.dll,6.06.7601.17514
Color Space Converter,0x00400001,1,1,quartz.dll,6.06.7601.18526
WM ASF Reader,0x00400000,0,0,qasf.dll,12.00.7601.17514
Screen Capture filter,0x00200000,0,1,wmpsrcwp.dll,12.00.7601.17514
AVI Splitter,0x00600000,1,1,quartz.dll,6.06.7601.18526
VGA 16 Color Ditherer,0x00400000,1,1,quartz.dll,6.06.7601.18526
SBE2MediaTypeProfile,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft DTV-DVD Video Decoder,0x005fffff,2,4,msmpeg2vdec.dll,12.00.9200.17037
AC3 Parser Filter,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
StreamBufferSink,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft TV Captions Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
MJPEG Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.18526
CBVA DMO wrapper filter,0x00200000,1,1,cbva.dll,6.01.7601.17514
MPEG-I Stream Splitter,0x00600000,1,2,quartz.dll,6.06.7601.18526
SAMI (CC) Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514
MPEG-2 Splitter,0x005fffff,1,0,mpg2splt.ax,6.06.7601.17528
Closed Captions Analysis Filter,0x00200000,2,5,cca.dll,6.06.7601.17514
SBE2FileScan,0x00200000,0,0,sbe.dll,6.06.7601.17528
Microsoft MPEG-2 Video Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
Internal Script Command Renderer,0x00800001,1,0,quartz.dll,6.06.7601.18526
MPEG Audio Decoder,0x03680001,1,1,quartz.dll,6.06.7601.18526
DV Splitter,0x00600000,1,2,qdv.dll,6.06.7601.17514
Video Mixing Renderer 9,0x00200000,1,0,quartz.dll,6.06.7601.18526
Microsoft MPEG-2 Encoder,0x00200000,2,1,msmpeg2enc.dll,6.01.7601.17514
ACM Wrapper,0x00600000,1,1,quartz.dll,6.06.7601.18526
Video Renderer,0x00800001,1,0,quartz.dll,6.06.7601.18526
MPEG-2 Video Stream Analyzer,0x00200000,0,0,sbe.dll,6.06.7601.17528
Line 21 Decoder,0x00600000,1,1,,
Video Port Manager,0x00600000,2,1,quartz.dll,6.06.7601.18526
Video Renderer,0x00400000,1,0,quartz.dll,6.06.7601.18526
VPS Decoder,0x00200000,0,0,WSTPager.ax,6.06.7601.17514
WM ASF Writer,0x00400000,0,0,qasf.dll,12.00.7601.17514
VBI Surface Allocator,0x00600000,1,1,vbisurf.ax,6.01.7601.17514
File writer,0x00200000,1,0,qcap.dll,6.06.7601.17514
iTV Data Sink,0x00600000,1,0,itvdata.dll,6.06.7601.17514
iTV Data Capture filter,0x00600000,1,1,itvdata.dll,6.06.7601.17514
DVD Navigator,0x00200000,0,3,qdvd.dll,6.06.7601.18611
Microsoft TV Subtitles Decoder,0x00200001,1,0,MSTVCapn.dll,6.01.7601.17715
Overlay Mixer2,0x00200000,1,1,,
RDP DShow Redirection Filter,0xffffffff,1,0,DShowRdpFilter.dll,
Microsoft MPEG-2 Audio Encoder,0x00200000,1,1,msmpeg2enc.dll,6.01.7601.17514
WST Pager,0x00200000,1,1,WSTPager.ax,6.06.7601.17514
MPEG-2 Demultiplexer,0x00600000,1,1,mpg2splt.ax,6.06.7601.17528
DV Video Decoder,0x00800000,1,1,qdv.dll,6.06.7601.17514
SampleGrabber,0x00200000,1,1,qedit.dll,6.06.7601.18501
Null Renderer,0x00200000,1,0,qedit.dll,6.06.7601.18501
MPEG-2 Sections and Tables,0x005fffff,1,0,Mpeg2Data.ax,6.06.7601.17514
Microsoft AC3 Encoder,0x00200000,1,1,msac3enc.dll,6.01.7601.17514
StreamBufferSource,0x00200000,0,0,sbe.dll,6.06.7601.17528
Smart Tee,0x00200000,1,2,qcap.dll,6.06.7601.17514
Overlay Mixer,0x00200000,0,0,,
AVI Decompressor,0x00600000,1,1,quartz.dll,6.06.7601.18526
NetBridge,0x00200000,2,0,netbridge.dll,6.01.7601.17514
AVI/WAV File Source,0x00400000,0,2,quartz.dll,6.06.7601.18526
Wave Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
MIDI Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
Multi-file Parser,0x00400000,1,1,quartz.dll,6.06.7601.18526
File stream renderer,0x00400000,1,1,quartz.dll,6.06.7601.18526
Microsoft DTV-DVD Audio Decoder,0x005fffff,1,1,msmpeg2adec.dll,6.01.7140.0000
StreamBufferSink2,0x00200000,0,0,sbe.dll,6.06.7601.17528
AVI Mux,0x00200000,1,0,qcap.dll,6.06.7601.17514
Line 21 Decoder 2,0x00600002,1,1,quartz.dll,6.06.7601.18526
File Source (Async.),0x00400000,0,1,quartz.dll,6.06.7601.18526
File Source (URL),0x00400000,0,1,quartz.dll,6.06.7601.18526
Media Center Extender Encryption Filter,0x00200000,2,2,Mcx2Filter.dll,6.01.7601.17514
AudioRecorder WAV Dest,0x00200000,0,0,WavDest.dll,
AudioRecorder Wave Form,0x00200000,0,0,WavDest.dll,
SoundRecorder Null Renderer,0x00200000,0,0,WavDest.dll,
Infinite Pin Tee Filter,0x00200000,1,1,qcap.dll,6.06.7601.17514
Enhanced Video Renderer,0x00200000,1,0,evr.dll,6.01.7601.18526
BDA MPEG2 Transport Information Filter,0x00200000,2,0,psisrndr.ax,6.06.7601.17669
MPEG Video Decoder,0x40000001,1,1,quartz.dll,6.06.7601.18526
WDM Streaming Tee/Splitter Devices:
Tee/Sink-to-Sink-Konvertierung,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
Video Compressors:
WMVideo8 Encoder DMO,0x00600800,1,1,wmvxencd.dll,6.01.7600.16385
WMVideo9 Encoder DMO,0x00600800,1,1,wmvencod.dll,6.01.7600.16385
MSScreen 9 encoder DMO,0x00600800,1,1,wmvsencd.dll,6.01.7600.16385
DV Video Encoder,0x00200000,0,0,qdv.dll,6.06.7601.17514
MJPEG Compressor,0x00200000,0,0,quartz.dll,6.06.7601.18526
Audio Compressors:
WM Speech Encoder DMO,0x00600800,1,1,WMSPDMOE.DLL,6.01.7600.16385
WMAudio Encoder DMO,0x00600800,1,1,WMADMOE.DLL,6.01.7600.16385
IMA ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.18526
PCM,0x00200000,1,1,quartz.dll,6.06.7601.18526
Microsoft ADPCM,0x00200000,1,1,quartz.dll,6.06.7601.18526
GSM 6.10,0x00200000,1,1,quartz.dll,6.06.7601.18526
CCITT A-Law,0x00200000,1,1,quartz.dll,6.06.7601.18526
CCITT u-Law,0x00200000,1,1,quartz.dll,6.06.7601.18526
MPEG Layer-3,0x00200000,1,1,quartz.dll,6.06.7601.18526
Audio Capture Sources:
Stereomix (VIA High Definition ,0x00200000,0,0,qcap.dll,6.06.7601.17514
PBDA CP Filters:
PBDA DTFilter,0x00600000,1,1,CPFilters.dll,6.06.7601.17528
PBDA ETFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528
PBDA PTFilter,0x00200000,0,0,CPFilters.dll,6.06.7601.17528
Midi Renderers:
Default MidiOut Device,0x00800000,1,0,quartz.dll,6.06.7601.18526
Microsoft GS Wavetable Synth,0x00200000,1,0,quartz.dll,6.06.7601.18526
WDM Streaming Capture Devices:
VIA HD Audio Input,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
WDM Streaming Rendering Devices:
HD Audio HDMI out,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
