| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows uhr läuft zu schnell?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
07.07.2013, 00:24
| #1 |
 |  Windows uhr läuft zu schnell? Hey, ich wollte mal fragen, ob es möglich ist, dass ein Schädling dafür sorgt, dass meine System uhr immer zu schnell läuft? Seid einiger zeit läuft sie immer zu schnell, aber nur in intervallen. Und dann schon recht heftig, teilweise in 5 minuten läuft sie eine ganze minute vor! und dann kann ich synchronisieren wie viel, läuft immer extrem zu schnell... dann teilweise läuft sie ein paar tage richtig und alles passt, aber aufeinmal läuft sie wieder falsch. Die Bios Batterie habe ich schon getauscht... Nen kumpel von mir meinte, dass da evtl nen Virus im spiel ist. ich habe jetzt mal Malwarebytes und otl scan gemacht otl: OTL Logfile: Code:
ATTFilter OTL logfile created on: 06.07.2013 23:49:10 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Alex\Desktop\Alles 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16618) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 8,00 Gb Total Physical Memory | 5,74 Gb Available Physical Memory | 71,82% Memory free 16,00 Gb Paging File | 13,61 Gb Available in Paging File | 85,07% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 931,51 Gb Total Space | 418,53 Gb Free Space | 44,93% Space Free | Partition Type: NTFS Drive F: | 465,61 Gb Total Space | 387,77 Gb Free Space | 83,28% Space Free | Partition Type: FAT32 Drive I: | 1397,25 Gb Total Space | 302,83 Gb Free Space | 21,67% Space Free | Partition Type: NTFS Computer Name: ALEX-PC | User Name: Alex | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Alex\Desktop\Alles\OTL.exe (OldTimer Tools) PRC - C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe (Google Inc.) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Programme\AVAST Software\Avast\AvastUI.exe (AVAST Software) PRC - C:\Programme\AVAST Software\Avast\AvastSvc.exe (AVAST Software) PRC - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) PRC - C:\Program Files (x86)\Opera\opera.exe (Opera Software) PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) PRC - C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.) PRC - C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.) PRC - C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc.) PRC - C:\Windows\SysWOW64\CtHdaSvc.exe (Creative Technology Ltd) PRC - C:\Program Files (x86)\Creative\Sound Blaster Recon3D PCIe\Sound Blaster Recon3D PCIe Control Panel\SBRnPCIe.exe (Creative Technology Ltd) PRC - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe () PRC - C:\Windows\SysWOW64\PnkBstrA.exe () PRC - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd) ========== Modules (No Company Name) ========== MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll () MOD - C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll () MOD - C:\Program Files (x86)\Creative\Sound Blaster Recon3D PCIe\Sound Blaster Recon3D PCIe Control Panel\de-DE\SBRnPCIe.resources.dll () MOD - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf () MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll () ========== Services (SafeList) ========== SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD) SRV:64bit: - (AMD FUEL Service) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Advanced Micro Devices, Inc.) SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (BEService) -- C:\Program Files (x86)\Common Files\BattlEye\BEService.exe () SRV - (Creative Audio Engine Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (Creative Labs) SRV - (Creative ALchemy AL6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (Creative Labs) SRV - (Hamachi2Svc) -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (avast! Antivirus) -- C:\Programme\AVAST Software\Avast\AvastSvc.exe (AVAST Software) SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (TeamViewer8) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (VMnetDHCP) -- C:\Windows\SysWOW64\vmnetdhcp.exe (VMware, Inc.) SRV - (VMware NAT Service) -- C:\Windows\SysWOW64\vmnat.exe (VMware, Inc.) SRV - (VMAuthdService) -- C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe (VMware, Inc.) SRV - (CtHdaSvc) -- C:\Windows\SysWOW64\CtHdaSvc.exe (Creative Technology Ltd) SRV - (PassThru Service) -- C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe () SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe () SRV - (VMUSBArbService) -- C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe (VMware, Inc.) SRV - (CTAudSvcService) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd) SRV - (wlidsvc) -- C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation) SRV - (WinHttpAutoProxySvc) -- winhttp.dll (Microsoft Corporation) SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software) DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software) DRV:64bit: - (aswVmm) -- C:\Windows\SysNative\drivers\aswVmm.sys () DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software) DRV:64bit: - (aswRvrt) -- C:\Windows\SysNative\drivers\aswRvrt.sys () DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software) DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software) DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software) DRV:64bit: - (VBoxNetAdp) -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys (Oracle Corporation) DRV:64bit: - (amdkmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Advanced Micro Devices, Inc.) DRV:64bit: - (epmntdrv) -- C:\Windows\SysNative\epmntdrv.sys () DRV:64bit: - (EuGdiDrv) -- C:\Windows\SysNative\EuGdiDrv.sys () DRV:64bit: - (vmx86) -- C:\Windows\SysNative\drivers\vmx86.sys (VMware, Inc.) DRV:64bit: - (VMnetuserif) -- C:\Windows\SysNative\drivers\vmnetuserif.sys (VMware, Inc.) DRV:64bit: - (VMparport) -- C:\Windows\SysNative\drivers\VMparport.sys (VMware, Inc.) DRV:64bit: - (VMnetBridge) -- C:\Windows\SysNative\drivers\vmnetbridge.sys (VMware, Inc.) DRV:64bit: - (VMnetAdapter) -- C:\Windows\SysNative\drivers\vmnetadapter.sys (VMware, Inc.) DRV:64bit: - (vmkbd) -- C:\Windows\SysNative\drivers\VMkbd.sys (VMware, Inc.) DRV:64bit: - (AtiHDAudioService) -- C:\Windows\SysNative\drivers\AtihdW76.sys (Advanced Micro Devices) DRV:64bit: - (cthda) -- C:\Windows\SysNative\drivers\cthda.sys (Creative Technology Ltd) DRV:64bit: - (cthdb) -- C:\Windows\SysNative\drivers\cthdb.sys (Creative Technology Ltd) DRV:64bit: - (usb_rndisx) -- C:\Windows\SysNative\drivers\usb8023x.sys (Microsoft Corporation) DRV:64bit: - (ssudmdm) -- C:\Windows\SysNative\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (dg_ssudbus) -- C:\Windows\SysNative\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV:64bit: - (htcnprot) -- C:\Windows\SysNative\drivers\htcnprot.sys (Windows (R) Win 7 DDK provider) DRV:64bit: - (vsock) -- C:\Windows\SysNative\drivers\vsock.sys (VMware, Inc.) DRV:64bit: - (vmci) -- C:\Windows\SysNative\drivers\vmci.sys (VMware, Inc.) DRV:64bit: - (hcmon) -- C:\Windows\SysNative\drivers\hcmon.sys (VMware, Inc.) DRV:64bit: - (vmusb) -- C:\Windows\SysNative\drivers\vmusb.sys (VMware, Inc.) DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys (DT Soft Ltd) DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (nmwcdnsux64) -- C:\Windows\SysNative\drivers\nmwcdnsux64.sys (Nokia) DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation) DRV:64bit: - (ssadbus) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation) DRV:64bit: - (ssadmdfl) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (massfilter_hs) -- C:\Windows\SysNative\drivers\massfilter_hs.sys (HandSet Incorporated) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (sscdmdm) -- C:\Windows\SysNative\drivers\sscdmdm.sys (MCCI Corporation) DRV:64bit: - (sscdbus) -- C:\Windows\SysNative\drivers\sscdbus.sys (MCCI Corporation) DRV:64bit: - (sscdmdfl) -- C:\Windows\SysNative\drivers\sscdmdfl.sys (MCCI Corporation) DRV:64bit: - (amdiox64) -- C:\Windows\SysNative\drivers\amdiox64.sys (Advanced Micro Devices) DRV:64bit: - (HTCAND64) -- C:\Windows\SysNative\drivers\ANDROIDUSB.sys (HTC, Corporation) DRV:64bit: - (xusb21) -- C:\Windows\SysNative\drivers\xusb21.sys (Microsoft Corporation) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology) DRV:64bit: - (xnacc) -- C:\Windows\SysNative\drivers\xnacc.sys (Microsoft Corporation) DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation ) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation) DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.) DRV:64bit: - (hamachi) -- C:\Windows\SysNative\drivers\hamachi.sys (LogMeIn, Inc.) DRV - (epmntdrv) -- C:\Windows\SysWOW64\epmntdrv.sys () DRV - (EuGdiDrv) -- C:\Windows\SysWOW64\EuGdiDrv.sys () DRV - (AODDriver4.2) -- C:\Programme\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys (Advanced Micro Devices) DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 82 90 3D DD 55 B3 CD 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss&mntrId=78A21CBDB9DDDF2F IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0 FF - prefs.js..browser.startup.homepage: FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.140.0: C:\Program Files (x86)\Battlelog Web Plugins\1.140.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.4: C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.7: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013.05.17 00:43:21 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013.05.27 16:30:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Extensions [2013.05.28 12:56:59 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Alex\AppData\Roaming\mozilla\Firefox\Profiles\576abl14.default\Extensions [2013.05.21 23:23:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\Extensions [2013.05.27 16:06:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions [2013.05.27 16:06:28 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll CHR - plugin: ESN Sonar API (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll CHR - plugin: Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll CHR - Extension: Google Docs = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google Drive = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Google-Suche = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Speed Dial = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.5.3_0\ CHR - Extension: LastPass = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.0.25_0\ CHR - Extension: CnC TA Script Collection = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmhpmdclklpgfcpoiomjofgfagenmgeo\1.2.8.45_0\ CHR - Extension: Google Mail = C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) O2:64bit: - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programme\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) O2:64bit: - BHO: (LastPass Vault) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O2 - BHO: (LastPass Vault) - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programme\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) O3:64bit: - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass) O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (LastPass Toolbar) - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass) O4:64bit: - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.) O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [Sound Blaster Recon3D PCIe Control Panel] C:\Program Files (x86)\Creative\Sound Blaster Recon3D PCIe\Sound Blaster Recon3D PCIe Control Panel\SBRnPCIe.exe (Creative Technology Ltd) O4 - HKCU..