| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
02.07.2013, 15:36
| #1 |
 |  Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. Hallo, Seit gestern Abend ich mehrere Probleme auf meinem Pc mit Windows 7 64bit. Ich glaube, dass ich mir irgendeinen Virus eingefangen habe... Antivirenprogramm ließ ich bereits durchlaufen, hatte aber nichts Böses gefunden... Das auffälligste Problem ist, dass trotz Verbindung mit meinem Router ich nicht über einen Browser ins Internet komme. Andere Programme, wie zB. Spotify oder Steam, funktionieren jedoch einwandfrei. Ein weiteres Problem ist, dass sich soweit ich weiß .jpeg und .png Dateien nicht öffnen lassen, es passiert einfach nichts nachdem ich darauf klicke. Heute wollte ich unter anderem eine Windows Sicherung durchführen, aber dann sagt mir das System es fehle eine Datei (Fehler: 0x80070002). Ich habe mal in die regedit reingesehen und bemerkt, dass dort einige Schlüssel fehlen... (im Schlüssel Windows Backup ist nur der (Standard) vorhanden mit dem Typ "REG_SZ" und ohne festgelegten Wert!? ). Da dachte ich mir, dass da irgendetwas falsch sein muss... Ich hoffe ihr könnt mir helfen, da ich nicht wirklich Lust auf eine Windows Neuinstallation habe. Mit freundlichen Grüßen Lucas |
|
02.07.2013, 15:40
| #2 |
| /// the machine /// TB-Ausbilder    |  Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. Hi,
__________________Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
__________________ |
|
02.07.2013, 20:21
| #3 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. Hi, danke schon mal für deine Antwort. Hoffentlich hilft dir das hier weiter..
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-07-2013
Ran by Lucas (administrator) on 02-07-2013 21:10:12
Running from C:\Users\Lucas\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
() C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
() C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\lucidservices.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [VIRTU_MVP_AUTORUN] %ProgramFiles%\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hide [3099880 2013-02-07] ()
HKLM\...\Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] ()
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE [x]
HKLM\...\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized [7406392 2012-11-29] (Logitech Inc.)
HKLM\...\Run: [VIRTU MVP] C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hide [3099880 2013-02-07] ()
HKLM\...\Run: [Cmaudio8788] C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd [8769536 2011-05-12] (C-Media Corporation)
HKLM\...\Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe Envoke [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe Envoke [282112 2008-07-11] ()
HKLM\...\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Spotify Web Helper] "C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-06-12] (Spotify Ltd)
HKCU\...\Run: [DAEMON Tools Lite] "E:\Programme (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
MountPoints2: {3689d110-ae6a-11e2-bc8d-b89cb0a05e63} - L:\Startme.exe
MountPoints2: {d52e32cb-2f50-11e2-a146-806e6f6e6963} - D:\ASRSetup.exe
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [Control Center] C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe [544256 2009-05-21] ()
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] [x]
AppInit_DLLs: C:\Windows\system32\appinit_dll.dll [512744 2013-02-07] (Lucidlogix Inc.)
AppInit_DLLs-x32: C:\Windows\SysWOW64\appinit_dll.dll [470248 2013-02-07] (Lucidlogix Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKLM-x32 SearchScopes: DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10011&barid={37180357-6276-11E2-B597-DFEF4C55FA7C}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10011&barid={37180357-6276-11E2-B597-DFEF4C55FA7C}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files (x86)\Ant.com\IE add-on\download.dll (Ant.com)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: smartdownloader Class - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - C:\Program Files (x86)\PutLockerDownloader\smarterdownloader.dll No File
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files (x86)\Ant.com\IE add-on\anttoolbar.dll (Ant.com)
Toolbar: HKCU - No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: <?xml version="1.0"?>
<RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:id>smartwebprinting@hp.com</em:id>
<em:version>4.5</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0.0.0</em:minVersion>
<em:maxVersion>3.*.*.*</em:maxVersion>
</Description>
</em:targetApplication>
<!-- front-end metadata -->
<em:name>HP Smart Web Printing</em:name>
<em:description>Print what you want, how you want.</em:description>
<em:creator>hp.com</em:creator>
<em:homepageURL>hxxp://www.hp.com/go/smartwebprinting</em:homepageURL>
<em:aboutURL>chrome://hpsmartwebprinting/content/about.xul</em:aboutURL>
<em:iconURL>chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png</em:iconURL>
<em:targetPlatform>WINNT_x86-msvc</em:targetPlatform>
</Description>
</RDF>
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: <?xml version="1.0"?>
<RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:id>smartwebprinting@hp.com</em:id>
<em:version>4.5</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0.0.0</em:minVersion>
<em:maxVersion>3.*.*.*</em:maxVersion>
</Description>
</em:targetApplication>
<!-- front-end metadata -->
<em:name>HP Smart Web Printing</em:name>
<em:description>Print what you want, how you want.</em:description>
<em:creator>hp.com</em:creator>
<em:homepageURL>hxxp://www.hp.com/go/smartwebprinting</em:homepageURL>
<em:aboutURL>chrome://hpsmartwebprinting/content/about.xul</em:aboutURL>
<em:iconURL>chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png</em:iconURL>
<em:targetPlatform>WINNT_x86-msvc</em:targetPlatform>
</Description>
</RDF>
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: hxxp://home.sweetim.com/?crg=3.1010000.10011&barid={37180357-6276-11E2-B597-DFEF4C55FA7C}
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Free Download Manager Click Catcher Plug-In for Netscape, Opera, Mozilla) - C:\Program Files (x86)\Google\Chrome\Application\plugins\npfdm.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CHR Plugin: (Unity Player) - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (VLC Web Plugin) - E:\Programme (x86)\VLC\npvlc.dll (VideoLAN)
CHR Extension: (From Dust) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\anelkojiepicmcldgnmkplocifmegpfj\0.0.0.23_0
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Slinky Elegant) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0
CHR Extension: (Google Search) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (ProxMate - Improve your Internet!) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.6_0
CHR Extension: (Google Play) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0
CHR Extension: (Amazon Windowshop) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nielaigelomefgdoljcpfgbdbfefhdjc\1.1.0.0_0
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)
S4 AntUpdaterService; C:\Program Files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [520216 2011-06-29] (Ant.com)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-02-18] ()
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 LucidSrv; C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [16104 2013-02-07] (LucidLogix)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4340664 2012-07-15] (INCA Internet Co., Ltd.)
S2 PinnacleUpdateSvc; E:\Programme (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe [430080 2011-05-09] (PowerUp Software, LLC)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-25] ()
S2 Realtek11nCU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 xsherlock; C:\Windows\SysWow64\xsherlock.xem [666720 2012-12-16] (Wellbia.com Co., Ltd.)
S4 HTCMonitorService; "C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe" [x]
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2727936 2011-12-20] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-15] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWow64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1047144 2011-09-20] (Realtek Semiconductor Corporation )
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2013-06-09] (Sony Ericsson Mobile Communications)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-06-21] (Oracle Corporation)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2013-01-03] ()
S3 dump_wmimmc; \??\E:\Programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 MBfilt; system32\drivers\MBfilt64.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-02 21:09 - 2013-07-02 21:09 - 00000000 ____D C:\FRST
2013-07-02 21:09 - 2013-07-02 21:08 - 01933556 ____N (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2013-07-02 16:58 - 2010-01-27 18:38 - 03208192 ____A (Microsoft Corporation) C:\Windows\System32\explorer.exe
2013-07-02 16:58 - 2010-01-27 18:37 - 03208192 ____A (Microsoft Corporation) C:\Windows\System32\explorer(old).exe
2013-07-02 15:11 - 2013-07-02 15:11 - 00000000 ___DC C:\Users\Lucas\AppData\Local\MigWiz
2013-07-01 22:01 - 2013-07-01 22:01 - 00000000 ____D C:\ProgramData\ATI
2013-07-01 22:00 - 2013-07-01 22:00 - 00000000 ____D C:\Program Files\ATI
2013-07-01 20:47 - 2013-07-01 21:02 - 187682976 ____A (AMD Inc.) C:\Users\Lucas\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-01 20:47 - 2013-07-01 20:59 - 141110624 ____A (Advanced Micro Devices, Inc.) C:\Users\Lucas\Downloads\13-4_win7_win8_64_dd_ccc_whql.exe
2013-06-29 17:20 - 2013-06-29 17:20 - 00594215 ____A C:\Users\Lucas\Downloads\MELLISA_1920x1080.jpg.zip
2013-06-29 15:21 - 2013-06-29 15:21 - 00000000 ____D C:\Program Files\VideoLAN
2013-06-27 02:43 - 2013-06-27 02:43 - 00000000 ____D C:\Users\Lucas\Documents\Riptide
2013-06-27 02:41 - 2013-06-27 02:41 - 00000562 ____A C:\Windows\wmsetup.log
2013-06-26 15:45 - 2013-06-26 15:46 - 08435712 ____A C:\Users\Lucas\Downloads\archpr454_setup_en.msi
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\ProgramData\PowerUp Software
2013-06-25 20:29 - 2013-06-25 20:29 - 11639710 ____A C:\Users\Lucas\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.2.14-86644.vbox-extpack
2013-06-25 17:05 - 2013-06-25 19:00 - 2463242240 ____A C:\Users\Lucas\Downloads\X15-65740.iso
2013-06-25 17:02 - 2013-07-02 20:33 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-06-25 17:02 - 2013-06-25 17:12 - 00000000 ____D C:\Users\Lucas\VirtualBox VMs
2013-06-25 16:47 - 2013-07-02 12:21 - 00119296 ____A C:\Windows\SysWOW64\zlib.dll
2013-06-25 16:47 - 2008-04-13 20:11 - 00619008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dx7vb.dll
2013-06-25 16:47 - 2008-01-13 20:59 - 00036864 ____A C:\Windows\SysWOW64\dxinputdll.dll
2013-06-25 16:47 - 2008-01-13 17:36 - 00091632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dsofile.dll
2013-06-25 16:47 - 2007-12-26 23:33 - 00608448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX
2013-06-25 16:47 - 2007-04-04 22:53 - 00081768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-06-25 16:47 - 2004-07-14 18:26 - 00152848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2013-06-25 16:47 - 2004-03-09 19:45 - 00212240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RICHTX32.OCX
2013-06-25 16:47 - 2003-01-26 14:41 - 00040960 ____A (vbAccelerator) C:\Windows\SysWOW64\SSubTmr6.dll
2013-06-25 16:47 - 2002-08-09 12:18 - 00045056 ____N (Microsoft) C:\Windows\SysWOW64\NTSVC.ocx
2013-06-25 16:47 - 2001-04-05 07:43 - 00094208 ___RS (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2013-06-25 16:47 - 2000-12-06 03:00 - 00109248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2013-06-25 16:47 - 2000-04-03 21:52 - 00164144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2013-06-25 16:47 - 1999-05-17 14:55 - 00057344 ____N () C:\Windows\SysWOW64\ADsSecurity.dll
2013-06-25 16:47 - 1998-06-18 01:00 - 00089360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.DLL
2013-06-25 16:34 - 2013-06-21 16:01 - 00238352 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxDrv.sys
2013-06-25 16:01 - 2013-06-21 16:00 - 00120080 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSBMon.sys
2013-06-25 15:21 - 2013-06-25 15:30 - 99246864 ____A (Oracle Corporation) C:\Users\Lucas\Downloads\VirtualBox-4.2.14-86644-Win.exe
2013-06-25 13:32 - 2013-06-25 13:32 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 13:32 - 2013-04-11 16:12 - 00019392 ____A (Dll-Files.com) C:\Windows\System32\roboot64.exe
2013-06-25 13:03 - 2013-06-25 13:24 - 00000000 ____D C:\Program Files (x86)\UZC Trial
2013-06-25 12:57 - 2013-07-01 20:53 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2013-06-25 07:12 - 2013-06-25 07:12 - 00000044 ____A C:\Users\Lucas\Downloads\Password for Watch Dogs Demo.txt
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\Documents\Keysticks
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\AppData\Local\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\ProgramData\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\Program Files (x86)\Keysticks.net
2013-06-24 19:26 - 2013-06-24 19:26 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-06-24 15:14 - 2013-06-24 15:14 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 13:38 - 2013-06-24 13:38 - 00000000 ____D C:\ProgramData\Ubisoft
2013-06-24 13:16 - 2013-06-24 13:16 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-06-21 23:53 - 2013-06-21 23:53 - 00000000 ____D C:\Users\Lucas\AppData\Local\Chromium
2013-06-21 23:49 - 2013-07-02 15:39 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-06-21 23:40 - 2013-06-21 23:40 - 00000000 ____D C:\ProgramData\Rockstar Games
2013-06-21 16:00 - 2013-06-21 16:00 - 00204048 ____A (Oracle Corporation) C:\Windows\System32\VBoxNetFltNobj.dll
2013-06-21 16:00 - 2013-06-21 16:00 - 00146704 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetFlt.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00131856 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetAdp.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00106256 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSB.sys
2013-06-21 14:23 - 2013-06-21 14:23 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-06-20 22:08 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Codemasters
2013-06-15 23:24 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-15 23:24 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-15 23:24 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-15 23:24 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-15 23:24 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-15 16:06 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Steam
2013-06-15 15:11 - 2013-06-15 15:11 - 00000000 ____D C:\Users\Lucas\Documents\CPY_SAVES
2013-06-15 13:29 - 2013-06-15 13:29 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-15 13:14 - 2013-06-15 13:14 - 00000000 ____D C:\Users\Lucas\Documents\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\ProgramData\RELOADED
2013-06-12 22:54 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-12 22:54 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 22:54 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 22:54 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-12 22:54 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-12 22:54 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-12 20:19 - 2013-06-27 00:37 - 00000000 ____D C:\Program Files\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\Documents\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Image-Line
2013-06-12 20:19 - 2013-03-12 12:47 - 01431552 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll
2013-06-12 20:18 - 2013-06-27 00:37 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2013-06-12 20:18 - 2013-06-12 20:18 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\FlowStone
2013-06-12 20:18 - 2009-09-15 11:14 - 01554944 ____A (HMS hxxp://hp.vector.co.jp/authors/VA012897/) C:\Windows\SysWOW64\vorbis.acm
2013-06-12 10:11 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 10:11 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 10:11 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 10:11 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 10:11 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 10:11 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 10:11 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 10:11 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 10:11 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 10:11 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 10:11 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 10:11 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 10:11 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 10:11 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 10:11 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 10:11 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-11 20:56 - 2013-06-11 20:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\My Games