VIA HD Audio Output,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
BDA Network Providers:
Microsoft ATSC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBC Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBS Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft DVBT Network Provider,0x00200000,0,1,MSDvbNP.ax,6.06.7601.17514
Microsoft Network Provider,0x00200000,0,1,MSNP.ax,6.06.7601.17514
Multi-Instance Capable VBI Codecs:
VBI Codec,0x00600000,1,4,VBICodec.ax,6.06.7601.17514
BDA Transport Information Renderers:
BDA MPEG2 Transport Information Filter,0x00600000,2,0,psisrndr.ax,6.06.7601.17669
MPEG-2 Sections and Tables,0x00600000,1,0,Mpeg2Data.ax,6.06.7601.17514
BDA CP/CA Filters:
Decrypt/Tag,0x00600000,1,1,EncDec.dll,6.06.7601.17708
Encrypt/Tag,0x00200000,0,0,EncDec.dll,6.06.7601.17708
PTFilter,0x00200000,0,0,EncDec.dll,6.06.7601.17708
XDS Codec,0x00200000,0,0,EncDec.dll,6.06.7601.17708
WDM Streaming Communication Transforms:
Tee/Sink-to-Sink-Konvertierung,0x00200000,1,1,ksproxy.ax,6.01.7601.17514
Audio Renderers:
Lautsprecher (VIA High Definiti,0x00200000,1,0,quartz.dll,6.06.7601.18526
Default DirectSound Device,0x00800000,1,0,quartz.dll,6.06.7601.18526
Default WaveOut Device,0x00200000,1,0,quartz.dll,6.06.7601.18526
DirectSound: HD Audio HDMI out (VIA High Definition Audio),0x00200000,1,0,quartz.dll,6.06.7601.18526
DirectSound: Lautsprecher (VIA High Definition Audio),0x00200000,1,0,quartz.dll,6.06.7601.18526
HD Audio HDMI out (VIA High Def,0x00200000,1,0,quartz.dll,6.06.7601.18526
---------------
EVR Power Information
---------------
Current Setting: {5C67A112-A4C9-483F-B4A7-1D473BECAFDC} (Quality)
Quality Flags: 2576
Enabled:
Force throttling
Allow half deinterlace
Allow scaling
Decode Power Usage: 100
Balanced Flags: 1424
Enabled:
Force throttling
Allow batching
Force half deinterlace
Force scaling
Decode Power Usage: 50
PowerFlags: 1424
Enabled:
Force throttling
Allow batching
Force half deinterlace
Force scaling
Decode Power Usage: 0
|
|
29.01.2015, 21:37
| #2 |
| /// Malwareteam   | Windows Updates und Grafikkartentreiber Update nicht möglich Hi.
__________________Bitte als Admin ausfuehren... Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
29.01.2015, 21:43
| #3 |
| | Windows Updates und Grafikkartentreiber Update nicht möglich Grüß dich!
__________________FRST: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-01-2015
Ran by pc (administrator) on PC-PC on 29-01-2015 21:40:12
Running from C:\Users\pc\Downloads
Loaded Profiles: pc (Available profiles: pc)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanNetService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Gainward Co.) C:\Program Files (x86)\EXPERTool\TBPANEL.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(FileHippo.com) C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\spotify.exe
(Spotify Ltd) C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(GoPro) C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Dropbox, Inc.) C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2770432 2010-02-10] (VIA)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [AVMWlanClient] => C:\Program Files (x86)\avmwlanstick\wlangui.exe [2105344 2010-10-22] (AVM Berlin)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2015-01-27] (AVAST Software)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GAINWARD] => C:\Program Files (x86)\EXPERTool\TBPanel.exe [2181744 2010-10-22] (Gainward Co.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Pando Media Booster] => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3046808 2011-02-07] ()
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Wisdom-soft AutoScreenRecorder 3.1 Pro] => 0
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [784904 2014-10-14] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [FileHippo.com] => C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [GoogleChromeAutoLaunch_17E89F440D584F67E92EAD2E51C3A3A4] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344 2014-10-22] (Google Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1080104 2014-08-04] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-10-17] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-10-20] (Apple Inc.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify] => C:\Users\pc\AppData\Roaming\Spotify\Spotify.exe [6737976 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Run: [Spotify Web Helper] => C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-28] (Spotify Ltd)
HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GoPro Importer.lnk
ShortcutTarget: GoPro Importer.lnk -> C:\Program Files (x86)\GoPro\Tools\Importer\GoPro Importer.exe (GoPro)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\avast! Free Antivirus (2).lnk
ShortcutTarget: avast! Free Antivirus (2).lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software)
Startup: C:\Users\pc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-648632289-941596113-564908001-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
DPF: HKLM-x32 {140E4DF8-9E14-4A34-9577-C77561ED7883} hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.72.0.cab
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} hxxp://quickscan.bitdefender.com/qsax/qsax.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\pc\AppData\Roaming\Mozilla\Firefox\Profiles\ahit0ekq.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.4.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.4.0\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101714.dll No File
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKU\S-1-5-21-648632289-941596113-564908001-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-10-28]
Chrome:
=======
CHR Profile: C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-01-20]
CHR Extension: (Google Drive) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-04]
CHR Extension: (YouTube) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-20]
CHR Extension: (Google-Suche) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-20]