\Run: [dualmonitor] C:\Program Files (x86)\Dual Monitor\DualMonitor.exe (Cristi) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:64bit: - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found O8:64bit: - Extra context menu item: LastPass - file://C:\Users\Alex\AppData\LocalLow\LastPass\context.html?cmd=lastpass File not found O8:64bit: - Extra context menu item: LastPass Ausfüllformulare - file://C:\Users\Alex\AppData\LocalLow\LastPass\context.html?cmd=fillforms File not found O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 File not found O8 - Extra context menu item: LastPass - file://C:\Users\Alex\AppData\LocalLow\LastPass\context.html?cmd=lastpass File not found O8 - Extra context menu item: LastPass Ausfüllformulare - file://C:\Users\Alex\AppData\LocalLow\LastPass\context.html?cmd=fillforms File not found O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 File not found O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass) O9:64bit: - Extra 'Tools' menuitem : LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass) O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass) O9 - Extra 'Tools' menuitem : LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000011 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.) O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000012 - C:\Windows\SysNative\vsocklib.dll (VMware, Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\SysWOW64\vsocklib.dll (VMware, Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AF0DCDBB-4FB2-4FDC-B9C8-6E0AF8310620}: DhcpNameServer = 192.168.0.1 O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O29:64bit: - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O30:64bit: - LSA: Authentication Packages - (msv1_0) - File not found O30 - LSA: Authentication Packages - (msv1_0) - File not found O30:64bit: - LSA: Security Packages - (kerberos) - File not found O30:64bit: - LSA: Security Packages - (msv1_0) - File not found O30:64bit: - LSA: Security Packages - (schannel) - File not found O30:64bit: - LSA: Security Packages - (wdigest) - File not found O30:64bit: - LSA: Security Packages - (tspkg) - File not found O30:64bit: - LSA: Security Packages - (pku2u) - File not found O30:64bit: - LSA: Security Packages - (livessp) - File not found O30 - LSA: Security Packages - (kerberos) - File not found O30 - LSA: Security Packages - (msv1_0) - File not found O30 - LSA: Security Packages - (schannel) - File not found O30 - LSA: Security Packages - (wdigest) - File not found O30 - LSA: Security Packages - (tspkg) - File not found O30 - LSA: Security Packages - (pku2u) - File not found O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{8425f492-12c8-11e2-8a09-1cbdb9dddf2f}\Shell - "" = AutoRun O33 - MountPoints2\{8425f492-12c8-11e2-8a09-1cbdb9dddf2f}\Shell\AutoRun\command - "" = G:\autorun.exe O33 - MountPoints2\{b9a66f4a-2f20-11e2-9e76-1cbdb9dddf2f}\Shell - "" = AutoRun O33 - MountPoints2\{b9a66f4a-2f20-11e2-9e76-1cbdb9dddf2f}\Shell\AutoRun\command - "" = E:\launcher.exe O33 - MountPoints2\{bb485cb6-559d-11e2-86ef-1cbdb9dddf2f}\Shell - "" = AutoRun O33 - MountPoints2\{bb485cb6-559d-11e2-86ef-1cbdb9dddf2f}\Shell\AutoRun\command - "" = E:\ZTE_Handset_USB_Driver.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.07.02 02:38:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Motherboard Monitor 5 [2013.06.26 19:27:15 | 000,000,000 | ---D | C] -- C:\Users\Alex\Desktop\Neuer Ordner (4) [2013.06.26 14:23:33 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Skype [2013.06.26 14:23:27 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2013.06.26 14:23:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013.06.26 14:23:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2013.06.26 14:23:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2013.06.25 03:09:44 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.06.25 03:09:44 | 001,509,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.06.25 03:09:44 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.06.25 03:09:44 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2013.06.25 03:09:44 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2013.06.25 03:09:44 | 001,054,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2013.06.25 03:09:44 | 000,905,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2013.06.25 03:09:44 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.06.25 03:09:44 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013.06.25 03:09:44 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2013.06.25 03:09:44 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.06.25 03:09:44 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013.06.25 03:09:44 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.06.25 03:09:44 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.06.25 03:09:44 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013.06.25 03:09:44 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2013.06.25 03:09:44 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2013.06.25 03:09:44 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013.06.25 03:09:44 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2013.06.25 03:09:44 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2013.06.25 03:09:44 