2013-06-09 12:36 - 2013-06-09 12:36 - 00034032 ____A (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\seehcri.sys
2013-06-09 12:26 - 2013-06-09 12:26 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
==================== One Month Modified Files and Folders =======
2013-07-02 21:09 - 2013-07-02 21:09 - 00000000 ____D C:\FRST
2013-07-02 21:08 - 2013-07-02 21:09 - 01933556 ____N (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2013-07-02 21:07 - 2009-07-14 06:45 - 00014800 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-02 21:07 - 2009-07-14 06:45 - 00014800 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-02 21:04 - 2013-01-04 14:36 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-07-02 21:02 - 2012-11-15 20:26 - 01607706 ____A C:\Windows\WindowsUpdate.log
2013-07-02 20:55 - 2012-11-15 20:40 - 00001108 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-02 20:50 - 2012-11-16 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Paint.NET
2013-07-02 20:40 - 2009-07-14 19:58 - 00699092 ____A C:\Windows\System32\perfh007.dat
2013-07-02 20:40 - 2009-07-14 19:58 - 00149232 ____A C:\Windows\System32\perfc007.dat
2013-07-02 20:40 - 2009-07-14 07:13 - 01619284 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-02 20:36 - 2012-11-15 22:47 - 00000000 ____D C:\Users\Lucas\Lucidlogix
2013-07-02 20:36 - 2012-11-15 20:40 - 00001104 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-02 20:35 - 2012-11-18 12:58 - 00054693 ____A C:\Windows\setupact.log
2013-07-02 20:35 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-02 20:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF
2013-07-02 20:33 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-07-02 16:46 - 2012-11-18 12:58 - 02336700 ____A C:\Windows\PFRO.log
2013-07-02 16:45 - 2012-11-17 20:54 - 02851840 ____A (Microsoft Corporation) C:\Windows\System32\themeui.dll
2013-07-02 16:45 - 2009-07-14 01:55 - 00332288 ____A (Microsoft Corporation) C:\Windows\System32\uxtheme.dll
2013-07-02 16:45 - 2009-07-14 01:54 - 00044544 ____A (Microsoft Corporation) C:\Windows\System32\themeservice.dll
2013-07-02 16:09 - 2012-11-15 22:25 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2013-07-02 15:41 - 2013-01-23 17:09 - 00000000 ____D C:\Users\Lucas\Documents\Euro Truck Simulator 2
2013-07-02 15:41 - 2012-11-15 23:32 - 00000000 ___RD C:\Users\Lucas\Desktop\Games
2013-07-02 15:40 - 2012-11-15 20:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-02 15:39 - 2013-06-21 23:49 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-07-02 15:11 - 2013-07-02 15:11 - 00000000 ___DC C:\Users\Lucas\AppData\Local\MigWiz
2013-07-02 14:04 - 2012-11-30 02:19 - 00000000 ____D C:\Windows\Minidump
2013-07-02 12:22 - 2012-12-08 16:40 - 00000000 ____D C:\Users\Lucas\Documents\Eigene Scans
2013-07-02 12:21 - 2013-06-25 16:47 - 00119296 ____A C:\Windows\SysWOW64\zlib.dll
2013-07-01 22:01 - 2013-07-01 22:01 - 00000000 ____D C:\ProgramData\ATI
2013-07-01 22:01 - 2012-11-17 00:35 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2013-07-01 22:01 - 2012-11-15 22:15 - 00000000 ____D C:\ProgramData\AMD
2013-07-01 22:00 - 2013-07-01 22:00 - 00000000 ____D C:\Program Files\ATI
2013-07-01 21:51 - 2013-01-10 13:57 - 00000000 ____D C:\ProgramData\Package Cache
2013-07-01 21:41 - 2012-11-29 17:21 - 00000000 ____D C:\AMD
2013-07-01 21:02 - 2013-07-01 20:47 - 187682976 ____A (AMD Inc.) C:\Users\Lucas\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-01 20:59 - 2013-07-01 20:47 - 141110624 ____A (Advanced Micro Devices, Inc.) C:\Users\Lucas\Downloads\13-4_win7_win8_64_dd_ccc_whql.exe
2013-07-01 20:53 - 2013-06-25 12:57 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2013-07-01 14:04 - 2012-11-15 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2013-06-29 22:57 - 2013-01-05 15:42 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\TS3Client
2013-06-29 17:20 - 2013-06-29 17:20 - 00594215 ____A C:\Users\Lucas\Downloads\MELLISA_1920x1080.jpg.zip
2013-06-29 17:20 - 2012-11-16 15:56 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2013-06-29 15:21 - 2013-06-29 15:21 - 00000000 ____D C:\Program Files\VideoLAN
2013-06-29 13:16 - 2012-12-17 18:30 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\uTorrent
2013-06-27 02:43 - 2013-06-27 02:43 - 00000000 ____D C:\Users\Lucas\Documents\Riptide
2013-06-27 02:41 - 2013-06-27 02:41 - 00000562 ____A C:\Windows\wmsetup.log
2013-06-27 02:41 - 2012-11-21 20:43 - 00440562 ____A C:\Windows\DirectX.log
2013-06-27 00:37 - 2013-06-12 20:19 - 00000000 ____D C:\Program Files\Image-Line
2013-06-27 00:37 - 2013-06-12 20:18 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2013-06-27 00:37 - 2013-04-14 01:44 - 00000000 ____D C:\Users\Lucas\Desktop\Stuff
2013-06-27 00:36 - 2013-01-05 15:42 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-27 00:31 - 2013-02-06 23:03 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\DVDVideoSoftIEHelpers
2013-06-26 15:46 - 2013-06-26 15:45 - 08435712 ____A C:\Users\Lucas\Downloads\archpr454_setup_en.msi
2013-06-26 12:25 - 2013-05-07 12:20 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\ProgramData\PowerUp Software
2013-06-25 20:29 - 2013-06-25 20:29 - 11639710 ____A C:\Users\Lucas\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.2.14-86644.vbox-extpack
2013-06-25 19:00 - 2013-06-25 17:05 - 2463242240 ____A C:\Users\Lucas\Downloads\X15-65740.iso
2013-06-25 17:12 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\VirtualBox VMs
2013-06-25 17:02 - 2012-11-15 20:26 - 00000000 ____D C:\users\Lucas
2013-06-25 16:00 - 2013-05-08 10:54 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2013-06-25 16:00 - 2013-05-07 21:28 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-25 16:00 - 2012-12-18 16:56 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2013-06-25 15:30 - 2013-06-25 15:21 - 99246864 ____A (Oracle Corporation) C:\Users\Lucas\Downloads\VirtualBox-4.2.14-86644-Win.exe
2013-06-25 13:32 - 2013-06-25 13:32 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 13:24 - 2013-06-25 13:03 - 00000000 ____D C:\Program Files (x86)\UZC Trial
2013-06-25 07:12 - 2013-06-25 07:12 - 00000044 ____A C:\Users\Lucas\Downloads\Password for Watch Dogs Demo.txt
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\Documents\Keysticks
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\AppData\Local\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\ProgramData\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\Program Files (x86)\Keysticks.net
2013-06-24 19:26 - 2013-06-24 19:26 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-06-24 15:14 - 2013-06-24 15:14 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 13:44 - 2012-12-18 13:54 - 00000000 ____D C:\Users\Lucas\AppData\Local\Ubisoft Game Launcher
2013-06-24 13:38 - 2013-06-24 13:38 - 00000000 ____D C:\ProgramData\Ubisoft
2013-06-24 13:28 - 2013-05-08 10:54 - 00189248 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2013-06-24 13:16 - 2013-06-24 13:16 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-06-22 12:10 - 2012-11-17 17:37 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-22 12:10 - 2012-11-17 17:37 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-21 23:53 - 2013-06-21 23:53 - 00000000 ____D C:\Users\Lucas\AppData\Local\Chromium
2013-06-21 23:53 - 2012-11-17 17:22 - 00000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2013-06-21 23:40 - 2013-06-21 23:40 - 00000000 ____D C:\ProgramData\Rockstar Games
2013-06-21 23:40 - 2013-02-25 16:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\SKIDROW
2013-06-21 16:01 - 2013-06-25 16:34 - 00238352 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxDrv.sys
2013-06-21 16:00 - 2013-06-25 16:01 - 00120080 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSBMon.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00204048 ____A (Oracle Corporation) C:\Windows\System32\VBoxNetFltNobj.dll
2013-06-21 16:00 - 2013-06-21 16:00 - 00146704 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetFlt.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00131856 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetAdp.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00106256 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSB.sys
2013-06-21 14:23 - 2013-06-21 14:23 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-06-20 22:08 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Codemasters
2013-06-20 22:08 - 2013-06-15 16:06 - 00000000 ____D C:\ProgramData\Steam
2013-06-20 22:08 - 2012-11-16 20:37 - 00000000 ____D C:\Users\Lucas\Documents\my games
2013-06-20 21:42 - 2012-11-15 22:29 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Skype
2013-06-18 15:34 - 2013-04-16 13:04 - 00000000 ____D C:\Users\Lucas\Desktop\eBay Bilder
2013-06-18 15:23 - 2013-05-07 23:02 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-15 15:11 - 2013-06-15 15:11 - 00000000 ____D C:\Users\Lucas\Documents\CPY_SAVES
2013-06-15 13:29 - 2013-06-15 13:29 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-15 13:14 - 2013-06-15 13:14 - 00000000 ____D C:\Users\Lucas\Documents\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\ProgramData\RELOADED
2013-06-14 16:54 - 2012-12-13 19:29 - 00000000 ____D C:\Users\Lucas\Documents\Schule
2013-06-13 18:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-13 17:34 - 2013-02-17 21:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-13 17:34 - 2012-11-15 22:28 - 00000000 ____D C:\ProgramData\Skype
2013-06-12 22:55 - 2012-11-19 23:12 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\Documents\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Image-Line
2013-06-12 20:18 - 2013-06-12 20:18 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\FlowStone
2013-06-11 20:56 - 2013-06-11 20:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\My Games
2013-06-09 12:42 - 2013-05-30 15:06 - 00000000 ____D C:\Users\Lucas\Desktop\custom roms
2013-06-09 12:36 - 2013-06-09 12:36 - 00034032 ____A (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\seehcri.sys
2013-06-09 12:26 - 2013-06-09 12:26 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
2013-06-08 16:08 - 2013-06-15 23:24 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-15 23:24 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-15 23:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-15 23:24 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-15 23:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-05 22:17 - 2012-12-20 19:35 - 01592628 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-06-04 19:45 - 2013-02-13 17:31 - 00000000 ____D C:\ProgramData\Origin
2013-06-04 16:55 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2013-06-04 16:52 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Local\Origin
Files to move or delete:
====================
C:\ProgramData\NTUser.dat
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-06-25 17:31
==================== End Of Log ============================
--- --- --- --- --- --- Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-07-2013
Ran by Lucas at 2013-07-02 21:10:34
Running from C:\Users\Lucas\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
µTorrent (x32 Version: 3.3.0.29625)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Acrobat.com (x32 Version: 0.0.0)
Acrobat.com (x32 Version: 1.1.377)
Adobe AIR (x32 Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.169)
Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638)
Age of Mythology (x32)
AMD Accelerated Video Transcoding (Version: 12.5.100.20913)
AMD Accelerated Video Transcoding (Version: 12.5.100.20928)
AMD APP SDK Runtime (Version: 10.0.1016.4)
AMD Catalyst Install Manager (Version: 8.0.891.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70913.1846)
AMD Media Foundation Decoders (Version: 1.0.70928.1539)
Amnesia: The Dark Descent Demo (x32)
Ant.com IE add-on (x32 Version: 2.2.1.75)
APB Reloaded (x32)
Arma 2 (x32)
Arma 2: Operation Arrowhead (x32)
ASIO4ALL (x32 Version: 2.10)
Asmedia ASM106x SATA Host Controller Driver (x32 Version: 1.3.1.000)
ASRock App Charger v1.0.5
ASRock eXtreme Tuner v0.1.188 (x32)
ASRock InstantBoot v1.29 (x32)
ASRock SmartConnect v1.0.6
ASRock XFast RAM v2.0.9
Assassin's Creed Revelations (x32)
ASUS USB-N13 WLAN Card Utilities & Driver (x32 Version: 1.0.0.5)
ASUS WLAN Card Utilities/Driver (x32 Version: 4.3.1.0)
ASUS Xonar DG Audio Driver
Avira Free Antivirus (x32 Version: 13.0.0.3737)
Battlefield 1942™ (x32 Version: 1.6.20.0)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
BattlEye for OA Uninstall (x32)
BioShock Infinite (x32)
BufferChm (x32 Version: 130.0.331.000)
C309a (x32 Version: 130.0.425.000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
CameraHelperMsi (x32 Version: 13.50.854.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.0913.1837.31603)
Catalyst Control Center (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0913.1837.31603)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center InstallProxy (x32 Version: 2012.0913.1837.31603)
Catalyst Control Center InstallProxy (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center Localization All (x32 Version: 2012.0913.1837.31603)
Catalyst Control Center Localization All (x32 Version: 2012.0928.1532.26058)
CCC Help Chinese Standard (x32 Version: 2012.0913.1836.31603)
CCC Help Chinese Standard (x32 Version: 2012.0928.1531.26058)
CCC Help Chinese Traditional (x32 Version: 2012.0913.1836.31603)
CCC Help Chinese Traditional (x32 Version: 2012.0928.1531.26058)
CCC Help Czech (x32 Version: 2012.0913.1836.31603)
CCC Help Czech (x32 Version: 2012.0928.1531.26058)
CCC Help Danish (x32 Version: 2012.0913.1836.31603)
CCC Help Danish (x32 Version: 2012.0928.1531.26058)
CCC Help Dutch (x32 Version: 2012.0913.1836.31603)
CCC Help Dutch (x32 Version: 2012.0928.1531.26058)
CCC Help English (x32 Version: 2012.0913.1836.31603)
CCC Help English (x32 Version: 2012.0928.1531.26058)
CCC Help Finnish (x32 Version: 2012.0913.1836.31603)
CCC Help Finnish (x32 Version: 2012.0928.1531.26058)
CCC Help French (x32 Version: 2012.0913.1836.31603)
CCC Help French (x32 Version: 2012.0928.1531.26058)
CCC Help German (x32 Version: 2012.0913.1836.31603)
CCC Help German (x32 Version: 2012.0928.1531.26058)
CCC Help Greek (x32 Version: 2012.0913.1836.31603)
CCC Help Greek (x32 Version: 2012.0928.1531.26058)
CCC Help Hungarian (x32 Version: 2012.0913.1836.31603)
CCC Help Hungarian (x32 Version: 2012.0928.1531.26058)
CCC Help Italian (x32 Version: 2012.0913.1836.31603)
CCC Help Italian (x32 Version: 2012.0928.1531.26058)
CCC Help Japanese (x32 Version: 2012.0913.1836.31603)
CCC Help Japanese (x32 Version: 2012.0928.1531.26058)
CCC Help Korean (x32 Version: 2012.0913.1836.31603)
CCC Help Korean (x32 Version: 2012.0928.1531.26058)
CCC Help Norwegian (x32 Version: 2012.0913.1836.31603)
CCC Help Norwegian (x32 Version: 2012.0928.1531.26058)
CCC Help Polish (x32 Version: 2012.0913.1836.31603)
CCC Help Polish (x32 Version: 2012.0928.1531.26058)
CCC Help Portuguese (x32 Version: 2012.0913.1836.31603)
CCC Help Portuguese (x32 Version: 2012.0928.1531.26058)
CCC Help Russian (x32 Version: 2012.0913.1836.31603)
CCC Help Russian (x32 Version: 2012.0928.1531.26058)
CCC Help Spanish (x32 Version: 2012.0913.1836.31603)
CCC Help Spanish (x32 Version: 2012.0928.1531.26058)
CCC Help Swedish (x32 Version: 2012.0913.1836.31603)
CCC Help Swedish (x32 Version: 2012.0928.1531.26058)
CCC Help Thai (x32 Version: 2012.0913.1836.31603)
CCC Help Thai (x32 Version: 2012.0928.1531.26058)
CCC Help Turkish (x32 Version: 2012.0913.1836.31603)
CCC Help Turkish (x32 Version: 2012.0928.1531.26058)
ccc-utility64 (Version: 2012.0913.1837.31603)
ccc-utility64 (Version: 2012.0928.1532.26058)
CD Bremse 1.49 (x32 Version: 1.49)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
DAEMON Tools Lite (x32 Version: 4.46.1.0327)
DayZ Commander (x32 Version: 0.91.4)
Dead Island Riptide (x32)
Dead Space™ 3 (x32 Version: 1.0.0.0)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Destinations (x32 Version: 130.0.0.0)
DeviceDiscovery (x32 Version: 130.0.372.000)
DocProc (x32 Version: 13.0.0.0)
erLT (x32 Version: 1.20.0137)
erLT (x32 Version: 1.20.138.34)
ESN Sonar (x32 Version: 0.70.4)
ExtremMT2_aka_Uschi_Tv 2.00 Neues Update Win7 & Vista & XP, IceRun, 18 Neue Rüstungen, Neue Waffen, uvm.. (x32 Version: 2.00 Neues Update Win7 & Vista & XP, IceRun, 18 Neue Rüstungen, Neue Waffen, uvm..)