CHR Extension: (HTTPS Everywhere) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2013-01-20]
CHR Extension: (AdBlock) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-01-20]
CHR Extension: (Ghostery) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2013-01-20]
CHR Extension: (Google Wallet) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-04]
CHR Extension: (Google Mail) - C:\Users\pc\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-20]
CHR HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-02]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-02] (AVAST Software)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-02] (Avast Software)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [376832 2010-10-22] (AVM Berlin) [File not signed]
S4 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-11-15] ()
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [253776 2013-03-06] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [174600 2014-10-14] (Sandboxie Holdings, LLC)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1328736 2012-09-24] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [656480 2012-09-24] (Secunia)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-02] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-25] (AVM Berlin)
R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [714368 2010-10-25] (AVM GmbH)
S3 HTCAND64; C:\Windows\System32\Drivers\ANDROIDUSB.sys [33736 2009-11-01] (HTC, Corporation) [File not signed]
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-10-14] (Sandboxie Holdings, LLC)
S3 TBPanel; No ImagePath
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-02] (Avast Software)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 RTL8192cu; system32\DRIVERS\rtwlanu.sys [X]
S3 rtlss; System32\Drivers\rtlss.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2051-01-27 18:38 - 2012-06-10 14:25 - 00000000 ____D () C:\Users\pc\AppData\Roaming\QuickScan
2051-01-27 18:33 - 2051-01-27 18:33 - 00809541 _____ () C:\Users\pc\AppData\Local\census.cache
2051-01-27 18:32 - 2051-01-27 18:32 - 00097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:24 - 2051-01-27 18:24 - 00000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2015-01-29 21:40 - 2015-01-29 21:40 - 00021238 _____ () C:\Users\pc\Downloads\FRST.txt
2015-01-29 21:38 - 2015-01-29 21:39 - 02130432 _____ (Farbar) C:\Users\pc\Downloads\FRST64.exe
2015-01-29 21:10 - 2015-01-29 21:10 - 256100365 _____ () C:\Users\pc\Downloads\Nicht bestätigt 188573.crdownload
2015-01-29 13:17 - 2015-01-29 16:08 - 00489918 _____ () C:\Users\pc\Desktop\AKTUELLECtrees20150129.xlsx
2015-01-29 13:14 - 2015-01-29 13:14 - 00480115 _____ () C:\Users\pc\Downloads\ECtrees20150129.xlsx
2015-01-27 14:07 - 2015-01-27 14:26 - 00493251 _____ () C:\Users\pc\Desktop\ECtrees20150126_bearbeitet_blaetter.xlsx
2015-01-27 12:54 - 2015-01-27 12:54 - 00487357 _____ () C:\Users\pc\Desktop\ECtrees20150126.xlsx
2015-01-26 20:58 - 2015-01-26 20:58 - 00000197 _____ () C:\Windows\system32\2015-01-26-19-58-12.097-AvastVBoxSVC.exe-3428.log
2015-01-26 13:08 - 2015-01-26 13:08 - 00000197 _____ () C:\Windows\system32\2015-01-26-12-08-05.044-AvastVBoxSVC.exe-3080.log
2015-01-26 11:09 - 2015-01-26 11:09 - 00000197 _____ () C:\Windows\system32\2015-01-26-10-09-15.027-AvastVBoxSVC.exe-3716.log
2015-01-25 15:20 - 2015-01-25 15:20 - 00000197 _____ () C:\Windows\system32\2015-01-25-14-20-45.089-AvastVBoxSVC.exe-4120.log
2015-01-25 11:26 - 2015-01-25 11:26 - 00000197 _____ () C:\Windows\system32\2015-01-25-10-26-02.084-AvastVBoxSVC.exe-5928.log
2015-01-24 22:24 - 2015-01-24 22:24 - 00000197 _____ () C:\Windows\system32\2015-01-24-21-24-40.077-AvastVBoxSVC.exe-3368.log
2015-01-22 18:10 - 2015-01-22 18:10 - 00000197 _____ () C:\Windows\system32\2015-01-22-17-10-21.047-AvastVBoxSVC.exe-3016.log
2015-01-21 21:05 - 2015-01-21 21:05 - 00000197 _____ () C:\Windows\system32\2015-01-21-20-05-34.073-AvastVBoxSVC.exe-2720.log
2015-01-21 18:42 - 2015-01-21 18:42 - 00000197 _____ () C:\Windows\system32\2015-01-21-17-42-31.095-AvastVBoxSVC.exe-5504.log
2015-01-21 11:02 - 2015-01-21 11:02 - 00000197 _____ () C:\Windows\system32\2015-01-21-10-02-47.015-AvastVBoxSVC.exe-4356.log
2015-01-20 20:13 - 2015-01-20 20:13 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123 (1).msi
2015-01-20 20:06 - 2015-01-20 20:07 - 00985600 _____ () C:\Users\pc\Downloads\MicrosoftFixit50123.msi
2015-01-20 19:57 - 2015-01-20 19:57 - 00000197 _____ () C:\Windows\system32\2015-01-20-18-57-01.011-AvastVBoxSVC.exe-1644.log
2015-01-20 19:49 - 2015-01-20 19:49 - 00863476 _____ (IDG Magazine Media GmbH ) C:\Users\pc\Downloads\pcwFixWindowsUpdate.exe
2015-01-20 17:58 - 2015-01-20 17:59 - 00000197 _____ () C:\Windows\system32\2015-01-20-16-58-57.020-AvastVBoxSVC.exe-3880.log
2015-01-20 13:22 - 2015-01-20 13:22 - 00000197 _____ () C:\Windows\system32\2015-01-20-12-22-30.032-AvastVBoxSVC.exe-3656.log
2015-01-19 10:38 - 2015-01-19 10:38 - 00000197 _____ () C:\Windows\system32\2015-01-19-09-38-16.001-AvastVBoxSVC.exe-3840.log
2015-01-18 21:52 - 2015-01-18 21:52 - 00000197 _____ () C:\Windows\system32\2015-01-18-20-52-07.005-AvastVBoxSVC.exe-3940.log
2015-01-18 18:03 - 2015-01-18 18:04 - 00000197 _____ () C:\Windows\system32\2015-01-18-17-03-54.088-AvastVBoxSVC.exe-5408.log
2015-01-18 11:40 - 2015-01-18 11:40 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-40-33.035-AvastVBoxSVC.exe-4308.log
2015-01-18 11:25 - 2015-01-18 11:25 - 00000000 ____D () C:\Windows\Sun
2015-01-18 11:23 - 2015-01-18 11:23 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-18 11:22 - 2015-01-18 11:22 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-18 11:21 - 2015-01-18 11:21 - 00638888 _____ (Oracle Corporation) C:\Users\pc\Downloads\chromeinstall-8u25.exe
2015-01-18 11:17 - 2015-01-18 11:19 - 307606328 _____ (NVIDIA Corporation) C:\Users\pc\Downloads\347.09-desktop-win8-win7-winvista-64bit-international-whql (1).exe
2015-01-18 11:11 - 2015-01-18 11:12 - 00000197 _____ () C:\Windows\system32\2015-01-18-10-11-58.005-AvastVBoxSVC.exe-4864.log
2015-01-17 20:47 - 2015-01-17 20:47 - 00000197 _____ () C:\Windows\system32\2015-01-17-19-47-01.070-AvastVBoxSVC.exe-2592.log
2015-01-17 15:05 - 2015-01-17 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-17-14-05-45.035-AvastVBoxSVC.exe-3448.log
2015-01-17 13:18 - 2015-01-17 13:18 - 00000197 _____ () C:\Windows\system32\2015-01-17-12-18-13.061-AvastVBoxSVC.exe-500.log
2015-01-17 11:17 - 2015-01-17 11:17 - 00000197 _____ () C:\Windows\system32\2015-01-17-10-17-25.011-AvastVBoxSVC.exe-5132.log
2015-01-16 19:06 - 2015-01-16 19:06 - 00000197 _____ () C:\Windows\system32\2015-01-16-18-06-44.035-AvastVBoxSVC.exe-5152.log
2015-01-16 10:10 - 2015-01-16 10:10 - 00000197 _____ () C:\Windows\system32\2015-01-16-09-10-32.006-AvastVBoxSVC.exe-3448.log
2015-01-15 17:28 - 2015-01-15 17:28 - 00000197 _____ () C:\Windows\system32\2015-01-15-16-28-16.079-AvastVBoxSVC.exe-5424.log
2015-01-15 10:25 - 2015-01-15 10:25 - 00000197 _____ () C:\Windows\system32\2015-01-15-09-25-13.069-AvastVBoxSVC.exe-4084.log
2015-01-14 13:53 - 2015-01-14 13:54 - 00000197 _____ () C:\Windows\system32\2015-01-14-12-53-38.078-AvastVBoxSVC.exe-3856.log
2015-01-14 10:18 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 10:18 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 10:18 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 10:18 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 10:18 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 10:18 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 10:18 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 10:18 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 10:18 - 2014-12-11 18:47 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 10:18 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 10:18 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-14 10:05 - 2015-01-14 10:05 - 00000197 _____ () C:\Windows\system32\2015-01-14-09-05-41.074-AvastVBoxSVC.exe-3720.log
2015-01-13 18:09 - 2015-01-13 18:09 - 00000197 _____ () C:\Windows\system32\2015-01-13-17-09-39.054-AvastVBoxSVC.exe-5088.log
2015-01-13 15:09 - 2015-01-13 15:10 - 00000197 _____ () C:\Windows\system32\2015-01-13-14-09-48.037-AvastVBoxSVC.exe-5052.log
2015-01-13 10:49 - 2015-01-13 10:49 - 00000197 _____ () C:\Windows\system32\2015-01-13-09-49-33.076-AvastVBoxSVC.exe-5612.log
2015-01-12 22:43 - 2015-01-12 22:44 - 00000197 _____ () C:\Windows\system32\2015-01-12-21-43-53.085-AvastVBoxSVC.exe-5084.log
2015-01-12 16:51 - 2015-01-12 16:51 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-51-07.055-AvastVBoxSVC.exe-3612.log
2015-01-12 16:01 - 2015-01-12 16:01 - 00000197 _____ () C:\Windows\system32\2015-01-12-15-01-15.091-AvastVBoxSVC.exe-3828.log
2015-01-12 12:06 - 2015-01-12 12:06 - 00000197 _____ () C:\Windows\system32\2015-01-12-11-06-06.081-AvastVBoxSVC.exe-3920.log
2015-01-11 17:34 - 2015-01-11 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-11-16-34-32.091-AvastVBoxSVC.exe-5092.log
2015-01-11 10:32 - 2015-01-11 10:32 - 00000197 _____ () C:\Windows\system32\2015-01-11-09-32-25.034-AvastVBoxSVC.exe-4144.log
2015-01-10 15:04 - 2015-01-10 15:05 - 00000197 _____ () C:\Windows\system32\2015-01-10-14-04-50.060-AvastVBoxSVC.exe-3108.log
2015-01-10 09:41 - 2015-01-10 09:42 - 00000197 _____ () C:\Windows\system32\2015-01-10-08-41-27.032-AvastVBoxSVC.exe-3252.log
2015-01-09 14:04 - 2015-01-09 14:04 - 00000197 _____ () C:\Windows\system32\2015-01-09-13-04-00.070-AvastVBoxSVC.exe-3864.log
2015-01-09 10:08 - 2015-01-09 10:08 - 00000197 _____ () C:\Windows\system32\2015-01-09-09-08-40.086-AvastVBoxSVC.exe-5532.log
2015-01-08 17:34 - 2015-01-08 17:34 - 00000197 _____ () C:\Windows\system32\2015-01-08-16-34-36.098-AvastVBoxSVC.exe-5968.log
2015-01-08 16:00 - 2015-01-08 16:00 - 00000197 _____ () C:\Windows\system32\2015-01-08-15-00-34.077-AvastVBoxSVC.exe-3712.log
2015-01-08 11:34 - 2015-01-08 11:35 - 00000197 _____ () C:\Windows\system32\2015-01-08-10-34-47.001-AvastVBoxSVC.exe-5620.log
2015-01-07 21:26 - 2015-01-08 18:47 - 00000000 ____D () C:\Users\pc\Documents\Bewerbungen
2015-01-07 20:32 - 2015-01-07 20:32 - 00000197 _____ () C:\Windows\system32\2015-01-07-19-32-21.099-AvastVBoxSVC.exe-3312.log
2015-01-06 13:56 - 2015-01-06 13:56 - 00000197 _____ () C:\Windows\system32\2015-01-06-12-56-05.001-AvastVBoxSVC.exe-3500.log
2015-01-06 10:34 - 2015-01-06 10:34 - 00000197 _____ () C:\Windows\system32\2015-01-06-09-34-33.042-AvastVBoxSVC.exe-3300.log
2015-01-05 14:43 - 2015-01-05 14:43 - 00000197 _____ () C:\Windows\system32\2015-01-05-13-43-51.053-AvastVBoxSVC.exe-5748.log
2015-01-04 15:46 - 2015-01-04 15:46 - 00000197 _____ () C:\Windows\system32\2015-01-04-14-46-26.047-AvastVBoxSVC.exe-5472.log
2015-01-04 12:34 - 2015-01-04 12:34 - 00000197 _____ () C:\Windows\system32\2015-01-04-11-34-42.025-AvastVBoxSVC.exe-3868.log
2015-01-03 10:50 - 2015-01-03 10:50 - 00000197 _____ () C:\Windows\system32\2015-01-03-09-50-53.046-AvastVBoxSVC.exe-3652.log
2015-01-02 10:44 - 2015-01-02 10:45 - 00000197 _____ () C:\Windows\system32\2015-01-02-09-44-49.098-AvastVBoxSVC.exe-3236.log
2015-01-01 11:24 - 2015-01-01 11:25 - 00000197 _____ () C:\Windows\system32\2015-01-01-10-24-54.071-AvastVBoxSVC.exe-3872.log
2014-12-31 14:16 - 2014-12-31 14:17 - 00000197 _____ () C:\Windows\system32\2014-12-31-13-16-35.095-AvastVBoxSVC.exe-3860.log
2014-12-31 00:31 - 2014-12-31 00:31 - 00000197 _____ () C:\Windows\system32\2014-12-30-23-31-20.011-AvastVBoxSVC.exe-4312.log
2014-12-30 20:57 - 2014-12-30 20:57 - 00000197 _____ () C:\Windows\system32\2014-12-30-19-57-28.038-AvastVBoxSVC.exe-3556.log
2014-12-30 18:19 - 2014-12-30 18:19 - 00000197 _____ () C:\Windows\system32\2014-12-30-17-19-54.009-AvastVBoxSVC.exe-3880.log
2014-12-30 12:48 - 2014-12-30 12:48 - 00000000 ____D () C:\NVIDIA
2014-12-30 12:34 - 2014-12-30 12:47 - 307606328 _____ (NVIDIA Corporation) C:\Users\pc\Downloads\347.09-desktop-win8-win7-winvista-64bit-international-whql.exe