Far Cry 3 (x32 Version: 1.01)
Fax (x32 Version: 130.0.372.000)
Flashtool (x32 Version: 0.9.10.1)
GeoGebra 4.2 (x32 Version: 4.2.21.0)
Google Chrome (x32 Version: 26.0.1410.64)
Google Update Helper (x32 Version: 1.3.21.145)
GPBaseService2 (x32 Version: 130.0.371.000)
GRID 2 (c) Codemasters version 1 (x32 Version: 1)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart C309a All-In-One Driver Software 13.0 Rel .5 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 5.003.001.001)
HPDiagnosticAlert (x32 Version: 1.00.0000)
HPPhotoGadget (x32 Version: 130.0.282.000)
HPPhotoSmartDiscLabel_PaperLabel (x32 Version: 2.04.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (x32 Version: 2.04.0000)
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000)
hpphotosmartdisclabelplugin (x32 Version: 2.04.0000)
HPPhotosmartEssential (x32 Version: 2.04.0000)
HPProductAssistant (x32 Version: 130.0.371.000)
HPSSupply (x32 Version: 130.0.371.000)
HTC Sync Manager (x32 Version: 2.0.53.0)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 8.0.2.1410)
Intel(R) OpenCL CPU Runtime (x32)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2867)
Intel(R) Rapid Storage Technology (x32 Version: 11.0.0.1032)
Intel(R) Smart Connect Technology 2.0 x64 (Version: 2.0.1083.0)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.3.214)
IPTInstaller (x32 Version: 4.0.8)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
Keysticks (x32 Version: 1.8.1)
Logitech Gaming Software (Version: 8.40.83)
Logitech Gaming Software 8.40 (Version: 8.40.83)
Logitech SetPoint 5.20 (Version: 5.20)
Logitech Vid HD (x32 Version: 7.2 (7248))
Logitech Webcam Software (x32 Version: 2.0)
LWS Facebook (x32 Version: 13.50.854.0)
LWS Gallery (x32 Version: 13.50.854.0)
LWS Help_main (x32 Version: 13.50.862.0)
LWS Launcher (x32 Version: 13.50.859.0)
LWS Motion Detection (x32 Version: 13.30.1395.0)
LWS Pictures And Video (x32 Version: 13.50.861.0)
LWS Twitter (x32 Version: 13.30.1346.0)
LWS Video Mask Maker (x32 Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (x32 Version: 13.31.1038.0)
LWS WLM Plugin (x32 Version: 1.30.1201.0)
LWS YouTube Plugin (x32 Version: 13.31.1038.0)
MarketResearch (x32 Version: 130.0.374.000)
Metin2 (x32)
Metro Last Light Update 1.0.0.2 (x32)
Metro: Last Light (c) Deep Silver version 1 (x32 Version: 1)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2010 Service Pack 1 (SP1) (x32)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
Microsoft-Maus- und Tastatur-Center (Version: 2.0.162.0)
Mozilla Firefox 19.0.2 (x86 de) (x32 Version: 19.0.2)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML4 Parser (x32 Version: 1.0.0)
Network64 (Version: 130.0.572.000)
Network64 (Version: 140.0.221.000)
Nexus Mod Manager (Version: 0.33.1)
Notepad++ (x32 Version: 6.2.1)
NVIDIA PhysX (x32 Version: 9.12.1031)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OpenAL (x32)
Oracle VM VirtualBox 4.2.14 (Version: 4.2.14)
Origin (x32 Version: 9.1.13.85)
Paint.NET v3.5.10 (Version: 3.60.0)
Pinnacle Game Profiler (x32 Version: 6.9.7)
PS_AIO_05_C309_Software_Min (x32 Version: 130.0.425.000)
PunkBuster Services (x32 Version: 0.991)
RAR Password Unlocker 4.2.0.0 (x32)
RGSS-RTP Standard (x32 Version: 1.03)
Scan (x32 Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Skype™ 6.5 (x32 Version: 6.5.158)
SmartWebPrinting (x32 Version: 130.0.373.000)
SolutionCenter (x32 Version: 130.0.373.000)
Sony Ericsson Update Engine (x32 Version: 2.13.6.201305161305)
Sony Mobile Emma (x32 Version: 2.13.4.20)
Sony PC Companion 2.10.155 (x32 Version: 2.10.155)
Spotify (HKCU Version: 0.9.1.53.g876fa9df)
Status (x32 Version: 130.0.373.000)
Steam (x32 Version: 1.0.0.0)
Street Fighter X Tekken (x32 Version: 1.0.0.0)
swMSM (x32 Version: 12.0.0.1)
TeamSpeak 3 Client (Version: 3.0.10.1)
THX TruStudio (x32 Version: 1.00.01)
Toolbox (x32 Version: 130.0.648.000)
TrayApp (x32 Version: 130.0.376.000)
Ultimate ZIP Cracker Trial version (x32)
Unity Web Player (HKCU Version: )
UnloadSupport (x32 Version: 11.0.0)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32)
Uplay (x32 Version: 2.0)
User's Guides (Version: 1.20.0000)
VIRTU MVP 2.1.223 (Version: 2.1.223)
VLC media player 2.0.6 (x32 Version: 2.0.6)
VLC media player 2.0.7 (Version: 2.0.7)
WebReg (x32 Version: 130.0.132.017)
Winamp (x32 Version: 5.63 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
XFast LAN v6.61 (Version: 6.61)
==================== Restore Points =========================
02-07-2013 15:48:03 Geplanter Prüfpunkt
02-07-2013 19:04:03 Removed Aeria Ignite
==================== Scheduled Tasks (whitelisted) =============
Task: {05A20429-B2CC-4204-8481-E2154866F0CC} - System32\Tasks\asrRd => C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe [2012-01-13] ()
Task: {1BAEABA1-24EB-4583-80F7-225D59EF4D12} - System32\Tasks\{3532EC97-7AE4-4390-B757-0FABFC5B4FCD} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {1F22147C-7975-444B-9CF2-F82568F02322} - System32\Tasks\{26C7FBBC-FB25-40C2-AA59-C667BBDF0B10} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {25F41820-64CA-4C4A-A1B6-EA9CEDCCE005} - System32\Tasks\{3DB3DE11-A714-4E56-BDA5-2DC62497AB59} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {27C185B4-1962-4A3B-B1CC-12BE8F952202} - System32\Tasks\{24F5BBE6-7BF4-41D3-A758-324DEB61C223} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe No File
Task: {2FE293CD-B9D5-47DF-B66F-00EDFFEBB89A} - System32\Tasks\{FB64D9D1-1893-40B0-94FA-306C154EF756} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe No File
Task: {37DD60AD-F640-4296-B5B0-3FFF1D004D99} - System32\Tasks\{EF7E0D13-93A8-43E8-91B0-587A432821A4} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe No File
Task: {5E9207DF-8EBC-4393-9C3A-B7F0CBFED44A} - System32\Tasks\{0BCA830D-103C-4A48-950E-BF462367FE6C} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe No File
Task: {5EB87FB6-861A-4AD1-87DB-42B5E3D93FB6} - System32\Tasks\{2BCE6C5D-FC97-46FF-A368-10128CEE4813} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {6540233A-0C5E-40DA-98D9-914C0E99B3EB} - System32\Tasks\{1FA277A7-14F4-4696-B5AB-B4609BBC6393} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe No File
Task: {6ADF06CA-BE45-464F-ACE3-D166B1D5E287} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
Task: {7883574F-4A35-4677-ADC3-E38D56EF25A2} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2769869888-1427536677-3102229627-1000
Task: {7A35F582-62AE-40DB-B0F6-967BD63E5217} - System32\Tasks\{B5309DE6-C223-44A9-A009-46D5206B5883} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {8FFAF17B-BAFF-4CDF-B60E-106BCE741057} - System32\Tasks\{12B1D667-0AC3-49B3-9B7E-3C015C496C94} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {9346A6C3-1CCF-4B21-B278-396B015FD952} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2012-11-02] (Microsoft Corporation)
Task: {95F50871-CD6A-49D3-8CFA-EE17A9EA7571} - System32\Tasks\{431CA018-621A-44B8-8A65-0E0010AF7129} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {985CF365-2C91-44C5-9AB0-2BDDC75DAB85} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15] (Google Inc.)
Task: {9A3444BA-B015-4D15-BF25-A37B96744284} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2012-11-02] (Microsoft Corporation)
Task: {A8CA34F5-5803-40F9-9AC0-3A052C283E62} - System32\Tasks\{B383D8A0-5AAE-48B7-98AA-96210B9EAB66} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe No File
Task: {AED9578C-E064-4CC2-AF6D-C7561BB99ECB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2012-11-02] (Microsoft)
Task: {C198A217-6784-4DF7-9FA2-4AC4C5222C04} - System32\Tasks\AsrXTU => C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe [2012-03-06] ()
Task: {DED50F49-B7EF-4DF8-BFAA-DD6D815A10B2} - System32\Tasks\{D354F500-1DF6-44EE-B120-8DC947AB6A27} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe No File
Task: {E34DEA0F-3EE9-4E4E-8139-D2E355DC009C} - System32\Tasks\User_Feed_Synchronization-{BCA47DEE-9D3C-4E06-BD7A-84C3B024BCD6} => C:\Windows\system32\msfeedssync.exe [2013-03-22] (Microsoft Corporation)
Task: {E901220A-7C8A-4188-8296-58F37B56F4B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15] (Google Inc.)
Task: {F07B0E86-B65F-4163-883A-64BA49896691} - System32\Tasks\Microsoft_Hardware_Launch_rundll32_exe => C:\Windows\System32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Faulty Device Manager Devices =============
Name: Ethernet-Controller
Description: Ethernet-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Photosmart C309a series
Description: Photosmart C309a series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (07/02/2013 08:42:55 PM) (Source: Chrome) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=26.0.1410.64;lang=;id=;is_machine=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\f5e6246d-5b72-448b-91e2-feb00541be9f.dmp
Error: (07/02/2013 08:36:25 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IAStorUI.exe, Version: 11.0.0.1032, Zeitstempel: 0x4ed5aa6f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17725, Zeitstempel: 0x4ec49b8f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000343d0
ID des fehlerhaften Prozesses: 0x%9
Startzeit der fehlerhaften Anwendung: 0xIAStorUI.exe0
Pfad der fehlerhaften Anwendung: IAStorUI.exe1
Pfad des fehlerhaften Moduls: IAStorUI.exe2
Berichtskennung: IAStorUI.exe3
Error: (07/02/2013 02:04:19 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Users\Lucas\AppData\Local\Temp\F660B90F-7878-4EDD-892E-CC6C0DFEF349\dismhost.exe {AB94E8A1-B7CB-4ABD-A3C9-9FFDC4B2C5D7}; Beschreibung = Die Service Pack-Sicherungsdateien wurden entfernt.; Fehler = 0x81000101).
Error: (07/02/2013 01:54:18 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {022a51b6-a92d-4c53-bd9f-acfde3d38003}
Error: (07/02/2013 00:25:45 PM) (Source: Chrome) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=26.0.1410.64;lang=;id=;is_machine=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\0a78c13c-190a-416b-8102-1dbbf13cd0bc.dmp
Error: (07/01/2013 10:01:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Kdbsync.exe, Version: 0.0.0.0, Zeitstempel: 0x4f67a718
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x9f8
Startzeit der fehlerhaften Anwendung: 0xKdbsync.exe0
Pfad der fehlerhaften Anwendung: Kdbsync.exe1
Pfad des fehlerhaften Moduls: Kdbsync.exe2
Berichtskennung: Kdbsync.exe3
Error: (07/01/2013 09:51:57 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\AMD\AMD_Catalyst_13.6_Beta2\Packages\Apps\VC12RTx86\vcredist_x86\vcredist_x86.exe /q /norestart; Beschreibung = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727; Fehler = 0x81000101).
Error: (07/01/2013 03:00:52 PM) (Source: System Restore) (User: )
Description: Der geplante Wiederherstellungspunkt konnte nicht erstellt werden. Zusätzliche Informationen: (0x81000101).
Error: (07/01/2013 03:00:52 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Beschreibung = Geplanter Prüfpunkt; Fehler = 0x81000101).
Error: (06/30/2013 08:58:07 PM) (Source: System Restore) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Program Files (x86)\Sony Mobile\Emma\configuration\org.eclipse.osgi\bundles\421\1\.cp\lib\x64\DriverInstaller.exe Files (x86)\Sony Mobile\Emma\configuration\org.eclipse.osgi\bundles\421\1\.cp\lib\x64\DriverInstaller.exe" restorepoint -begin "Uninstalled Sony Ericsson Drivers"; Beschreibung = Uninstalled Sony Ericsson Drivers; Fehler = 0x81000101).
System errors:
=============
Error: (07/02/2013 09:00:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (07/02/2013 09:00:01 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Erkennung interaktiver Dienste erreicht.
Error: (07/02/2013 08:38:07 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
Error: (07/02/2013 08:36:09 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
Error: (07/02/2013 08:36:09 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
Error: (07/02/2013 08:36:07 PM) (Source: Service Control Manager) (User: )
Description: Dienst "PinnacleUpdate Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (07/02/2013 08:36:05 PM) (Source: NetBT) (User: )
Description: Der Name "LUCAS-PC :0" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.2.106
registriert werden. Der Computer mit IP-Adresse 192.168.2.105 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (07/02/2013 08:36:05 PM) (Source: NetBT) (User: )
Description: Der Name "LUCAS-PC :20" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.2.106
registriert werden. Der Computer mit IP-Adresse 192.168.2.105 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.
Error: (07/02/2013 08:36:05 PM) (Source: Server) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{7CA502E0-7CF2-4864-BC70-903EC1DB43B8} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.
Error: (07/02/2013 08:36:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Realtek11nCU" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Microsoft Office Sessions:
=========================
Error: (07/02/2013 08:42:55 PM) (Source: Chrome)(User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=26.0.1410.64;lang=;id=;is_machine=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\f5e6246d-5b72-448b-91e2-feb00541be9f.dmp
Error: (07/02/2013 08:36:25 PM) (Source: Application Error)(User: )
Description: IAStorUI.exe11.0.0.10324ed5aa6fntdll.dll6.1.7601.177254ec49b8fc0000005000343d0
Error: (07/02/2013 02:04:19 PM) (Source: System Restore)(User: )
Description: C:\Users\Lucas\AppData\Local\Temp\F660B90F-7878-4EDD-892E-CC6C0DFEF349\dismhost.exe {AB94E8A1-B7CB-4ABD-A3C9-9FFDC4B2C5D7}Die Service Pack-Sicherungsdateien wurden entfernt.0x81000101
Error: (07/02/2013 01:54:18 PM) (Source: VSS)(User: )
Description: 0x80070005, Zugriff verweigert
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {022a51b6-a92d-4c53-bd9f-acfde3d38003}
Error: (07/02/2013 00:25:45 PM) (Source: Chrome)(User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=26.0.1410.64;lang=;id=;is_machine=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\0a78c13c-190a-416b-8102-1dbbf13cd0bc.dmp
Error: (07/01/2013 10:01:23 PM) (Source: Application Error)(User: )
Description: Kdbsync.exe0.0.0.04f67a718unknown0.0.0.000000000c0000005000000009f801ce7695c27c92f4C:\Program Files (x86)\AMD AVT\bin\Kdbsync.exeunknown009ed466-e289-11e2-94d4-08002700d484
Error: (07/01/2013 09:51:57 PM) (Source: System Restore)(User: )
Description: C:\AMD\AMD_Catalyst_13.6_Beta2\Packages\Apps\VC12RTx86\vcredist_x86\vcredist_x86.exe /q /norestartMicrosoft Visual C++ 2012 Redistributable (x86) - 11.0.507270x81000101
Error: (07/01/2013 03:00:52 PM) (Source: System Restore)(User: )
Description: 0x81000101
Error: (07/01/2013 03:00:52 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationGeplanter Prüfpunkt0x81000101
Error: (06/30/2013 08:58:07 PM) (Source: System Restore)(User: )
Description: C:\Program Files (x86)\Sony Mobile\Emma\configuration\org.eclipse.osgi\bundles\421\1\.cp\lib\x64\DriverInstaller.exe Files (x86)\Sony Mobile\Emma\configuration\org.eclipse.osgi\bundles\421\1\.cp\lib\x64\DriverInstaller.exe" restorepoint -begin "Uninstalled Sony Ericsson Drivers"Uninstalled Sony Ericsson Drivers0x81000101
==================== Memory info ===========================
Percentage of memory in use: 26%
Total physical RAM: 8087.06 MB
Available physical RAM: 5923.77 MB
Total Pagefile: 16172.31 MB
Available Pagefile: 13767.09 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:63.44 GB) NTFS (Disk=0 Partition=2)
Drive e: (Seagate 1TB HDD) (Fixed) (Total:931.51 GB) (Free:499.45 GB) NTFS (Disk=1 Partition=1)
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: DFADCAF9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 932 GB) (Disk ID: 980C6ECB)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
03.07.2013, 07:56
| #4 | |
| /// the machine /// TB-Ausbilder | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich.Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 09:32
| #5 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. hallo Schrauber, danke für deine hilfe  hier die Combofix.txt : Code:
ATTFilter ComboFix 13-07-02.03 - Lucas 03/07/2013 10:20:32.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8087.6267 [GMT 2:00]
ausgeführt von:: c:\users\Lucas\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ntuser.dat
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-06-03 bis 2013-07-03 ))))))))))))))))))))))))))))))
.
.