2014-12-30 10:46 - 2014-12-30 10:46 - 00000197 _____ () C:\Windows\system32\2014-12-30-09-46-50.033-AvastVBoxSVC.exe-3672.log
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-29 21:41 - 2013-01-17 20:32 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-29 21:41 - 2011-02-07 23:44 - 00000000 ____D () C:\Users\pc\AppData\Local\PMB Files
2015-01-29 21:40 - 2013-10-24 08:11 - 00000000 ____D () C:\FRST
2015-01-29 21:29 - 2010-12-20 16:37 - 01771959 _____ () C:\Windows\WindowsUpdate.log
2015-01-29 20:47 - 2013-01-20 18:04 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-29 19:53 - 2014-12-28 19:33 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Spotify
2015-01-29 18:49 - 2013-01-20 18:15 - 00003542 _____ () C:\Windows\Sandboxie.ini
2015-01-29 18:47 - 2013-01-20 18:04 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-29 11:39 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-29 11:39 - 2009-07-14 05:45 - 00023344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-29 11:36 - 2012-11-07 18:28 - 00000000 ___RD () C:\Users\pc\Dropbox
2015-01-29 11:35 - 2012-11-07 18:21 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Dropbox
2015-01-29 11:34 - 2014-09-19 18:00 - 00000000 ___RD () C:\Users\pc\iCloudDrive
2015-01-29 11:34 - 2009-07-14 05:51 - 02168092 _____ () C:\Windows\setupact.log
2015-01-29 11:33 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-29 11:32 - 2010-12-20 18:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-27 22:21 - 2010-12-30 14:39 - 00000000 ____D () C:\Users\pc\AppData\Roaming\Skype
2015-01-27 11:46 - 2013-11-12 23:24 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-26 20:58 - 2014-12-28 19:35 - 00000000 ____D () C:\Users\pc\AppData\Local\Spotify
2015-01-26 14:15 - 2013-12-04 23:47 - 00000000 ____D () C:\Users\pc\AppData\Roaming\vlc
2015-01-25 15:37 - 2014-03-07 11:01 - 00000000 ____D () C:\Users\pc\Documents\Masterarbeit
2015-01-24 23:41 - 2013-01-17 20:32 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-24 23:41 - 2013-01-17 20:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-24 23:41 - 2013-01-17 20:32 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-21 14:47 - 2013-10-21 13:13 - 00000000 ____D () C:\Users\pc\AppData\Local\Battle.net
2015-01-20 19:53 - 2011-01-01 14:29 - 01000124 _____ () C:\Windows\PFRO.log
2015-01-18 17:01 - 2009-07-14 18:58 - 00836678 _____ () C:\Windows\system32\perfh007.dat
2015-01-18 17:01 - 2009-07-14 18:58 - 00210186 _____ () C:\Windows\system32\perfc007.dat
2015-01-18 17:01 - 2009-07-14 06:13 - 00011936 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\ProgramData\TEMP
2015-01-18 11:35 - 2011-11-04 18:25 - 00000000 ____D () C:\Program Files (x86)\Fraps
2015-01-14 13:03 - 2013-08-15 23:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 12:55 - 2012-08-11 12:41 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-14 11:03 - 2012-05-14 16:20 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-01-14 10:17 - 2013-10-26 20:24 - 00000000 ____D () C:\Windows\system32\catroot2.old
2015-01-10 15:16 - 2011-07-02 22:59 - 00000000 ____D () C:\Program Files\KeePass
2015-01-06 04:36 - 2010-12-30 14:39 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-01-05 13:44 - 2010-12-20 16:41 - 00000000 ____D () C:\Users\pc
2015-01-04 16:44 - 2011-06-29 20:10 - 00000000 ____D () C:\Users\pc\AppData\Local\Paint.NET
2014-12-30 21:01 - 2011-05-15 12:15 - 00000000 ____D () C:\Users\pc\AppData\Roaming\dvdcss
==================== Files in the root of some directories =======
2011-11-04 18:25 - 2012-06-05 21:36 - 0175104 _____ () C:\Users\pc\AppData\Roaming\locked-pc3SQLite3.dll.jgdl
2013-01-13 18:56 - 2013-01-13 20:44 - 0010960 ___SH () C:\Users\pc\AppData\Local\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
2051-01-27 18:32 - 2051-01-27 18:32 - 0097995 _____ () C:\Users\pc\AppData\Local\ars.cache
2051-01-27 18:33 - 2051-01-27 18:33 - 0809541 _____ () C:\Users\pc\AppData\Local\census.cache
2012-04-22 17:46 - 2014-02-24 09:57 - 0009216 _____ () C:\Users\pc\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-02-08 02:07 - 2011-02-08 02:07 - 0000090 _____ () C:\Users\pc\AppData\Local\fusioncache.dat
2051-01-27 18:24 - 2051-01-27 18:24 - 0000036 _____ () C:\Users\pc\AppData\Local\housecall.guid.cache
2013-01-13 18:56 - 2013-01-13 20:44 - 0010960 ___SH () C:\ProgramData\1pb78m8n6he1l1565b3k36w7o7of8ksb88y53s63tpqg0vl
2010-12-30 14:42 - 2010-12-30 14:42 - 0000056 _____ () C:\ProgramData\ezsidmv.dat
Some content of TEMP:
====================
C:\Users\pc\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7m7t2_.dll
C:\Users\pc\AppData\Local\Temp\Quarantine.exe
C:\Users\pc\AppData\Local\Temp\SandboxieInstall.exe
C:\Users\pc\AppData\Local\Temp\SkypeSetup.exe
C:\Users\pc\AppData\Local\Temp\vcredist_x64.exe
C:\Users\pc\AppData\Local\Temp\vlc-2.1.3-win32.exe
C:\Users\pc\AppData\Local\Temp\vlc-2.1.5-win32.exe
C:\Users\pc\AppData\Local\Temp\Wildstar.exe
C:\Users\pc\AppData\Local\Temp\WindowsUpdateAgent30-x64.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-01-25 12:32
==================== End Of Log ============================
Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-01-2015
Ran by pc at 2015-01-29 21:41:33
Running from C:\Users\pc\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe After Effects CS5.5 (HKLM-x32\...\{E82097B9-A3B8-404A-9A92-AC16A8AC9576}) (Version: 10.5 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: - AVM Berlin)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.4.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software)
Call of Duty: Black Ops - Multiplayer (HKLM-x32\...\Steam App 42710) (Version: - Treyarch)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version: - Treyarch)
Call of Duty: Modern Warfare 2 - Multiplayer (HKLM-x32\...\Steam App 10190) (Version: - Infinity Ward)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version: - Infinity Ward)
Camtasia Studio 7 (HKLM-x32\...\{DE042823-C359-4B87-B66B-308057E8B6AF}) (Version: 7.0.1 - TechSmith Corporation)