2013-07-03 08:22 . 2013-07-03 08:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-02 19:09 . 2013-07-02 19:09 -------- d-----w- C:\FRST
2013-07-02 14:58 . 2010-01-27 16:38 3208192 ----a-w- c:\windows\system32\explorer.exe
2013-07-02 14:58 . 2010-01-27 16:37 3208192 ----a-w- c:\windows\system32\explorer(old).exe
2013-07-02 13:11 . 2013-07-02 13:11 -------- dc----w- c:\users\Lucas\AppData\Local\MigWiz
2013-07-01 20:01 . 2013-07-01 20:01 -------- d-----w- c:\programdata\ATI
2013-07-01 20:00 . 2013-07-01 20:00 -------- d-----w- c:\program files\ATI
2013-06-29 13:21 . 2013-06-29 13:21 -------- d-----w- c:\program files\VideoLAN
2013-06-25 20:27 . 2013-06-25 20:27 -------- d-----w- c:\users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 20:27 . 2013-06-25 20:27 -------- d-----w- c:\programdata\PowerUp Software
2013-06-25 15:02 . 2013-06-25 15:12 -------- d-----w- c:\users\Lucas\VirtualBox VMs
2013-06-25 15:02 . 2013-07-02 18:33 -------- d-----w- c:\users\Lucas\.VirtualBox
2013-06-25 14:36 . 2013-06-25 14:36 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-06-25 14:36 . 2013-06-25 14:36 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-06-25 14:36 . 2003-09-03 00:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-06-25 14:36 . 2003-09-03 00:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-06-25 14:36 . 2003-09-03 00:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-06-25 14:36 . 2003-09-03 00:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-06-25 14:36 . 2003-09-03 00:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-06-25 14:34 . 2013-06-21 14:01 238352 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-06-25 14:01 . 2013-06-25 14:34 -------- dc----w- c:\windows\system32\DRVSTORE
2013-06-25 14:01 . 2013-06-21 14:00 120080 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-06-25 11:32 . 2013-06-25 11:32 -------- d-----w- c:\users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 11:32 . 2013-06-25 11:32 -------- d-----w- c:\programdata\Logs
2013-06-25 11:32 . 2013-04-11 14:12 19392 ----a-w- c:\windows\system32\roboot64.exe
2013-06-25 11:03 . 2013-06-25 11:24 -------- d-----w- c:\program files (x86)\UZC Trial
2013-06-25 10:57 . 2013-07-01 18:53 -------- d-----w- c:\program files (x86)\RAR Password Unlocker
2013-06-24 18:17 . 2013-06-24 18:17 -------- d-----w- c:\users\Lucas\AppData\Local\Keysticks.net
2013-06-24 18:16 . 2013-06-24 18:16 -------- d-----w- c:\programdata\Keysticks.net
2013-06-24 18:16 . 2013-06-24 18:16 -------- d-----w- c:\program files (x86)\Keysticks.net
2013-06-24 17:26 . 2013-06-24 17:26 -------- d-----w- c:\program files (x86)\Microsoft XNA
2013-06-24 13:14 . 2013-06-24 13:14 -------- d-----w- c:\users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 11:38 . 2013-06-24 11:38 -------- d-----w- c:\programdata\Ubisoft
2013-06-24 11:16 . 2013-06-24 11:16 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
2013-06-21 21:53 . 2013-06-21 21:53 -------- d-----w- c:\users\Lucas\AppData\Local\Chromium
2013-06-21 21:49 . 2013-07-02 13:39 -------- d-----w- c:\program files (x86)\Rockstar Games
2013-06-21 21:40 . 2013-06-21 21:40 -------- d-----w- c:\programdata\Rockstar Games
2013-06-21 14:00 . 2013-06-21 14:00 204048 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2013-06-21 14:00 . 2013-06-21 14:00 146704 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2013-06-21 14:00 . 2013-06-21 14:00 131856 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2013-06-21 14:00 . 2013-06-21 14:00 106256 ----a-w- c:\windows\system32\drivers\VBoxUSB.sys
2013-06-20 20:08 . 2013-06-20 20:08 -------- d-----w- c:\programdata\Codemasters
2013-06-15 14:06 . 2013-06-20 20:08 -------- d-----w- c:\programdata\Steam
2013-06-15 11:29 . 2013-06-15 11:29 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2013-06-15 11:03 . 2013-06-15 11:03 -------- d-----w- c:\users\Lucas\AppData\Local\4A Games
2013-06-15 11:03 . 2013-06-15 11:03 -------- d-----w- c:\programdata\RELOADED
2013-06-12 18:19 . 2013-03-12 10:47 1431552 ----a-w- c:\windows\SysWow64\rewire.dll
2013-06-12 18:19 . 2013-06-12 18:19 -------- d-----w- c:\users\Lucas\AppData\Roaming\Image-Line
2013-06-12 18:19 . 2013-06-26 22:37 -------- d-----w- c:\program files\Image-Line
2013-06-12 18:18 . 2009-09-15 09:14 1554944 ----a-w- c:\windows\SysWow64\vorbis.acm
2013-06-12 18:18 . 2013-06-26 22:37 -------- d-----w- c:\program files (x86)\DSPRobotics
2013-06-12 18:18 . 2013-06-12 18:18 -------- d-----w- c:\users\Lucas\AppData\Roaming\FlowStone
2013-06-11 18:56 . 2013-06-11 18:56 -------- d-----w- c:\users\Lucas\AppData\Local\My Games
2013-06-09 10:36 . 2013-06-09 10:36 34032 ----a-w- c:\windows\system32\drivers\seehcri.sys
2013-06-09 10:26 . 2013-06-09 10:26 -------- d-----w- c:\program files (x86)\Sony Mobile
2013-06-08 18:46 . 2013-06-29 20:10 -------- d-----w- C:\Downloads
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-02 14:45 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll
2013-07-02 14:45 . 2012-11-17 18:54 2851840 ----a-w- c:\windows\system32\themeui.dll
2013-07-02 14:45 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll
2013-06-26 10:25 . 2013-05-07 10:20 83672 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-06-25 14:00 . 2013-05-07 19:28 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-06-25 14:00 . 2013-05-08 08:54 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-06-25 14:00 . 2012-12-18 14:56 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-06-24 11:28 . 2013-05-08 08:54 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-06-22 10:10 . 2012-11-17 15:37 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-22 10:10 . 2012-11-17 15:37 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 20:55 . 2012-11-19 21:12 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-05-26 14:31 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2013-05-26 14:31 . 2009-08-18 09:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-04-30 22:50 . 2013-04-26 14:39 5 ----a-w- c:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
2013-04-26 14:54 . 2013-04-26 14:54 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2013-04-26 14:54 . 2013-04-26 14:54 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2013-04-23 10:15 . 2013-01-15 11:52 419840 ----a-w- c:\windows\system32\wrap_oal.dll
2013-04-23 10:15 . 2013-01-15 11:52 413696 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-04-23 10:15 . 2013-01-15 11:52 111616 ----a-w- c:\windows\system32\OpenAL32.dll
2013-04-23 10:15 . 2013-01-15 11:52 102400 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-04-13 05:49 . 2013-05-16 15:42 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-16 15:42 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-16 15:42 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-16 15:42 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-16 15:42 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-16 15:42 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 16:52 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-16 15:42 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-16 15:42 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-16 15:41 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-04-07 21:15 . 2013-04-07 21:15 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-04-07 21:15 . 2013-04-07 21:15 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-04-07 21:15 . 2013-04-07 21:15 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="c:\users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-12 1104384]
"DAEMON Tools Lite"="e:\programme (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-06-26 345144]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-26 291608]
"hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
"Control Center"="c:\program files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe" [2009-05-21 544256]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-09-28 642728]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\appinit_dll.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,192.168.2.108,1"=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
R3 AxtuDrv;AxtuDrv;c:\windows\SysWOW64\Drivers\AxtuDrv.sys;c:\windows\SysWOW64\Drivers\AxtuDrv.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dump_wmimmc;dump_wmimmc;e:\programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys;e:\programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sys [x]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys;c:\windows\SYSNATIVE\drivers\WPRO_41_2001.sys [x]
R3 xsherlock;xsherlock;c:\windows\system32\xsherlock.xem;c:\windows\SYSNATIVE\xsherlock.xem [x]
R4 AntUpdaterService;Ant Toolbar updater service;c:\program files (x86)\Ant.com\IE add-on\AntUpdaterService.exe;c:\program files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [x]
R4 HTCMonitorService;HTCMonitorService;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [x]
R4 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
R4 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys;c:\windows\SYSNATIVE\DRIVERS\AsrRamDisk.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AsrAppCharger.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 LucidSrv;LucidSrv;c:\program files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe;c:\program files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [x]
S2 Realtek11nCU;Realtek11nCU;c:\program files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe;c:\program files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [x]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 cmudaxp;ASUS Xonar DGX Audio Interface;c:\windows\system32\drivers\cmudaxp.sys;c:\windows\SYSNATIVE\drivers\cmudaxp.sys [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlanu.sys [x]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
S3 VirtuWDDM;VirtuWDDM;c:\windows\system32\DRIVERS\VirtuWDDM.sys;c:\windows\SYSNATIVE\DRIVERS\VirtuWDDM.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-10 17:48 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15 18:40]
.
2013-07-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15 18:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"XFast LAN"="c:\program files\ASRock\XFast LAN\cFosSpeed.exe" [2011-10-19 1441152]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-10 171040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-10 399392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-12 440600]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2012-11-29 7406392]
"VIRTU MVP"="c:\program files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe" [2013-02-07 3099880]
"Cmaudio8788"="c:\windows\Syswow64\cmicnfgp.dll" [2011-05-12 8769536]
"Cmaudio8788GX"="c:\windows\syswow64\HsMgr.exe" [2008-07-11 200704]
"Cmaudio8788GX64"="c:\windows\system\HsMgr64.exe" [2008-07-11 282112]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\appinit_dll.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,192.168.2.108,1"=""
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default\
FF - ExtSQL: !HIDDEN! 2012-11-19 16:39; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{F1AF26F8-1828-4279-ABCE-074EF3235BD7} - c:\program files (x86)\PutLockerDownloader\smarterdownloader.dll
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-VIRTU_MVP_AUTORUN - c:\program files (x86)\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\xsherlock]
"ImagePath"="c:\windows\system32\xsherlock.xem"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
c:\program files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
c:\program files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE
c:\program files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2013-07-03 10:25:38 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2013-07-03 08:25
.
Vor Suchlauf: 11 Verzeichnis(se), 67.348.377.600 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 67.236.057.088 Bytes frei
.
- - End Of File - - EB8BC4D34C03BF76E185BD503B1D0C2E
D41D8CD98F00B204E9800998ECF8427E
|
|
03.07.2013, 10:34
| #6 | |
| /// the machine /// TB-Ausbilder | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich.Zitat:
__________________ --> Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. |
|
03.07.2013, 10:50
| #7 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. hallo schrauber, da war tatsächlich ein Trojaner drin.. ich brauchte diese Dateien irgendwann für ein Windows Theme und habe sie dafür in den Ordner System32 kopiert. Jedoch hatte ich nie Probleme damit..? Hier die Links zu Virustotal: explorer.exe: https://www.virustotal.com/de/file/fd6ec0209480de20c58747171d39f7cd3fc4bcbfb63f832f4608c5e52fa715ae/analysis/1372844677/ explorer(old).exe: https://www.virustotal.com/de/file/c3a38b63274c6408b11d7ac36deccee5f31a0a2b924ed782f0ea1189ee551b82/analysis/1372844790/ Was soll ich jetzt machen? MfG edit: kleines Update: aus irgendeinem Grund funktioniert mein Browser wieder? Geändert von Lucas2703 (03.07.2013 um 11:40 Uhr) |
|
03.07.2013, 12:27
| #8 |
| /// the machine /// TB-Ausbilder | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. Combofix-Skript
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 15:15
| #9 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. bitteschöön  Code:
ATTFilter ComboFix 13-07-02.03 - Lucas 03/07/2013 16:09:06.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.8087.6223 [GMT 2:00]
ausgeführt von:: c:\users\Lucas\Desktop\ComboFix.exe
Benutzte Befehlsschalter :: c:\users\Lucas\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\explorer(old).exe"
"c:\windows\system32\explorer.exe"
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\explorer(old).exe
c:\windows\system32\explorer.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-06-03 bis 2013-07-03 ))))))))))))))))))))))))))))))
.
.
2013-07-03 14:11 . 2013-07-03 14:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-02 19:09 . 2013-07-02 19:09 -------- d-----w- C:\FRST
2013-07-02 13:11 . 2013-07-02 13:11 -------- dc----w- c:\users\Lucas\AppData\Local\MigWiz
2013-07-01 20:01 . 2013-07-01 20:01 -------- d-----w- c:\programdata\ATI
2013-07-01 20:00 . 2013-07-01 20:00 -------- d-----w- c:\program files\ATI
2013-06-29 13:21 . 2013-06-29 13:21 -------- d-----w- c:\program files\VideoLAN
2013-06-25 20:27 . 2013-06-25 20:27 -------- d-----w- c:\users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 20:27 . 2013-06-25 20:27 -------- d-----w- c:\programdata\PowerUp Software
2013-06-25 15:02 . 2013-06-25 15:12 -------- d-----w- c:\users\Lucas\VirtualBox VMs
2013-06-25 15:02 . 2013-07-02 18:33 -------- d-----w- c:\users\Lucas\.VirtualBox
2013-06-25 14:36 . 2013-06-25 14:36 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-06-25 14:36 . 2013-06-25 14:36 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-06-25 14:36 . 2003-09-03 00:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-06-25 14:36 . 2003-09-03 00:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-06-25 14:36 . 2003-09-03 00:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-06-25 14:36 . 2003-09-03 00:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-06-25 14:36 . 2003-09-03 00:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-06-25 14:34 . 2013-06-21 14:01 238352 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2013-06-25 14:01 . 2013-06-25 14:34 -------- dc----w- c:\windows\system32\DRVSTORE
2013-06-25 14:01 . 2013-06-21 14:00 120080 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2013-06-25 11:32 . 2013-06-25 11:32 -------- d-----w- c:\users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 11:32 . 2013-06-25 11:32 -------- d-----w- c:\programdata\Logs
2013-06-25 11:32 . 2013-04-11 14:12 19392 ----a-w- c:\windows\system32\roboot64.exe
2013-06-25 11:03 . 2013-06-25 11:24 -------- d-----w- c:\program files (x86)\UZC Trial
2013-06-25 10:57 . 2013-07-01 18:53 -------- d-----w- c:\program files (x86)\RAR Password Unlocker
2013-06-24 18:17 . 2013-06-24 18:17 -------- d-----w- c:\users\Lucas\AppData\Local\Keysticks.net
2013-06-24 18:16 . 2013-06-24 18:16 -------- d-----w- c:\programdata\Keysticks.net
2013-06-24 18:16 . 2013-06-24 18:16 -------- d-----w- c:\program files (x86)\Keysticks.net
2013-06-24 17:26 . 2013-06-24 17:26 -------- d-----w- c:\program files (x86)\Microsoft XNA
2013-06-24 13:14 . 2013-06-24 13:14 -------- d-----w- c:\users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 11:38 . 2013-06-24 11:38 -------- d-----w- c:\programdata\Ubisoft
2013-06-24 11:16 . 2013-06-24 11:16 -------- d-----w- c:\program files\Microsoft Xbox 360 Accessories
2013-06-21 21:53 . 2013-06-21 21:53 -------- d-----w- c:\users\Lucas\AppData\Local\Chromium
2013-06-21 21:49 . 2013-07-02 13:39 -------- d-----w- c:\program files (x86)\Rockstar Games
2013-06-21 21:40 . 2013-06-21 21:40 -------- d-----w- c:\programdata\Rockstar Games
2013-06-21 14:00 . 2013-06-21 14:00 204048 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2013-06-21 14:00 . 2013-06-21 14:00 146704 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2013-06-21 14:00 . 2013-06-21 14:00 131856 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2013-06-21 14:00 . 2013-06-21 14:00 106256 ----a-w- c:\windows\system32\drivers\VBoxUSB.sys
2013-06-20 20:08 . 2013-06-20 20:08 -------- d-----w- c:\programdata\Codemasters
2013-06-15 14:06 . 2013-06-20 20:08 -------- d-----w- c:\programdata\Steam
2013-06-15 11:29 . 2013-06-15 11:29 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2013-06-15 11:03 . 2013-06-15 11:03 -------- d-----w- c:\users\Lucas\AppData\Local\4A Games
2013-06-15 11:03 . 2013-06-15 11:03 -------- d-----w- c:\programdata\RELOADED
2013-06-12 18:19 . 2013-03-12 10:47 1431552 ----a-w- c:\windows\SysWow64\rewire.dll
2013-06-12 18:19 . 2013-06-12 18:19 -------- d-----w- c:\users\Lucas\AppData\Roaming\Image-Line
2013-06-12 18:19 . 2013-06-26 22:37 -------- d-----w- c:\program files\Image-Line
2013-06-12 18:18 . 2009-09-15 09:14 1554944 ----a-w- c:\windows\SysWow64\vorbis.acm
2013-06-12 18:18 . 2013-06-26 22:37 -------- d-----w- c:\program files (x86)\DSPRobotics
2013-06-12 18:18 . 2013-06-12 18:18 -------- d-----w- c:\users\Lucas\AppData\Roaming\FlowStone
2013-06-11 18:56 . 2013-06-11 18:56 -------- d-----w- c:\users\Lucas\AppData\Local\My Games
2013-06-09 10:36 . 2013-06-09 10:36 34032 ----a-w- c:\windows\system32\drivers\seehcri.sys
2013-06-09 10:26 . 2013-06-09 10:26 -------- d-----w- c:\program files (x86)\Sony Mobile
2013-06-08 18:46 . 2013-06-29 20:10 -------- d-----w- C:\Downloads
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-02 14:45 . 2009-07-13 23:55 332288 ----a-w- c:\windows\system32\uxtheme.dll
2013-07-02 14:45 . 2012-11-17 18:54 2851840 ----a-w- c:\windows\system32\themeui.dll
2013-07-02 14:45 . 2009-07-13 23:54 44544 ----a-w- c:\windows\system32\themeservice.dll
2013-06-26 10:25 . 2013-05-07 10:20 83672 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-06-25 14:00 . 2013-05-07 19:28 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-06-25 14:00 . 2013-05-08 08:54 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-06-25 14:00 . 2012-12-18 14:56 291088 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-06-24 11:28 . 2013-05-08 08:54 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-06-22 10:10 . 2012-11-17 15:37 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-22 10:10 . 2012-11-17 15:37 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 20:55 . 2012-11-19 21:12 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-05-26 14:31 . 2009-08-18 10:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2013-05-26 14:31 . 2009-08-18 09:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-04-30 22:50 . 2013-04-26 14:39 5 ----a-w- c:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
2013-04-26 14:54 . 2013-04-26 14:54 27760 ----a-w- c:\windows\system32\drivers\ggsemc.sys
2013-04-26 14:54 . 2013-04-26 14:54 1721576 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2013-04-26 14:54 . 2013-04-26 14:54 14448 ----a-w- c:\windows\system32\drivers\ggflt.sys
2013-04-23 10:15 . 2013-01-15 11:52 419840 ----a-w- c:\windows\system32\wrap_oal.dll
2013-04-23 10:15 . 2013-01-15 11:52 413696 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-04-23 10:15 . 2013-01-15 11:52 111616 ----a-w- c:\windows\system32\OpenAL32.dll
2013-04-23 10:15 . 2013-01-15 11:52 102400 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-04-13 05:49 . 2013-05-16 15:42 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-16 15:42 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-16 15:42 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-16 15:42 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-16 15:42 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-16 15:42 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 16:52 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-16 15:42 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-16 15:42 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-16 15:41 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-04-07 21:15 . 2013-04-07 21:15 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-04-07 21:15 . 2013-04-07 21:15 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-04-07 21:15 . 2013-04-07 21:15 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}]
c:\program files (x86)\PutLockerDownloader\smarterdownloader.dll [BU]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="c:\users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-06-12 1104384]
"DAEMON Tools Lite"="e:\programme (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-06-26 345144]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-11-29 284440]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-26 291608]
"hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
"Control Center"="c:\program files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe" [2009-05-21 544256]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-09-28 642728]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\appinit_dll.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,192.168.2.108,1"=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 dump_wmimmc;dump_wmimmc;e:\programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys;e:\programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys;c:\windows\SYSNATIVE\Drivers\VBoxUSB.sys [x]
R3 WPRO_41_2001;WinPcap Packet Driver (WPRO_41_2001);c:\windows\system32\drivers\WPRO_41_2001.sys;c:\windows\SYSNATIVE\drivers\WPRO_41_2001.sys [x]
R3 xsherlock;xsherlock;c:\windows\system32\xsherlock.xem;c:\windows\SYSNATIVE\xsherlock.xem [x]
R4 AntUpdaterService;Ant Toolbar updater service;c:\program files (x86)\Ant.com\IE add-on\AntUpdaterService.exe;c:\program files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [x]
R4 HTCMonitorService;HTCMonitorService;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [x]
R4 ISCTAgent;ISCT Always Updated Agent;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe;c:\program files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [x]
R4 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S0 asahci64;asahci64;c:\windows\system32\DRIVERS\asahci64.sys;c:\windows\SYSNATIVE\DRIVERS\asahci64.sys [x]
S0 AsrRamDisk;AsrRamDisk;c:\windows\system32\DRIVERS\AsrRamDisk.sys;c:\windows\SYSNATIVE\DRIVERS\AsrRamDisk.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 AsrAppCharger;AsrAppCharger;c:\windows\system32\DRIVERS\AsrAppCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AsrAppCharger.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 LucidSrv;LucidSrv;c:\program files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe;c:\program files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [x]
S2 Realtek11nCU;Realtek11nCU;c:\program files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe;c:\program files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [x]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 AxtuDrv;AxtuDrv;c:\windows\SysWOW64\Drivers\AxtuDrv.sys;c:\windows\SysWOW64\Drivers\AxtuDrv.sys [x]
S3 cmudaxp;ASUS Xonar DGX Audio Interface;c:\windows\system32\drivers\cmudaxp.sys;c:\windows\SYSNATIVE\drivers\cmudaxp.sys [x]
S3 ikbevent;Intel Upper keyboard Class Filter Driver;c:\windows\system32\DRIVERS\ikbevent.sys;c:\windows\SYSNATIVE\DRIVERS\ikbevent.sys [x]
S3 imsevent;Intel Upper Mouse Class Filter Driver;c:\windows\system32\DRIVERS\imsevent.sys;c:\windows\SYSNATIVE\DRIVERS\imsevent.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\DRIVERS\ISCTD64.sys;c:\windows\SYSNATIVE\DRIVERS\ISCTD64.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\rtwlanu.sys;c:\windows\SYSNATIVE\DRIVERS\rtwlanu.sys [x]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
S3 VirtuWDDM;VirtuWDDM;c:\windows\system32\DRIVERS\VirtuWDDM.sys;c:\windows\SYSNATIVE\DRIVERS\VirtuWDDM.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-07-03 09:27 1165776 ----a-w- c:\program files (x86)\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15 18:40]
.
2013-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15 18:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VIRTU_MVP_AUTORUN"="c:\program files (x86)\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe" [BU]
"XFast LAN"="c:\program files\ASRock\XFast LAN\cFosSpeed.exe" [2011-10-19 1441152]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-10 171040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-10 399392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-12 440600]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2012-11-29 7406392]
"VIRTU MVP"="c:\program files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe" [2013-02-07 3099880]
"Cmaudio8788"="c:\windows\Syswow64\cmicnfgp.dll" [2011-05-12 8769536]
"Cmaudio8788GX"="c:\windows\syswow64\HsMgr.exe" [2008-07-11 200704]
"Cmaudio8788GX64"="c:\windows\system\HsMgr64.exe" [2008-07-11 282112]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-10-01 825184]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\appinit_dll.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,192.168.2.108,1"=""
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: An OneNote s&enden - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default\
FF - ExtSQL: !HIDDEN! 2012-11-19 16:39; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\xsherlock]
"ImagePath"="c:\windows\system32\xsherlock.xem"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-07-03 16:12:20
ComboFix-quarantined-files.txt 2013-07-03 14:12
.
Vor Suchlauf: 15 Verzeichnis(se), 67.132.469.248 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 67.068.870.656 Bytes frei
.
- - End Of File - - 18D9F58F296712DD26C9EF878E5845F2
D41D8CD98F00B204E9800998ECF8427E
|
|
03.07.2013, 18:12
| #10 |
| /// the machine /// TB-Ausbilder | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST Log bitte . Was macht das Inet?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 19:14
| #11 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. hi schrauber, also Internet funktioniert wieder hier sind die Logfiles: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-07-2013
Ran by Lucas (administrator) on 03-07-2013 20:11:23
Running from C:\Users\Lucas\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
() C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
() C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
(Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\lucidservices.exe
() C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [VIRTU_MVP_AUTORUN] %ProgramFiles%\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hide [3099880 2013-02-07] ()
HKLM\...\Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] ()
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE [x]
HKLM\...\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized [7406392 2012-11-29] (Logitech Inc.)
HKLM\...\Run: [VIRTU MVP] C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hide [3099880 2013-02-07] ()
HKLM\...\Run: [Cmaudio8788] C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd [8769536 2011-05-12] (C-Media Corporation)
HKLM\...\Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe Envoke [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe Envoke [282112 2008-07-11] ()
HKLM\...\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Spotify Web Helper] "C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-06-12] (Spotify Ltd)
HKCU\...\Run: [DAEMON Tools Lite] "E:\Programme (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [Control Center] C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe [544256 2009-05-21] ()
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] [x]
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll [512744 2013-02-07] (Lucidlogix Inc.)
AppInit_DLLs-x32: C:\Windows\SysWOW64\appinit_dll.dll [470248 2013-02-07] (Lucidlogix Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files (x86)\Ant.com\IE add-on\download.dll (Ant.com)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files (x86)\Ant.com\IE add-on\anttoolbar.dll (Ant.com)
Toolbar: HKCU - No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: <?xml version="1.0"?>
<RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:id>smartwebprinting@hp.com</em:id>
<em:version>4.5</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0.0.0</em:minVersion>
<em:maxVersion>3.*.*.*</em:maxVersion>
</Description>
</em:targetApplication>
<!-- front-end metadata -->
<em:name>HP Smart Web Printing</em:name>
<em:description>Print what you want, how you want.</em:description>
<em:creator>hp.com</em:creator>
<em:homepageURL>hxxp://www.hp.com/go/smartwebprinting</em:homepageURL>
<em:aboutURL>chrome://hpsmartwebprinting/content/about.xul</em:aboutURL>
<em:iconURL>chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png</em:iconURL>
<em:targetPlatform>WINNT_x86-msvc</em:targetPlatform>
</Description>
</RDF>
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: <?xml version="1.0"?>
<RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:id>smartwebprinting@hp.com</em:id>
<em:version>4.5</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0.0.0</em:minVersion>
<em:maxVersion>3.*.*.*</em:maxVersion>
</Description>
</em:targetApplication>
<!-- front-end metadata -->
<em:name>HP Smart Web Printing</em:name>
<em:description>Print what you want, how you want.</em:description>
<em:creator>hp.com</em:creator>
<em:homepageURL>hxxp://www.hp.com/go/smartwebprinting</em:homepageURL>
<em:aboutURL>chrome://hpsmartwebprinting/content/about.xul</em:aboutURL>
<em:iconURL>chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png</em:iconURL>
<em:targetPlatform>WINNT_x86-msvc</em:targetPlatform>
</Description>
</RDF>
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Free Download Manager Click Catcher Plug-In for Netscape, Opera, Mozilla) - C:\Program Files (x86)\Google\Chrome\Application\plugins\npfdm.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CHR Plugin: (Unity Player) - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (VLC Web Plugin) - E:\Programme (x86)\VLC\npvlc.dll (VideoLAN)
CHR Extension: (From Dust) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\anelkojiepicmcldgnmkplocifmegpfj\0.0.0.23_0
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Slinky Elegant) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0
CHR Extension: (Google Search) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (ProxMate - Improve your Internet!) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.7_0
CHR Extension: (Google Play) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0
CHR Extension: (Amazon Windowshop) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nielaigelomefgdoljcpfgbdbfefhdjc\1.1.0.0_0
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)
S4 AntUpdaterService; C:\Program Files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [520216 2011-06-29] (Ant.com)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-02-18] ()
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 LucidSrv; C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [16104 2013-02-07] (LucidLogix)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4340664 2012-07-15] (INCA Internet Co., Ltd.)
S2 PinnacleUpdateSvc; E:\Programme (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe [430080 2011-05-09] (PowerUp Software, LLC)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-25] ()
R2 Realtek11nCU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 xsherlock; C:\Windows\SysWow64\xsherlock.xem [666720 2012-12-16] (Wellbia.com Co., Ltd.)
S4 HTCMonitorService; "C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe" [x]
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2727936 2011-12-20] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-15] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWow64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1047144 2011-09-20] (Realtek Semiconductor Corporation )
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2013-06-09] (Sony Ericsson Mobile Communications)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-06-21] (Oracle Corporation)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2013-01-03] ()
R3 AxtuDrv; \??\C:\Windows\SysWOW64\Drivers\AxtuDrv.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 dump_wmimmc; \??\E:\Programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 MBfilt; system32\drivers\MBfilt64.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-03 20:09 - 2013-07-03 20:09 - 00000913 ____A C:\Users\Lucas\Desktop\JRT.txt
2013-07-03 20:07 - 2013-07-03 20:07 - 00000000 ____D C:\Windows\ERUNT
2013-07-03 20:04 - 2013-07-03 20:04 - 00000000 ____D C:\JRT
2013-07-03 20:02 - 2013-07-03 20:02 - 00003891 ____A C:\Users\Lucas\Desktop\AdwCleaner[S1].txt
2013-07-03 20:00 - 2013-07-03 20:01 - 00003891 ____A C:\AdwCleaner[S1].txt
2013-07-03 19:55 - 2013-07-03 19:55 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Lucas\Desktop\JRT.exe
2013-07-03 19:54 - 2013-07-03 19:54 - 00650027 ____A C:\Users\Lucas\Desktop\adwcleaner.exe
2013-07-03 19:52 - 2013-07-03 19:52 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00001113 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-03 19:19 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-07-03 19:18 - 2013-07-03 19:18 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Lucas\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-03 16:12 - 2013-07-03 16:12 - 00028217 ____A C:\Users\Lucas\Desktop\ComboFix.txt
2013-07-03 16:07 - 2013-07-03 16:03 - 05084414 ____R (Swearware) C:\Users\Lucas\Desktop\ComboFix.exe
2013-07-03 10:17 - 2013-07-03 16:12 - 00000000 ____D C:\Qoobox
2013-07-03 10:17 - 2013-07-03 10:23 - 00000000 ____D C:\Windows\erdnt
2013-07-03 10:17 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-07-03 10:17 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-07-03 10:17 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-07-02 21:09 - 2013-07-02 21:09 - 00000000 ____D C:\FRST
2013-07-02 21:09 - 2013-07-02 21:08 - 01933556 ____A (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2013-07-02 15:11 - 2013-07-02 15:11 - 00000000 ___DC C:\Users\Lucas\AppData\Local\MigWiz
2013-07-01 22:01 - 2013-07-01 22:01 - 00000000 ____D C:\ProgramData\ATI
2013-07-01 22:00 - 2013-07-01 22:00 - 00000000 ____D C:\Program Files\ATI
2013-07-01 20:47 - 2013-07-01 21:02 - 187682976 ____A (AMD Inc.) C:\Users\Lucas\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-01 20:47 - 2013-07-01 20:59 - 141110624 ____A (Advanced Micro Devices, Inc.) C:\Users\Lucas\Downloads\13-4_win7_win8_64_dd_ccc_whql.exe
2013-06-29 17:20 - 2013-06-29 17:20 - 00594215 ____A C:\Users\Lucas\Downloads\MELLISA_1920x1080.jpg.zip
2013-06-29 15:21 - 2013-06-29 15:21 - 00000000 ____D C:\Program Files\VideoLAN
2013-06-27 02:43 - 2013-06-27 02:43 - 00000000 ____D C:\Users\Lucas\Documents\Riptide
2013-06-27 02:41 - 2013-06-27 02:41 - 00000562 ____A C:\Windows\wmsetup.log
2013-06-26 15:45 - 2013-06-26 15:46 - 08435712 ____A C:\Users\Lucas\Downloads\archpr454_setup_en.msi
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\ProgramData\PowerUp Software
2013-06-25 20:29 - 2013-06-25 20:29 - 11639710 ____A C:\Users\Lucas\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.2.14-86644.vbox-extpack
2013-06-25 17:05 - 2013-06-25 19:00 - 2463242240 ____A C:\Users\Lucas\Downloads\X15-65740.iso
2013-06-25 17:02 - 2013-07-02 20:33 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-06-25 17:02 - 2013-06-25 17:12 - 00000000 ____D C:\Users\Lucas\VirtualBox VMs
2013-06-25 16:47 - 2013-07-03 10:13 - 00119296 ____A C:\Windows\SysWOW64\zlib.dll
2013-06-25 16:47 - 2008-04-13 20:11 - 00619008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dx7vb.dll
2013-06-25 16:47 - 2008-01-13 20:59 - 00036864 ____A C:\Windows\SysWOW64\dxinputdll.dll
2013-06-25 16:47 - 2008-01-13 17:36 - 00091632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dsofile.dll
2013-06-25 16:47 - 2007-12-26 23:33 - 00608448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX
2013-06-25 16:47 - 2007-04-04 22:53 - 00081768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-06-25 16:47 - 2004-07-14 18:26 - 00152848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2013-06-25 16:47 - 2004-03-09 19:45 - 00212240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RICHTX32.OCX
2013-06-25 16:47 - 2003-01-26 14:41 - 00040960 ____A (vbAccelerator) C:\Windows\SysWOW64\SSubTmr6.dll
2013-06-25 16:47 - 2002-08-09 12:18 - 00045056 ____N (Microsoft) C:\Windows\SysWOW64\NTSVC.ocx
2013-06-25 16:47 - 2001-04-05 07:43 - 00094208 ___RS (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2013-06-25 16:47 - 2000-12-06 03:00 - 00109248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2013-06-25 16:47 - 2000-04-03 21:52 - 00164144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2013-06-25 16:47 - 1999-05-17 14:55 - 00057344 ____N () C:\Windows\SysWOW64\ADsSecurity.dll