CyberLink PowerDirector 11 (HKLM-x32\...\InstallShield_{551F492A-01B0-4DC4-866F-875EC4EDC0A8}) (Version: 11.0.0.4310 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: 1.0 - Bethesda Softworks)
Dropbox (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
EAX4 Unified Redist (HKLM-x32\...\{89661B04-C646-4412-B6D3-5E19F02F1F37}) (Version: 4.001 - Creative Labs)
EXPERTool 7.14 (HKLM-x32\...\MySSID_is1) (Version: - Gainward Co., Ltd)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version: - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
File Repair (HKLM-x32\...\File Repair_is1) (Version: - File Repair)
FileHippo.com Update Checker (HKLM-x32\...\FileHippo.com) (Version: - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free Video Flip and Rotate version 2.1.9.725 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.725 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.20.1230 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.20.1230 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.43.806 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.43.806 - DVDVideoSoft Ltd.)
GameMaker-Studio 1.2 (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\GameMaker-Studio12) (Version: - YoYo Games Ltd.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
GoPro Studio 2.5.4 (HKLM-x32\...\GoPro Studio) (Version: 2.5.4 - GoPro, Inc.)
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
Grand Theft Auto IV (x32 Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto: Episodes From Liberty City (HKLM-x32\...\{61B8B2F9-D8DA-4B24-89A9-DB09F38A4899}) (Version: 1.1.0.0 - Rockstar Games)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0003.135 - Rockstar Games Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
iCloud (HKLM\...\{2AAF09D5-4B3F-4975-B6A9-ECE2631FC942}) (Version: 4.0.5.20 - Apple Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
L.A. Noire: The Complete Edition (HKLM-x32\...\Steam App 110800) (Version: - Rockstar)
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Max Payne 3 (HKLM-x32\...\Steam App 204100) (Version: - Rockstar)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 22.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Grafiktreiber 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{46ED2B64-85C7-4E1F-920C-A555B21F2E4C}) (Version: 9.11.1111 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Panda USB Vaccine 1.0.1.4 (HKLM-x32\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version: - Panda Security)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.5.2 - Pando Networks Inc.)
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Prezi Desktop (HKLM-x32\...\{7FAE73A4-F0BC-4B65-81CF-52C417383407}) (Version: 4.5.1 - Prezi.com)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Quantum GIS Lisboa 1.8.0 Lisboa (HKLM-x32\...\Quantum GIS Lisboa) (Version: 1.8.0-r${SVN_REVISION}-2 - QGIS Development Team)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
R for Windows 2.15.2 (HKLM\...\R for Windows 2.15.2_is1) (Version: 2.15.2 - R Core Team)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Sandboxie 4.14 (64-bit) (HKLM\...\Sandboxie) (Version: 4.14 - Sandboxie Holdings, LLC)
Secunia PSI (3.0.0.4001) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.4001 - Secunia)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab (HKLM-x32\...\{92482FB3-C05B-41C6-89E7-75D985602A6E}) (Version: 4.1.72.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKU\S-1-5-21-648632289-941596113-564908001-1000\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
Torchlight (HKLM-x32\...\Steam App 41500) (Version: - Runic Games, Inc.)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version: - )
Tropico 3 - Steam Special Edition (HKLM-x32\...\Steam App 23490) (Version: - Haemimont Games)
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version: - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-648632289-941596113-564908001-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\pc\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
==================== Restore Points =========================
15-11-2014 11:33:54 DirectX wurde installiert
25-11-2014 16:11:40 Windows Update
25-11-2014 19:27:27 Windows Update
02-12-2014 17:50:28 Windows Update
02-12-2014 18:26:36 avast! antivirus system restore point
09-12-2014 11:29:08 Windows Update
10-12-2014 12:26:59 Windows Update
13-12-2014 00:53:23 Windows Update
16-12-2014 11:05:34 Windows Update
18-12-2014 13:13:12 Windows Update
24-12-2014 22:13:01 Windows Update
30-12-2014 10:51:23 Windows Update
06-01-2015 10:38:51 Windows Update
09-01-2015 15:59:41 Windows Update
14-01-2015 12:54:38 Windows Update
19-01-2015 15:46:28 Windows Update
20-01-2015 19:37:27 Windows Update
20-01-2015 19:39:26 Windows Update
20-01-2015 20:00:15 Windows Update
20-01-2015 20:02:57 Windows Update
20-01-2015 20:03:45 Windows Update
20-01-2015 20:07:20 Installed Microsoft Fix it 50123
20-01-2015 20:10:07 Windows Update
20-01-2015 20:13:58 Installed Microsoft Fix it 50123
20-01-2015 20:16:02 Windows Update
20-01-2015 20:35:33 Windows Update
24-01-2015 22:33:27 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2013-10-24 12:25 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {011436A8-8FF0-4ACB-9FB7-E481C450FF19} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-24] (Adobe Systems Incorporated)
Task: {089F7558-76BA-417C-BF3E-6D49D624CA4A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {0CF012FF-7E49-4E57-85A7-FA5FA807A34D} - System32\Tasks\{0791B258-94E1-4387-8AE6-CFD9DE0B379B} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {138BBC82-8FA6-412F-B7E2-1F42157A44B7} - System32\Tasks\{4322F264-6326-48F0-9E35-439E30A91324} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {191F9D3D-88FD-4714-9F07-15C997720901} - System32\Tasks\{CA856E06-A8E5-4980-9E39-71CE9C3C1729} => pcalua.exe -a "C:\Program Files (x86)\Games\WoW Beta\World of Warcraft Beta\World of Warcraft Beta Launcher.exe" -d "C:\Program Files (x86)\Games\WoW Beta\World of Warcraft Beta\"