2013-06-25 16:47 - 1998-06-18 01:00 - 00089360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.DLL
2013-06-25 16:34 - 2013-06-21 16:01 - 00238352 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxDrv.sys
2013-06-25 16:01 - 2013-06-21 16:00 - 00120080 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSBMon.sys
2013-06-25 15:21 - 2013-06-25 15:30 - 99246864 ____A (Oracle Corporation) C:\Users\Lucas\Downloads\VirtualBox-4.2.14-86644-Win.exe
2013-06-25 13:32 - 2013-06-25 13:32 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 13:32 - 2013-04-11 16:12 - 00019392 ____A (Dll-Files.com) C:\Windows\System32\roboot64.exe
2013-06-25 13:03 - 2013-06-25 13:24 - 00000000 ____D C:\Program Files (x86)\UZC Trial
2013-06-25 12:57 - 2013-07-01 20:53 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2013-06-25 07:12 - 2013-06-25 07:12 - 00000044 ____A C:\Users\Lucas\Downloads\Password for Watch Dogs Demo.txt
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\Documents\Keysticks
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\AppData\Local\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\ProgramData\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\Program Files (x86)\Keysticks.net
2013-06-24 19:26 - 2013-06-24 19:26 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-06-24 15:14 - 2013-06-24 15:14 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 13:38 - 2013-06-24 13:38 - 00000000 ____D C:\ProgramData\Ubisoft
2013-06-24 13:16 - 2013-06-24 13:16 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-06-21 23:53 - 2013-06-21 23:53 - 00000000 ____D C:\Users\Lucas\AppData\Local\Chromium
2013-06-21 23:49 - 2013-07-02 15:39 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-06-21 23:40 - 2013-06-21 23:40 - 00000000 ____D C:\ProgramData\Rockstar Games
2013-06-21 16:00 - 2013-06-21 16:00 - 00204048 ____A (Oracle Corporation) C:\Windows\System32\VBoxNetFltNobj.dll
2013-06-21 16:00 - 2013-06-21 16:00 - 00146704 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetFlt.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00131856 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetAdp.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00106256 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSB.sys
2013-06-21 14:23 - 2013-06-21 14:23 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-06-20 22:08 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Codemasters
2013-06-15 23:24 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-15 23:24 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-15 23:24 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-15 23:24 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-15 23:24 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-15 16:06 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Steam
2013-06-15 15:11 - 2013-06-15 15:11 - 00000000 ____D C:\Users\Lucas\Documents\CPY_SAVES
2013-06-15 13:29 - 2013-06-15 13:29 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-15 13:14 - 2013-06-15 13:14 - 00000000 ____D C:\Users\Lucas\Documents\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\ProgramData\RELOADED
2013-06-12 22:54 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-12 22:54 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 22:54 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 22:54 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-12 22:54 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-12 22:54 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-12 20:19 - 2013-06-27 00:37 - 00000000 ____D C:\Program Files\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\Documents\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Image-Line
2013-06-12 20:19 - 2013-03-12 12:47 - 01431552 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll
2013-06-12 20:18 - 2013-06-27 00:37 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2013-06-12 20:18 - 2013-06-12 20:18 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\FlowStone
2013-06-12 20:18 - 2009-09-15 11:14 - 01554944 ____A (HMS hxxp://hp.vector.co.jp/authors/VA012897/) C:\Windows\SysWOW64\vorbis.acm
2013-06-12 10:11 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 10:11 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 10:11 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 10:11 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 10:11 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 10:11 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 10:11 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 10:11 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 10:11 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 10:11 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 10:11 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 10:11 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 10:11 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 10:11 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 10:11 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 10:11 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-11 20:56 - 2013-06-11 20:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\My Games
2013-06-09 12:36 - 2013-06-09 12:36 - 00034032 ____A (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\seehcri.sys
2013-06-09 12:26 - 2013-06-09 12:26 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
==================== One Month Modified Files and Folders =======
2013-07-03 20:09 - 2013-07-03 20:09 - 00000913 ____A C:\Users\Lucas\Desktop\JRT.txt
2013-07-03 20:09 - 2009-07-14 06:45 - 00014800 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-03 20:09 - 2009-07-14 06:45 - 00014800 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-03 20:07 - 2013-07-03 20:07 - 00000000 ____D C:\Windows\ERUNT
2013-07-03 20:07 - 2009-07-14 19:58 - 00699092 ____A C:\Windows\System32\perfh007.dat
2013-07-03 20:07 - 2009-07-14 19:58 - 00149232 ____A C:\Windows\System32\perfc007.dat
2013-07-03 20:07 - 2009-07-14 07:13 - 01619284 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-03 20:04 - 2013-07-03 20:04 - 00000000 ____D C:\JRT
2013-07-03 20:02 - 2013-07-03 20:02 - 00003891 ____A C:\Users\Lucas\Desktop\AdwCleaner[S1].txt
2013-07-03 20:02 - 2012-11-18 12:58 - 00056423 ____A C:\Windows\setupact.log
2013-07-03 20:02 - 2012-11-15 22:47 - 00000000 ____D C:\Users\Lucas\Lucidlogix
2013-07-03 20:02 - 2012-11-15 20:40 - 00001104 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-03 20:02 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-03 20:01 - 2013-07-03 20:00 - 00003891 ____A C:\AdwCleaner[S1].txt
2013-07-03 20:01 - 2012-11-15 20:26 - 01692458 ____A C:\Windows\WindowsUpdate.log
2013-07-03 19:56 - 2012-12-17 18:30 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\uTorrent
2013-07-03 19:56 - 2012-11-18 12:58 - 02338234 ____A C:\Windows\PFRO.log
2013-07-03 19:55 - 2013-07-03 19:55 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Lucas\Desktop\JRT.exe
2013-07-03 19:55 - 2012-11-15 20:40 - 00001108 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-03 19:54 - 2013-07-03 19:54 - 00650027 ____A C:\Users\Lucas\Desktop\adwcleaner.exe
2013-07-03 19:52 - 2013-07-03 19:52 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00001113 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-03 19:18 - 2013-07-03 19:18 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Lucas\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-03 18:38 - 2012-11-17 00:35 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2013-07-03 16:12 - 2013-07-03 16:12 - 00028217 ____A C:\Users\Lucas\Desktop\ComboFix.txt
2013-07-03 16:12 - 2013-07-03 10:17 - 00000000 ____D C:\Qoobox
2013-07-03 16:11 - 2009-07-14 04:34 - 00000215 ____A C:\Windows\system.ini
2013-07-03 16:06 - 2012-11-15 22:25 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2013-07-03 16:03 - 2013-07-03 16:07 - 05084414 ____R (Swearware) C:\Users\Lucas\Desktop\ComboFix.exe
2013-07-03 10:25 - 2009-07-14 05:20 - 00000000 __RHD C:\users\Default
2013-07-03 10:24 - 2013-04-14 01:44 - 00000000 ____D C:\Users\Lucas\Desktop\Stuff
2013-07-03 10:23 - 2013-07-03 10:17 - 00000000 ____D C:\Windows\erdnt
2013-07-03 10:13 - 2013-06-25 16:47 - 00119296 ____A C:\Windows\SysWOW64\zlib.dll
2013-07-02 21:09 - 2013-07-02 21:09 - 00000000 ____D C:\FRST
2013-07-02 21:08 - 2013-07-02 21:09 - 01933556 ____A (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2013-07-02 20:50 - 2012-11-16 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Paint.NET
2013-07-02 20:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF
2013-07-02 20:33 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-07-02 16:45 - 2012-11-17 20:54 - 02851840 ____A (Microsoft Corporation) C:\Windows\System32\themeui.dll
2013-07-02 16:45 - 2009-07-14 01:55 - 00332288 ____A (Microsoft Corporation) C:\Windows\System32\uxtheme.dll
2013-07-02 16:45 - 2009-07-14 01:54 - 00044544 ____A (Microsoft Corporation) C:\Windows\System32\themeservice.dll
2013-07-02 15:41 - 2013-01-23 17:09 - 00000000 ____D C:\Users\Lucas\Documents\Euro Truck Simulator 2
2013-07-02 15:41 - 2012-11-15 23:32 - 00000000 ___RD C:\Users\Lucas\Desktop\Games
2013-07-02 15:40 - 2012-11-15 20:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-02 15:39 - 2013-06-21 23:49 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-07-02 15:11 - 2013-07-02 15:11 - 00000000 ___DC C:\Users\Lucas\AppData\Local\MigWiz
2013-07-02 14:04 - 2012-11-30 02:19 - 00000000 ____D C:\Windows\Minidump
2013-07-02 12:22 - 2012-12-08 16:40 - 00000000 ____D C:\Users\Lucas\Documents\Eigene Scans
2013-07-01 22:01 - 2013-07-01 22:01 - 00000000 ____D C:\ProgramData\ATI
2013-07-01 22:01 - 2012-11-15 22:15 - 00000000 ____D C:\ProgramData\AMD
2013-07-01 22:00 - 2013-07-01 22:00 - 00000000 ____D C:\Program Files\ATI
2013-07-01 21:51 - 2013-01-10 13:57 - 00000000 ____D C:\ProgramData\Package Cache
2013-07-01 21:41 - 2012-11-29 17:21 - 00000000 ____D C:\AMD
2013-07-01 21:02 - 2013-07-01 20:47 - 187682976 ____A (AMD Inc.) C:\Users\Lucas\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-01 20:59 - 2013-07-01 20:47 - 141110624 ____A (Advanced Micro Devices, Inc.) C:\Users\Lucas\Downloads\13-4_win7_win8_64_dd_ccc_whql.exe
2013-07-01 20:53 - 2013-06-25 12:57 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2013-07-01 14:04 - 2012-11-15 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2013-06-29 22:57 - 2013-01-05 15:42 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\TS3Client
2013-06-29 17:20 - 2013-06-29 17:20 - 00594215 ____A C:\Users\Lucas\Downloads\MELLISA_1920x1080.jpg.zip
2013-06-29 17:20 - 2012-11-16 15:56 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2013-06-29 15:21 - 2013-06-29 15:21 - 00000000 ____D C:\Program Files\VideoLAN
2013-06-27 02:43 - 2013-06-27 02:43 - 00000000 ____D C:\Users\Lucas\Documents\Riptide
2013-06-27 02:41 - 2013-06-27 02:41 - 00000562 ____A C:\Windows\wmsetup.log
2013-06-27 02:41 - 2012-11-21 20:43 - 00440562 ____A C:\Windows\DirectX.log
2013-06-27 00:37 - 2013-06-12 20:19 - 00000000 ____D C:\Program Files\Image-Line
2013-06-27 00:37 - 2013-06-12 20:18 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2013-06-27 00:36 - 2013-01-05 15:42 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-26 15:46 - 2013-06-26 15:45 - 08435712 ____A C:\Users\Lucas\Downloads\archpr454_setup_en.msi
2013-06-26 12:25 - 2013-05-07 12:20 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\ProgramData\PowerUp Software
2013-06-25 20:29 - 2013-06-25 20:29 - 11639710 ____A C:\Users\Lucas\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.2.14-86644.vbox-extpack
2013-06-25 19:00 - 2013-06-25 17:05 - 2463242240 ____A C:\Users\Lucas\Downloads\X15-65740.iso
2013-06-25 17:12 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\VirtualBox VMs
2013-06-25 17:02 - 2012-11-15 20:26 - 00000000 ____D C:\users\Lucas
2013-06-25 16:00 - 2013-05-08 10:54 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2013-06-25 16:00 - 2013-05-07 21:28 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-25 16:00 - 2012-12-18 16:56 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2013-06-25 15:30 - 2013-06-25 15:21 - 99246864 ____A (Oracle Corporation) C:\Users\Lucas\Downloads\VirtualBox-4.2.14-86644-Win.exe
2013-06-25 13:32 - 2013-06-25 13:32 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 13:24 - 2013-06-25 13:03 - 00000000 ____D C:\Program Files (x86)\UZC Trial
2013-06-25 07:12 - 2013-06-25 07:12 - 00000044 ____A C:\Users\Lucas\Downloads\Password for Watch Dogs Demo.txt
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\Documents\Keysticks
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\AppData\Local\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\ProgramData\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\Program Files (x86)\Keysticks.net
2013-06-24 19:26 - 2013-06-24 19:26 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-06-24 15:14 - 2013-06-24 15:14 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 13:44 - 2012-12-18 13:54 - 00000000 ____D C:\Users\Lucas\AppData\Local\Ubisoft Game Launcher
2013-06-24 13:38 - 2013-06-24 13:38 - 00000000 ____D C:\ProgramData\Ubisoft
2013-06-24 13:28 - 2013-05-08 10:54 - 00189248 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2013-06-24 13:16 - 2013-06-24 13:16 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-06-22 12:10 - 2012-11-17 17:37 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-22 12:10 - 2012-11-17 17:37 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-21 23:53 - 2013-06-21 23:53 - 00000000 ____D C:\Users\Lucas\AppData\Local\Chromium
2013-06-21 23:53 - 2012-11-17 17:22 - 00000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2013-06-21 23:40 - 2013-06-21 23:40 - 00000000 ____D C:\ProgramData\Rockstar Games
2013-06-21 23:40 - 2013-02-25 16:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\SKIDROW
2013-06-21 16:01 - 2013-06-25 16:34 - 00238352 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxDrv.sys
2013-06-21 16:00 - 2013-06-25 16:01 - 00120080 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSBMon.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00204048 ____A (Oracle Corporation) C:\Windows\System32\VBoxNetFltNobj.dll
2013-06-21 16:00 - 2013-06-21 16:00 - 00146704 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetFlt.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00131856 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetAdp.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00106256 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSB.sys
2013-06-21 14:23 - 2013-06-21 14:23 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-06-20 22:08 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Codemasters
2013-06-20 22:08 - 2013-06-15 16:06 - 00000000 ____D C:\ProgramData\Steam
2013-06-20 22:08 - 2012-11-16 20:37 - 00000000 ____D C:\Users\Lucas\Documents\my games
2013-06-20 21:42 - 2012-11-15 22:29 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Skype
2013-06-18 15:34 - 2013-04-16 13:04 - 00000000 ____D C:\Users\Lucas\Desktop\eBay Bilder
2013-06-18 15:23 - 2013-05-07 23:02 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-15 15:11 - 2013-06-15 15:11 - 00000000 ____D C:\Users\Lucas\Documents\CPY_SAVES
2013-06-15 13:29 - 2013-06-15 13:29 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-15 13:14 - 2013-06-15 13:14 - 00000000 ____D C:\Users\Lucas\Documents\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\ProgramData\RELOADED
2013-06-14 16:54 - 2012-12-13 19:29 - 00000000 ____D C:\Users\Lucas\Documents\Schule
2013-06-13 18:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-13 17:34 - 2013-02-17 21:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-13 17:34 - 2012-11-15 22:28 - 00000000 ____D C:\ProgramData\Skype
2013-06-12 22:55 - 2012-11-19 23:12 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\Documents\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Image-Line
2013-06-12 20:18 - 2013-06-12 20:18 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\FlowStone
2013-06-11 20:56 - 2013-06-11 20:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\My Games
2013-06-09 12:42 - 2013-05-30 15:06 - 00000000 ____D C:\Users\Lucas\Desktop\custom roms
2013-06-09 12:36 - 2013-06-09 12:36 - 00034032 ____A (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\seehcri.sys
2013-06-09 12:26 - 2013-06-09 12:26 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
2013-06-08 16:08 - 2013-06-15 23:24 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-15 23:24 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-15 23:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-15 23:24 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-15 23:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-05 22:17 - 2012-12-20 19:35 - 01592628 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-06-04 19:45 - 2013-02-13 17:31 - 00000000 ____D C:\ProgramData\Origin
2013-06-04 16:55 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2013-06-04 16:52 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Local\Origin
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-06-25 17:31
==================== End Of Log ============================
Code:
ATTFilter # AdwCleaner v2.304 - Datei am 03/07/2013 um 20:00:35 erstellt
# Aktualisiert am 03/07/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : Lucas - LUCAS-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\Lucas\Desktop\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Ordner Gelöscht : C:\ProgramData\DeviceVM
Ordner Gelöscht : C:\Users\Lucas\AppData\Local\PutLockerDownloader
Ordner Gelöscht : C:\Users\Lucas\AppData\Roaming\DeviceVM
Ordner Gelöscht : C:\Users\Lucas\AppData\Roaming\dvdvideosoftiehelpers
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\1ClickDownload
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\StartSearch
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\PutLockerDownloader
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\PutlockerDownloader_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\PutlockerDownloader_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\apfdadfinodckpcehhdhjlgiphgnbfci
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F1AF26F8-1828-4279-ABCE-074EF3235BD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16611
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Mozilla Firefox v19.0.2 (de)
Datei : C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v27.0.1453.116
Datei : C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Preferences
Gelöscht [l.2539] : homepage = "hxxp://home.sweetim.com/?crg=3.1010000.10011&barid={37180357-6276-11E2-B597-DFEF4C55[...]
*************************
AdwCleaner[S1].txt - [3768 octets] - [03/07/2013 20:00:35]
########## EOF - C:\AdwCleaner[S1].txt - [3828 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Lucas on 03/07/2013 at 20:07:25,95
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Lucas\appdata\local\torch"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03/07/2013 at 20:09:15,79
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.07.03.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16618 Lucas :: LUCAS-PC [Administrator] 03/07/2013 19:53:03 mbam-log-2013-07-03 (19-53-03).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 214533 Laufzeit: 1 Minute(n), 23 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Windows\EXPLORER1.EXE (Trojan.Agent) -> Löschen bei Neustart. (Ende) |
|
03.07.2013, 20:24
| #12 |
| /// the machine /// TB-Ausbilder | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich.ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST logfile. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
03.07.2013, 23:59
| #13 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. also soweit ich weiß funktioniert wieder alles. Nur kann ich immer noch keine Bilddateien öffnen... Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=1c8c0a0824b6104b95dadf707da6d3ce
# engine=14259
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-03 10:51:31
# local_time=2013-07-04 12:51:31 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 96 5536 238315181 0 0
# compatibility_mode=5893 16776574 66 85 18163113 124521741 0 0
# scanned=297983
# found=1
# cleaned=0
# scan_time=5327
sh=1DDC07CE2950F5A9927AED8C3A2745B5B9562BAF ft=1 fh=5df8fbc7b4e382d6 vn="probably unknown NewHeur_PE virus" ac=I fn="E:\unnötiger shit\BO & MW3 Hack\BO Hack.exe"
Code:
ATTFilter Results of screen317's Security Check version 0.99.68 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Avira Desktop Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Adobe Flash Player 11.7.700.224 Adobe Reader XI Mozilla Firefox 19.0.2 Firefox out of Date! Google Chrome 26.0.1410.64 Google Chrome 27.0.1453.116 Google Chrome Plugins... ````````Process Check: objlist.exe by Laurent```````` Avira Antivir avgnt.exe Avira Antivir avguard.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-07-2013
Ran by Lucas (administrator) on 04-07-2013 00:57:34
Running from C:\Users\Lucas\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
() C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
() C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
(Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\lucidservices.exe
() C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [VIRTU_MVP_AUTORUN] %ProgramFiles%\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hide [3099880 2013-02-07] ()
HKLM\...\Run: [XFast LAN] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] ()
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE [x]
HKLM\...\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe /minimized [7406392 2012-11-29] (Logitech Inc.)
HKLM\...\Run: [VIRTU MVP] C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe /hide [3099880 2013-02-07] ()
HKLM\...\Run: [Cmaudio8788] C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd [8769536 2011-05-12] (C-Media Corporation)
HKLM\...\Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe Envoke [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe Envoke [282112 2008-07-11] ()
HKLM\...\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun [825184 2009-10-01] (Microsoft Corporation)
HKCU\...\Run: [Spotify Web Helper] "C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [1104384 2013-06-12] (Spotify Ltd)
HKCU\...\Run: [DAEMON Tools Lite] "E:\Programme (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKCU\...\Policies\system: [DisableRegistryTools] 0
HKCU\...\Policies\system: [DisableTaskMgr] 0
HKLM-x32\...\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min [345144 2013-06-26] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [Control Center] C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe [544256 2009-05-21] ()
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] [x]
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll [512744 2013-02-07] (Lucidlogix Inc.)
AppInit_DLLs-x32: C:\Windows\SysWOW64\appinit_dll.dll [470248 2013-02-07] (Lucidlogix Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files (x86)\Ant.com\IE add-on\download.dll (Ant.com)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files (x86)\Ant.com\IE add-on\anttoolbar.dll (Ant.com)
Toolbar: HKCU - No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: <?xml version="1.0"?>
<RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:id>smartwebprinting@hp.com</em:id>
<em:version>4.5</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0.0.0</em:minVersion>
<em:maxVersion>3.*.*.*</em:maxVersion>
</Description>
</em:targetApplication>
<!-- front-end metadata -->
<em:name>HP Smart Web Printing</em:name>
<em:description>Print what you want, how you want.</em:description>
<em:creator>hp.com</em:creator>
<em:homepageURL>hxxp://www.hp.com/go/smartwebprinting</em:homepageURL>
<em:aboutURL>chrome://hpsmartwebprinting/content/about.xul</em:aboutURL>
<em:iconURL>chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png</em:iconURL>
<em:targetPlatform>WINNT_x86-msvc</em:targetPlatform>
</Description>
</RDF>
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: <?xml version="1.0"?>
<RDF xmlns="hxxp://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:em="hxxp://www.mozilla.org/2004/em-rdf#">
<Description about="urn:mozilla:install-manifest">
<em:id>smartwebprinting@hp.com</em:id>
<em:version>4.5</em:version>
<em:targetApplication>
<!-- Firefox -->
<Description>
<em:id>{ec8030f7-c20a-464f-9b0e-13a3a9e97384}</em:id>
<em:minVersion>3.0.0.0</em:minVersion>
<em:maxVersion>3.*.*.*</em:maxVersion>
</Description>
</em:targetApplication>
<!-- front-end metadata -->
<em:name>HP Smart Web Printing</em:name>
<em:description>Print what you want, how you want.</em:description>
<em:creator>hp.com</em:creator>
<em:homepageURL>hxxp://www.hp.com/go/smartwebprinting</em:homepageURL>
<em:aboutURL>chrome://hpsmartwebprinting/content/about.xul</em:aboutURL>
<em:iconURL>chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png</em:iconURL>
<em:targetPlatform>WINNT_x86-msvc</em:targetPlatform>
</Description>
</RDF>
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\PepperFlash\11.5.31.139\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Free Download Manager Click Catcher Plug-In for Netscape, Opera, Mozilla) - C:\Program Files (x86)\Google\Chrome\Application\plugins\npfdm.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Uplay PC) - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
CHR Plugin: (Unity Player) - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll No File
CHR Plugin: (VLC Web Plugin) - E:\Programme (x86)\VLC\npvlc.dll (VideoLAN)
CHR Extension: (From Dust) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\anelkojiepicmcldgnmkplocifmegpfj\0.0.0.23_0
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Slinky Elegant) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0
CHR Extension: (Google Search) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (ProxMate - Improve your Internet!) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.7_0
CHR Extension: (Google Play) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0
CHR Extension: (Amazon Windowshop) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nielaigelomefgdoljcpfgbdbfefhdjc\1.1.0.0_0
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-06-26] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-06-26] (Avira Operations GmbH & Co. KG)
S4 AntUpdaterService; C:\Program Files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [520216 2011-06-29] (Ant.com)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-02-18] ()
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 LucidSrv; C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [16104 2013-02-07] (LucidLogix)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4340664 2012-07-15] (INCA Internet Co., Ltd.)
S2 PinnacleUpdateSvc; E:\Programme (x86)\PowerUp Software\Pinnacle Game Profiler\pinnacle_updater.exe [430080 2011-05-09] (PowerUp Software, LLC)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-25] ()
R2 Realtek11nCU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 xsherlock; C:\Windows\SysWow64\xsherlock.xem [666720 2012-12-16] (Wellbia.com Co., Ltd.)
S4 HTCMonitorService; "C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe" [x]
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
==================== Drivers (Whitelisted) ====================
R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-04-07] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2727936 2011-12-20] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-15] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWow64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1047144 2011-09-20] (Realtek Semiconductor Corporation )
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2013-06-09] (Sony Ericsson Mobile Communications)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-06-21] (Oracle Corporation)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2013-01-03] ()
R3 AxtuDrv; \??\C:\Windows\SysWOW64\Drivers\AxtuDrv.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 dump_wmimmc; \??\E:\Programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 MBfilt; system32\drivers\MBfilt64.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-04 00:55 - 2013-07-04 00:55 - 00890988 ____A C:\Users\Lucas\Desktop\SecurityCheck.exe
2013-07-03 23:19 - 2013-07-03 23:19 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-03 20:09 - 2013-07-03 20:09 - 00000913 ____A C:\Users\Lucas\Desktop\JRT.txt
2013-07-03 20:07 - 2013-07-03 20:07 - 00000000 ____D C:\Windows\ERUNT
2013-07-03 20:04 - 2013-07-03 20:04 - 00000000 ____D C:\JRT
2013-07-03 20:02 - 2013-07-03 20:02 - 00003891 ____A C:\Users\Lucas\Desktop\AdwCleaner[S1].txt
2013-07-03 20:00 - 2013-07-03 20:01 - 00003891 ____A C:\AdwCleaner[S1].txt
2013-07-03 19:55 - 2013-07-03 19:55 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Lucas\Desktop\JRT.exe
2013-07-03 19:54 - 2013-07-03 19:54 - 00650027 ____A C:\Users\Lucas\Desktop\adwcleaner.exe
2013-07-03 19:52 - 2013-07-03 19:52 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00001113 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-03 19:19 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-07-03 19:18 - 2013-07-03 19:18 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Lucas\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-03 16:12 - 2013-07-03 16:12 - 00028217 ____A C:\Users\Lucas\Desktop\ComboFix.txt
2013-07-03 16:07 - 2013-07-03 16:03 - 05084414 ____R (Swearware) C:\Users\Lucas\Desktop\ComboFix.exe
2013-07-03 10:17 - 2013-07-03 16:12 - 00000000 ____D C:\Qoobox
2013-07-03 10:17 - 2013-07-03 10:23 - 00000000 ____D C:\Windows\erdnt
2013-07-03 10:17 - 2011-06-26 08:45 - 00256000 ____A C:\Windows\PEV.exe
2013-07-03 10:17 - 2010-11-07 19:20 - 00208896 ____A C:\Windows\MBR.exe
2013-07-03 10:17 - 2009-04-20 06:56 - 00060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00098816 ____A C:\Windows\sed.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00080412 ____A C:\Windows\grep.exe
2013-07-03 10:17 - 2000-08-31 02:00 - 00068096 ____A C:\Windows\zip.exe
2013-07-02 21:09 - 2013-07-02 21:09 - 00000000 ____D C:\FRST
2013-07-02 21:09 - 2013-07-02 21:08 - 01933556 ____A (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2013-07-02 15:11 - 2013-07-02 15:11 - 00000000 ___DC C:\Users\Lucas\AppData\Local\MigWiz
2013-07-01 22:01 - 2013-07-01 22:01 - 00000000 ____D C:\ProgramData\ATI
2013-07-01 22:00 - 2013-07-01 22:00 - 00000000 ____D C:\Program Files\ATI
2013-07-01 20:47 - 2013-07-01 21:02 - 187682976 ____A (AMD Inc.) C:\Users\Lucas\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-01 20:47 - 2013-07-01 20:59 - 141110624 ____A (Advanced Micro Devices, Inc.) C:\Users\Lucas\Downloads\13-4_win7_win8_64_dd_ccc_whql.exe
2013-06-29 17:20 - 2013-06-29 17:20 - 00594215 ____A C:\Users\Lucas\Downloads\MELLISA_1920x1080.jpg.zip
2013-06-29 15:21 - 2013-06-29 15:21 - 00000000 ____D C:\Program Files\VideoLAN
2013-06-27 02:43 - 2013-06-27 02:43 - 00000000 ____D C:\Users\Lucas\Documents\Riptide
2013-06-27 02:41 - 2013-06-27 02:41 - 00000562 ____A C:\Windows\wmsetup.log
2013-06-26 15:45 - 2013-06-26 15:46 - 08435712 ____A C:\Users\Lucas\Downloads\archpr454_setup_en.msi
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\ProgramData\PowerUp Software
2013-06-25 20:29 - 2013-06-25 20:29 - 11639710 ____A C:\Users\Lucas\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.2.14-86644.vbox-extpack
2013-06-25 17:05 - 2013-06-25 19:00 - 2463242240 ____A C:\Users\Lucas\Downloads\X15-65740.iso
2013-06-25 17:02 - 2013-07-02 20:33 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-06-25 17:02 - 2013-06-25 17:12 - 00000000 ____D C:\Users\Lucas\VirtualBox VMs
2013-06-25 16:47 - 2013-07-03 10:13 - 00119296 ____A C:\Windows\SysWOW64\zlib.dll
2013-06-25 16:47 - 2008-04-13 20:11 - 00619008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dx7vb.dll
2013-06-25 16:47 - 2008-01-13 20:59 - 00036864 ____A C:\Windows\SysWOW64\dxinputdll.dll
2013-06-25 16:47 - 2008-01-13 17:36 - 00091632 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dsofile.dll
2013-06-25 16:47 - 2007-12-26 23:33 - 00608448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\COMCTL32.OCX
2013-06-25 16:47 - 2007-04-04 22:53 - 00081768 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-06-25 16:47 - 2004-07-14 18:26 - 00152848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2013-06-25 16:47 - 2004-03-09 19:45 - 00212240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RICHTX32.OCX
2013-06-25 16:47 - 2003-01-26 14:41 - 00040960 ____A (vbAccelerator) C:\Windows\SysWOW64\SSubTmr6.dll
2013-06-25 16:47 - 2002-08-09 12:18 - 00045056 ____N (Microsoft) C:\Windows\SysWOW64\NTSVC.ocx
2013-06-25 16:47 - 2001-04-05 07:43 - 00094208 ___RS (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2013-06-25 16:47 - 2000-12-06 03:00 - 00109248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2013-06-25 16:47 - 2000-04-03 21:52 - 00164144 ____A (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2013-06-25 16:47 - 1999-05-17 14:55 - 00057344 ____N () C:\Windows\SysWOW64\ADsSecurity.dll
2013-06-25 16:47 - 1998-06-18 01:00 - 00089360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.DLL
2013-06-25 16:34 - 2013-06-21 16:01 - 00238352 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxDrv.sys
2013-06-25 16:01 - 2013-06-21 16:00 - 00120080 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSBMon.sys
2013-06-25 15:21 - 2013-06-25 15:30 - 99246864 ____A (Oracle Corporation) C:\Users\Lucas\Downloads\VirtualBox-4.2.14-86644-Win.exe
2013-06-25 13:32 - 2013-06-25 13:32 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 13:32 - 2013-04-11 16:12 - 00019392 ____A (Dll-Files.com) C:\Windows\System32\roboot64.exe
2013-06-25 13:03 - 2013-06-25 13:24 - 00000000 ____D C:\Program Files (x86)\UZC Trial
2013-06-25 12:57 - 2013-07-01 20:53 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2013-06-25 07:12 - 2013-06-25 07:12 - 00000044 ____A C:\Users\Lucas\Downloads\Password for Watch Dogs Demo.txt
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\Documents\Keysticks
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\AppData\Local\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\ProgramData\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\Program Files (x86)\Keysticks.net
2013-06-24 19:26 - 2013-06-24 19:26 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-06-24 15:14 - 2013-06-24 15:14 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 13:38 - 2013-06-24 13:38 - 00000000 ____D C:\ProgramData\Ubisoft
2013-06-24 13:16 - 2013-06-24 13:16 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-06-21 23:53 - 2013-06-21 23:53 - 00000000 ____D C:\Users\Lucas\AppData\Local\Chromium
2013-06-21 23:49 - 2013-07-02 15:39 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-06-21 23:40 - 2013-06-21 23:40 - 00000000 ____D C:\ProgramData\Rockstar Games
2013-06-21 16:00 - 2013-06-21 16:00 - 00204048 ____A (Oracle Corporation) C:\Windows\System32\VBoxNetFltNobj.dll
2013-06-21 16:00 - 2013-06-21 16:00 - 00146704 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetFlt.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00131856 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetAdp.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00106256 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSB.sys
2013-06-21 14:23 - 2013-06-21 14:23 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-06-20 22:08 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Codemasters