Task: {1CA98BA9-7F17-46DD-827A-3BA15558DC43} - System32\Tasks\{F735B022-7B0C-4AC9-B996-F195FD0694B5} => Chrome.exe hxxp://ui.skype.com/ui/0/6.9.0.106/de/abandoninstall?page=tsProgressBar
Task: {34CB8BAB-2C53-4F03-8521-20454AE725FE} - System32\Tasks\{97567952-9BBF-415A-BB32-9986B790436B} => pcalua.exe -a "C:\Users\pc\Downloads\World of Warcraft Beta Setup.exe" -d C:\Users\pc\Downloads
Task: {4855E15C-5BEC-406E-A5CA-59AD9857F27D} - System32\Tasks\{5EB82005-0DA8-4CFA-84D9-918A8811184D} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {5A49C344-1339-4237-815B-A474FEE06ED6} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
Task: {60DCD8A7-4A19-460D-B344-F73AC1487583} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe [2009-09-23] ()
Task: {726E4403-3EF5-4A53-A57E-472AF4F57065} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20] (Google Inc.)
Task: {7808C3E0-CEBC-4D40-A7DB-74EBC9665971} - System32\Tasks\{FEF7769C-0D4E-4A2D-89F6-C22129A04338} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {93804795-B8BB-490F-8705-66A7EB8C6AAF} - System32\Tasks\{A9DD6843-FDDB-4773-96F4-B1EA314F950C} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.)
Task: {A990D147-2699-42C9-9102-5014ABBB33B5} - System32\Tasks\{20C01417-9AAB-4FA3-B722-F0CC174AA673} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {B1411A5D-1E7B-484B-A557-95759E78A107} - System32\Tasks\{C75F808C-C8C5-4E08-8CB2-B5C93CCDA135} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar
Task: {B44074BA-5EAC-4298-BF21-E3C242EF25EA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-20] (Google Inc.)
Task: {C4E95228-45CE-41D0-8A1C-ACE4E6E3FBF4} - System32\Tasks\{2F30BD95-1E18-4B2D-A21B-C642AB34DA81} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {C78350E8-E605-40D2-8BDD-4412E89F9EF8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-12-02] (AVAST Software)
Task: {E8891B14-3275-41C8-9B68-0897A7BB0064} - System32\Tasks\{5C37157B-69CF-4AAC-8735-E5649D39E62D} => C:\Program Files\Games\GTA 4 Neu\Grand Theft Auto IV\LaunchGTAIV.exe
Task: {FEDB6671-DA14-44EB-A992-1AD87F4C6BCB} - System32\Tasks\{1CFC3E6C-E7A0-4C66-A19A-69EC5DD66DB5} => pcalua.exe -a D:\setup.exe -d D:\
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-11-18 16:07 - 2014-07-02 19:55 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-13 14:50 - 2014-11-15 11:36 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-08-09 21:25 - 2013-03-06 13:42 - 00253776 ____N () C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
2011-02-07 23:44 - 2011-02-07 23:44 - 03046808 _____ () C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
2010-12-20 17:10 - 2009-05-07 09:51 - 00071680 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2010-12-20 17:10 - 2009-05-07 09:53 - 00379392 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2010-12-20 17:10 - 2008-01-18 07:50 - 00098816 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2010-12-20 17:10 - 2009-11-03 04:12 - 47601664 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00374840 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2015-01-28 11:00 - 2015-01-28 11:00 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012800\algo.dll
2015-01-29 19:46 - 2015-01-29 19:46 - 02913280 _____ () C:\Program Files\AVAST Software\Avast\defs\15012901\algo.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2010-12-20 18:17 - 1998-10-31 10:55 - 00005120 _____ () C:\Program Files (x86)\EXPERTool\TBManage.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 36966968 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libcef.dll
2014-12-16 23:37 - 2014-12-16 23:37 - 01800192 _____ () C:\Program Files (x86)\GoPro\Tools\Importer\GPSDKAnalyticsNet.dll
2014-12-02 18:29 - 2014-12-02 18:30 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00750080 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-01-29 11:35 - 2015-01-29 11:35 - 00043008 _____ () c:\users\pc\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp7m7t2_.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00047616 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\libEGL.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00863744 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2014-10-22 01:22 - 2014-10-22 01:22 - 00200704 _____ () C:\Users\pc\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00867896 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\ffmpegsumo.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00886840 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libglesv2.dll
2014-12-28 19:35 - 2014-12-28 19:35 - 00108600 _____ () C:\Users\pc\AppData\Roaming\Spotify\Data\libegl.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 01042760 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 08910664 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll
2014-10-27 20:48 - 2014-10-22 05:04 - 01681224 _____ () C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:054203E4
AlternateDataStreams: C:\ProgramData\TEMP:05EE1EEF
AlternateDataStreams: C:\Users\pc\Desktop\Bescheinigungen und Zeugnisse.pdf:com.dropbox.attributes
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
HKU\S-1-5-21-648632289-941596113-564908001-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-648632289-941596113-564908001-500 - Administrator - Disabled)
ASPNET (S-1-5-21-648632289-941596113-564908001-1002 - Limited - Enabled)
Gast (S-1-5-21-648632289-941596113-564908001-501 - Limited - Disabled)
pc (S-1-5-21-648632289-941596113-564908001-1000 - Administrator - Enabled) => C:\Users\pc
==================== Faulty Device Manager Devices =============
Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/29/2015 00:06:49 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Fehler bei der automatischen Aktualisierung des Drittanbieterstammzertifikats von <hxxp://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/F18B538D1BE903B6A6F056435B171589CAF36BF2.crt>. Fehler: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben.
.