2013-06-15 23:24 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-15 23:24 - 2013-06-08 16:07 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-15 23:24 - 2013-06-08 16:06 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-15 23:24 - 2013-06-08 14:28 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-15 23:24 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-15 23:24 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-15 23:24 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-15 16:06 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Steam
2013-06-15 15:11 - 2013-06-15 15:11 - 00000000 ____D C:\Users\Lucas\Documents\CPY_SAVES
2013-06-15 13:29 - 2013-06-15 13:29 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-15 13:14 - 2013-06-15 13:14 - 00000000 ____D C:\Users\Lucas\Documents\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\ProgramData\RELOADED
2013-06-12 22:54 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-12 22:54 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-12 22:54 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 22:54 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 22:54 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 22:54 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-12 22:54 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-12 22:54 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-12 20:19 - 2013-06-27 00:37 - 00000000 ____D C:\Program Files\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\Documents\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Image-Line
2013-06-12 20:19 - 2013-03-12 12:47 - 01431552 ____A (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll
2013-06-12 20:18 - 2013-06-27 00:37 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2013-06-12 20:18 - 2013-06-12 20:18 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\FlowStone
2013-06-12 20:18 - 2009-09-15 11:14 - 01554944 ____A (HMS hxxp://hp.vector.co.jp/authors/VA012897/) C:\Windows\SysWOW64\vorbis.acm
2013-06-12 10:11 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 10:11 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 10:11 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 10:11 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 10:11 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 10:11 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 10:11 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 10:11 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 10:11 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 10:11 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 10:11 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 10:11 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 10:11 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 10:11 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 10:11 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 10:11 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 10:11 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-11 20:56 - 2013-06-11 20:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\My Games
2013-06-09 12:36 - 2013-06-09 12:36 - 00034032 ____A (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\seehcri.sys
2013-06-09 12:26 - 2013-06-09 12:26 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
==================== One Month Modified Files and Folders =======
2013-07-04 00:55 - 2013-07-04 00:55 - 00890988 ____A C:\Users\Lucas\Desktop\SecurityCheck.exe
2013-07-04 00:55 - 2012-11-15 20:40 - 00001108 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-03 23:21 - 2009-07-14 06:45 - 00014800 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-03 23:21 - 2009-07-14 06:45 - 00014800 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-03 23:20 - 2009-07-14 19:58 - 00699092 ____A C:\Windows\System32\perfh007.dat
2013-07-03 23:20 - 2009-07-14 19:58 - 00149232 ____A C:\Windows\System32\perfc007.dat
2013-07-03 23:20 - 2009-07-14 07:13 - 01619284 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-03 23:19 - 2013-07-03 23:19 - 00000000 ____D C:\Program Files (x86)\ESET
2013-07-03 23:17 - 2012-11-15 20:26 - 01699204 ____A C:\Windows\WindowsUpdate.log
2013-07-03 23:14 - 2012-11-18 12:58 - 00056479 ____A C:\Windows\setupact.log
2013-07-03 23:14 - 2012-11-15 22:47 - 00000000 ____D C:\Users\Lucas\Lucidlogix
2013-07-03 23:14 - 2012-11-15 20:40 - 00001104 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-03 23:14 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-03 20:09 - 2013-07-03 20:09 - 00000913 ____A C:\Users\Lucas\Desktop\JRT.txt
2013-07-03 20:07 - 2013-07-03 20:07 - 00000000 ____D C:\Windows\ERUNT
2013-07-03 20:04 - 2013-07-03 20:04 - 00000000 ____D C:\JRT
2013-07-03 20:02 - 2013-07-03 20:02 - 00003891 ____A C:\Users\Lucas\Desktop\AdwCleaner[S1].txt
2013-07-03 20:01 - 2013-07-03 20:00 - 00003891 ____A C:\AdwCleaner[S1].txt
2013-07-03 19:56 - 2012-12-17 18:30 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\uTorrent
2013-07-03 19:56 - 2012-11-18 12:58 - 02338234 ____A C:\Windows\PFRO.log
2013-07-03 19:55 - 2013-07-03 19:55 - 00545954 ____A (Oleg N. Scherbakov) C:\Users\Lucas\Desktop\JRT.exe
2013-07-03 19:54 - 2013-07-03 19:54 - 00650027 ____A C:\Users\Lucas\Desktop\adwcleaner.exe
2013-07-03 19:52 - 2013-07-03 19:52 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00001113 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-03 19:19 - 2013-07-03 19:19 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-03 19:18 - 2013-07-03 19:18 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Lucas\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-03 18:38 - 2012-11-17 00:35 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2013-07-03 16:12 - 2013-07-03 16:12 - 00028217 ____A C:\Users\Lucas\Desktop\ComboFix.txt
2013-07-03 16:12 - 2013-07-03 10:17 - 00000000 ____D C:\Qoobox
2013-07-03 16:11 - 2009-07-14 04:34 - 00000215 ____A C:\Windows\system.ini
2013-07-03 16:06 - 2012-11-15 22:25 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2013-07-03 16:03 - 2013-07-03 16:07 - 05084414 ____R (Swearware) C:\Users\Lucas\Desktop\ComboFix.exe
2013-07-03 10:25 - 2009-07-14 05:20 - 00000000 __RHD C:\users\Default
2013-07-03 10:24 - 2013-04-14 01:44 - 00000000 ____D C:\Users\Lucas\Desktop\Stuff
2013-07-03 10:23 - 2013-07-03 10:17 - 00000000 ____D C:\Windows\erdnt
2013-07-03 10:13 - 2013-06-25 16:47 - 00119296 ____A C:\Windows\SysWOW64\zlib.dll
2013-07-02 21:09 - 2013-07-02 21:09 - 00000000 ____D C:\FRST
2013-07-02 21:08 - 2013-07-02 21:09 - 01933556 ____A (Farbar) C:\Users\Lucas\Desktop\FRST64.exe
2013-07-02 20:50 - 2012-11-16 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Paint.NET
2013-07-02 20:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF
2013-07-02 20:33 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-07-02 16:45 - 2012-11-17 20:54 - 02851840 ____A (Microsoft Corporation) C:\Windows\System32\themeui.dll
2013-07-02 16:45 - 2009-07-14 01:55 - 00332288 ____A (Microsoft Corporation) C:\Windows\System32\uxtheme.dll
2013-07-02 16:45 - 2009-07-14 01:54 - 00044544 ____A (Microsoft Corporation) C:\Windows\System32\themeservice.dll
2013-07-02 15:41 - 2013-01-23 17:09 - 00000000 ____D C:\Users\Lucas\Documents\Euro Truck Simulator 2
2013-07-02 15:41 - 2012-11-15 23:32 - 00000000 ___RD C:\Users\Lucas\Desktop\Games
2013-07-02 15:40 - 2012-11-15 20:36 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-02 15:39 - 2013-06-21 23:49 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2013-07-02 15:11 - 2013-07-02 15:11 - 00000000 ___DC C:\Users\Lucas\AppData\Local\MigWiz
2013-07-02 14:04 - 2012-11-30 02:19 - 00000000 ____D C:\Windows\Minidump
2013-07-02 12:22 - 2012-12-08 16:40 - 00000000 ____D C:\Users\Lucas\Documents\Eigene Scans
2013-07-01 22:01 - 2013-07-01 22:01 - 00000000 ____D C:\ProgramData\ATI
2013-07-01 22:01 - 2012-11-15 22:15 - 00000000 ____D C:\ProgramData\AMD
2013-07-01 22:00 - 2013-07-01 22:00 - 00000000 ____D C:\Program Files\ATI
2013-07-01 21:51 - 2013-01-10 13:57 - 00000000 ____D C:\ProgramData\Package Cache
2013-07-01 21:41 - 2012-11-29 17:21 - 00000000 ____D C:\AMD
2013-07-01 21:02 - 2013-07-01 20:47 - 187682976 ____A (AMD Inc.) C:\Users\Lucas\Downloads\AMD_Catalyst_13.6_Beta2.exe
2013-07-01 20:59 - 2013-07-01 20:47 - 141110624 ____A (Advanced Micro Devices, Inc.) C:\Users\Lucas\Downloads\13-4_win7_win8_64_dd_ccc_whql.exe
2013-07-01 20:53 - 2013-06-25 12:57 - 00000000 ____D C:\Program Files (x86)\RAR Password Unlocker
2013-07-01 14:04 - 2012-11-15 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2013-06-29 22:57 - 2013-01-05 15:42 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\TS3Client
2013-06-29 17:20 - 2013-06-29 17:20 - 00594215 ____A C:\Users\Lucas\Downloads\MELLISA_1920x1080.jpg.zip
2013-06-29 17:20 - 2012-11-16 15:56 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2013-06-29 15:21 - 2013-06-29 15:21 - 00000000 ____D C:\Program Files\VideoLAN
2013-06-27 02:43 - 2013-06-27 02:43 - 00000000 ____D C:\Users\Lucas\Documents\Riptide
2013-06-27 02:41 - 2013-06-27 02:41 - 00000562 ____A C:\Windows\wmsetup.log
2013-06-27 02:41 - 2012-11-21 20:43 - 00440562 ____A C:\Windows\DirectX.log
2013-06-27 00:37 - 2013-06-12 20:19 - 00000000 ____D C:\Program Files\Image-Line
2013-06-27 00:37 - 2013-06-12 20:18 - 00000000 ____D C:\Program Files (x86)\DSPRobotics
2013-06-27 00:36 - 2013-01-05 15:42 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2013-06-26 15:46 - 2013-06-26 15:45 - 08435712 ____A C:\Users\Lucas\Downloads\archpr454_setup_en.msi
2013-06-26 12:25 - 2013-05-07 12:20 - 00083672 ____A (Avira Operations GmbH & Co. KG) C:\Windows\System32\Drivers\avnetflt.sys
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PowerUp Software
2013-06-25 22:27 - 2013-06-25 22:27 - 00000000 ____D C:\ProgramData\PowerUp Software
2013-06-25 20:29 - 2013-06-25 20:29 - 11639710 ____A C:\Users\Lucas\Downloads\Oracle_VM_VirtualBox_Extension_Pack-4.2.14-86644.vbox-extpack
2013-06-25 19:00 - 2013-06-25 17:05 - 2463242240 ____A C:\Users\Lucas\Downloads\X15-65740.iso
2013-06-25 17:12 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\VirtualBox VMs
2013-06-25 17:02 - 2012-11-15 20:26 - 00000000 ____D C:\users\Lucas
2013-06-25 16:00 - 2013-05-08 10:54 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2013-06-25 16:00 - 2013-05-07 21:28 - 00076888 ____A C:\Windows\SysWOW64\PnkBstrA.exe
2013-06-25 16:00 - 2012-12-18 16:56 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2013-06-25 15:30 - 2013-06-25 15:21 - 99246864 ____A (Oracle Corporation) C:\Users\Lucas\Downloads\VirtualBox-4.2.14-86644-Win.exe
2013-06-25 13:32 - 2013-06-25 13:32 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\dll-files.com
2013-06-25 13:24 - 2013-06-25 13:03 - 00000000 ____D C:\Program Files (x86)\UZC Trial
2013-06-25 07:12 - 2013-06-25 07:12 - 00000044 ____A C:\Users\Lucas\Downloads\Password for Watch Dogs Demo.txt
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\Documents\Keysticks
2013-06-24 20:17 - 2013-06-24 20:17 - 00000000 ____D C:\Users\Lucas\AppData\Local\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\ProgramData\Keysticks.net
2013-06-24 20:16 - 2013-06-24 20:16 - 00000000 ____D C:\Program Files (x86)\Keysticks.net
2013-06-24 19:26 - 2013-06-24 19:26 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-06-24 15:14 - 2013-06-24 15:14 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Day 1 Studios
2013-06-24 13:44 - 2012-12-18 13:54 - 00000000 ____D C:\Users\Lucas\AppData\Local\Ubisoft Game Launcher
2013-06-24 13:38 - 2013-06-24 13:38 - 00000000 ____D C:\ProgramData\Ubisoft
2013-06-24 13:28 - 2013-05-08 10:54 - 00189248 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2013-06-24 13:16 - 2013-06-24 13:16 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-06-22 12:10 - 2012-11-17 17:37 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-22 12:10 - 2012-11-17 17:37 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-21 23:53 - 2013-06-21 23:53 - 00000000 ____D C:\Users\Lucas\AppData\Local\Chromium
2013-06-21 23:53 - 2012-11-17 17:22 - 00000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2013-06-21 23:40 - 2013-06-21 23:40 - 00000000 ____D C:\ProgramData\Rockstar Games
2013-06-21 23:40 - 2013-02-25 16:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\SKIDROW
2013-06-21 16:01 - 2013-06-25 16:34 - 00238352 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxDrv.sys
2013-06-21 16:00 - 2013-06-25 16:01 - 00120080 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSBMon.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00204048 ____A (Oracle Corporation) C:\Windows\System32\VBoxNetFltNobj.dll
2013-06-21 16:00 - 2013-06-21 16:00 - 00146704 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetFlt.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00131856 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxNetAdp.sys
2013-06-21 16:00 - 2013-06-21 16:00 - 00106256 ____A (Oracle Corporation) C:\Windows\System32\Drivers\VBoxUSB.sys
2013-06-21 14:23 - 2013-06-21 14:23 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-06-20 22:08 - 2013-06-20 22:08 - 00000000 ____D C:\ProgramData\Codemasters
2013-06-20 22:08 - 2013-06-15 16:06 - 00000000 ____D C:\ProgramData\Steam
2013-06-20 22:08 - 2012-11-16 20:37 - 00000000 ____D C:\Users\Lucas\Documents\my games
2013-06-20 21:42 - 2012-11-15 22:29 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Skype
2013-06-18 15:34 - 2013-04-16 13:04 - 00000000 ____D C:\Users\Lucas\Desktop\eBay Bilder
2013-06-18 15:23 - 2013-05-07 23:02 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-15 15:11 - 2013-06-15 15:11 - 00000000 ____D C:\Users\Lucas\Documents\CPY_SAVES
2013-06-15 13:29 - 2013-06-15 13:29 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-06-15 13:14 - 2013-06-15 13:14 - 00000000 ____D C:\Users\Lucas\Documents\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\4A Games
2013-06-15 13:03 - 2013-06-15 13:03 - 00000000 ____D C:\ProgramData\RELOADED
2013-06-14 16:54 - 2012-12-13 19:29 - 00000000 ____D C:\Users\Lucas\Documents\Schule
2013-06-13 18:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-13 17:34 - 2013-02-17 21:45 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-13 17:34 - 2012-11-15 22:28 - 00000000 ____D C:\ProgramData\Skype
2013-06-12 22:55 - 2012-11-19 23:12 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\Documents\Image-Line
2013-06-12 20:19 - 2013-06-12 20:19 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Image-Line
2013-06-12 20:18 - 2013-06-12 20:18 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\FlowStone
2013-06-11 20:56 - 2013-06-11 20:56 - 00000000 ____D C:\Users\Lucas\AppData\Local\My Games
2013-06-09 12:42 - 2013-05-30 15:06 - 00000000 ____D C:\Users\Lucas\Desktop\custom roms
2013-06-09 12:36 - 2013-06-09 12:36 - 00034032 ____A (Sony Ericsson Mobile Communications) C:\Windows\System32\Drivers\seehcri.sys
2013-06-09 12:26 - 2013-06-09 12:26 - 00000000 ____D C:\Program Files (x86)\Sony Mobile
2013-06-08 16:08 - 2013-06-15 23:24 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:07 - 2013-06-15 23:24 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 16:06 - 2013-06-15 23:24 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-08 14:28 - 2013-06-15 23:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-08 13:42 - 2013-06-15 23:24 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-15 23:24 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-15 23:24 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-05 22:17 - 2012-12-20 19:35 - 01592628 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-06-04 19:45 - 2013-02-13 17:31 - 00000000 ____D C:\ProgramData\Origin
2013-06-04 16:55 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2013-06-04 16:52 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Local\Origin
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-06-25 17:31
==================== End Of Log ============================
|
|
04.07.2013, 07:33
| #14 |
| /// the machine /// TB-Ausbilder | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. Was für Bilddateien? Mit welchem Programm haste die zuvor immer geöffnet?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.07.2013, 11:40
| #15 |
| | Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. hi schrauber, hab die früher immer mit Windows Fotoanzeige geöffnet, aber wenn ich jetzt auf eine .jpeg oder .png Datei klicke, passiert schlicht gar nichts.. Hoffe du kannst mir helfen. MfG Lucas |
|
| Themen zu Trotz Konnektivität keine Verbindung zum Internet mit Browsern möglich. |
| antivirenprogramm, browser, dateien, fehler, funktionieren, internet, keine verbindung, konnektivität, neuinstallation, nicht öffnen, probleme, programm, system, trotz verbindung, verbindung, virus, windows, windows 7 |
WARNUNG für die MITLESER: 
Linear-Darstellung