Error: (01/29/2015 11:37:57 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/28/2015 06:15:12 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/28/2015 11:05:50 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/27/2015 11:49:00 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/26/2015 09:01:10 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/26/2015 01:09:48 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/26/2015 11:11:10 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/25/2015 03:22:22 PM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/25/2015 11:27:42 AM) (Source: MsiInstaller) (EventID: 1024) (User: pc-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011010}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
System errors:
=============
Error: (01/29/2015 11:39:24 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
Error: (01/29/2015 11:36:54 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/28/2015 06:11:06 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/28/2015 11:01:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/27/2015 11:49:58 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
Error: (01/27/2015 11:47:28 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/26/2015 09:00:43 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
Error: (01/26/2015 08:58:12 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Intel(R) Management & Security Application User Notification Service" ist vom Dienst "Intel(R) Management and Security Application Local Management Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/26/2015 01:54:04 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}
Error: (01/26/2015 01:10:05 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
Microsoft Office Sessions:
=========================
Error: (01/22/2014 07:29:16 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 1186 seconds with 1080 seconds of active time. This session ended with a crash.
Error: (06/05/2012 09:32:44 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 191818 seconds with 14520 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2014-09-11 20:50:27.135
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-09-11 20:50:26.915
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-09-11 20:50:21.749
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-09-11 20:50:21.546
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 13:22:44.786
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-24 13:22:44.644
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-28 00:58:22.277
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-28 00:58:22.093
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-28 00:57:40.192
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-02-28 00:57:39.930
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\usbaapl64.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 79%
Total physical RAM: 4055.05 MB
Available physical RAM: 846.93 MB
Total Pagefile: 8108.29 MB
Available Pagefile: 3198.71 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:86.73 GB) NTFS
Drive e: (INTENSO) (Fixed) (Total:1629.74 GB) (Free:1396.78 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: C49F2E73)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 1630.1 GB) (Disk ID: 46F5428B)
Partition 1: (Not Active) - (Size=1630.1 GB) - (Type=0C)
==================== End Of Log ============================
|
|
29.01.2015, 21:49
| #4 |
| /// Malwareteam | Windows Updates und Grafikkartentreiber Update nicht möglich Bitte ausfuehren... Bitte lade dir  GMER herunter: (Dateiname zufällig)
 Tauchen Probleme auf?
|
|
29.01.2015, 22:12
| #5 |
| | Windows Updates und Grafikkartentreiber Update nicht möglichCode:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-01-29 22:10:38
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-4 ST1000DM003-9YN162 rev.CC4B 931,51GB
Running: Gmer-19357.exe; Driver: C:\Users\pc\AppData\Local\Temp\pxldapoc.sys
---- Kernel code sections - GMER 2.1 ----
INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 448 fffff800037a3000 45 bytes [00, 00, 1E, 02, 4D, 6D, 43, ...]
INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 495 fffff800037a302f 16 bytes [00, 14, 00, 00, 00, 00, 00, ...]
---- User code sections - GMER 2.1 ----
.text C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!recv + 82 0000000074cc17fa 2 bytes CALL 76de11a9 C:\Windows\syswow64\kernel32.dll
.text C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!recvfrom + 88 0000000074cc1860 2 bytes CALL 76de11a9 C:\Windows\syswow64\kernel32.dll
.text C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 98 0000000074cc1942 2 bytes JMP 75d27089 C:\Windows\syswow64\WS2_32.dll
.text C:\Windows\SysWOW64\PnkBstrA.exe[1688] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 109 0000000074cc194d 2 bytes JMP 75d2cba6 C:\Windows\syswow64\WS2_32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe[3832] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000076de8791 5 bytes [33, C0, C2, 04, 00]
.text C:\Program Files\AVAST Software\Avast\AvastUI.exe[3776] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000076de8791 8 bytes [31, C0, C2, 04, 00, 90, 90, ...]
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleFileNameExW + 17 0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!EnumProcessModules + 17 0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 17 0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 42 000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!EnumDeviceDrivers + 17 00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetDeviceDriverBaseNameA + 17 00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!QueryWorkingSetEx + 17 000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetDeviceDriverBaseNameW + 17 0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleBaseNameW + 17 000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!EnumProcesses + 17 0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetProcessMemoryInfo + 17 000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetPerformanceInfo + 17 0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!QueryWorkingSet + 17 000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleBaseNameA + 17 00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetModuleFileNameExA + 17 00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetProcessImageFileNameW + 20 00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text C:\Users\pc\AppData\Roaming\Dropbox\bin\Dropbox.exe[4828] C:\Windows\syswow64\Psapi.dll!GetProcessImageFileNameW + 31 00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Secunia\PSI\sua.exe[6892] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17 0000000077541401 2 bytes JMP 76e0b21b C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17 0000000077541419 2 bytes JMP 76e0b346 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17 0000000077541431 2 bytes JMP 76e88ea9 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42 000000007754144a 2 bytes CALL 76de48ad C:\Windows\syswow64\kernel32.dll
.text ... * 9
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17 00000000775414dd 2 bytes JMP 76e887a2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17 00000000775414f5 2 bytes JMP 76e88978 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17 000000007754150d 2 bytes JMP 76e88698 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17 0000000077541525 2 bytes JMP 76e88a62 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17 000000007754153d 2 bytes JMP 76dffca8 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17 0000000077541555 2 bytes JMP 76e068ef C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17 000000007754156d 2 bytes JMP 76e88f61 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17 0000000077541585 2 bytes JMP 76e88ac2 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17 000000007754159d 2 bytes JMP 76e8865c C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17 00000000775415b5 2 bytes JMP 76dffd41 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17 00000000775415cd 2 bytes JMP 76e0b2dc C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20 00000000775416b2 2 bytes JMP 76e88e24 C:\Windows\syswow64\kernel32.dll
.text C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31 00000000775416bd 2 bytes JMP 76e885f1 C:\Windows\syswow64\kernel32.dll
---- Threads - GMER 2.1 ----
Thread C:\Windows\System32\svchost.exe [3756:4592] 000007feebb89688
---- EOF - GMER 2.1 ----
|
|
30.01.2015, 07:28
| #6 |
| /// Malwareteam | Windows Updates und Grafikkartentreiber Update nicht möglich Moin. Ich hab im buero keinen zugriff auf die logfiles.... schau sie mir am nachmittag an
__________________ --> Windows Updates und Grafikkartentreiber Update nicht möglich |
|
| Themen zu Windows Updates und Grafikkartentreiber Update nicht möglich |
| administrator, bios, converter, cpu, file, firewall, funktioniert nicht mehr, geforce, generic, grafikkarte, home, i8042prt.sys, monitor, neu, nvidia, opera, realtek, sound, strong, system32, systeme, tables, treiber, updates, usb, virus, windows, windows updates, wrapper |
Gruß Aneri 
Hybrid-Darstellung