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.06.25 03:09:44 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.06.25 03:09:44 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll [2013.06.25 03:09:44 | 000,216,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2013.06.25 03:09:44 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2013.06.25 03:09:44 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll [2013.06.25 03:09:44 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.06.25 03:09:44 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2013.06.25 03:09:44 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2013.06.25 03:09:44 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2013.06.25 03:09:44 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2013.06.25 03:09:44 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2013.06.25 03:09:44 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2013.06.25 03:09:44 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.06.25 03:09:44 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013.06.25 03:09:44 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2013.06.25 03:09:44 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2013.06.25 03:09:44 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2013.06.25 03:09:44 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2013.06.25 03:09:44 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2013.06.25 03:09:44 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013.06.25 03:09:44 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2013.06.25 03:09:44 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.06.25 03:09:44 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2013.06.25 03:09:44 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2013.06.25 03:09:44 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2013.06.25 03:09:44 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2013.06.25 03:09:44 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.06.25 03:09:44 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2013.06.25 03:09:44 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2013.06.25 03:09:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2013.06.25 03:09:44 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2013.06.25 03:09:44 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013.06.25 03:09:44 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2013.06.25 03:09:44 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2013.06.25 03:09:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013.06.25 03:09:44 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2013.06.25 03:09:44 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013.06.25 03:09:44 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2013.06.25 03:09:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2013.06.25 03:09:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2013.06.25 03:09:44 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013.06.25 03:09:44 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013.06.25 03:09:44 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2013.06.25 03:09:44 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2013.06.25 03:09:44 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2013.06.25 03:09:44 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2013.06.25 03:09:44 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2013.06.21 12:16:59 | 000,000,000 | ---D | C] -- C:\ProgramData\DualMonitor [2013.06.21 12:16:53 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\WinZip Courier [2013.06.21 12:16:50 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZipEC [2013.06.21 12:16:48 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Local\assembly [2013.06.21 12:16:40 | 000,000,000 | ---D | C] -- C:\Users\Alex\Documents\Outlook-Dateien [2013.06.13 17:28:03 | 010,285,040 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Alex\Desktop\mbam-setup-1.75.0.1300.exe [2013.06.12 21:04:48 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll [2013.06.12 21:04:48 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll [2013.06.12 21:04:43 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll [2013.06.12 21:04:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll [2013.06.12 21:04:40 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2013.06.12 21:04:36 | 001,464,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll [2013.06.12 21:04:36 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe [2013.06.12 21:04:36 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe [2013.06.12 21:04:36 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll [2013.06.12 21:04:35 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll [2013.06.12 21:04:35 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll [2013.06.12 21:04:30 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll [2013.06.12 21:04:30 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll [2013.06.12 20:09:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Warcraft III [2013.06.12 18:34:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment [2013.06.12 18:13:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III [2013.06.11 14:21:20 | 000,000,000 | ---D | C] -- C:\Users\Alex\Desktop\KSP_win [2013.06.11 13:43:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cultures2 [2013.06.11 00:47:18 | 000,328,704 | ---- | C] (InstallShield Software Corporation ) -- C:\Windows\IsUn0407.exe [2013.06.08 19:02:18 | 000,000,000 | ---D | C] -- C:\Users\Alex\AppData\Roaming\Jasc [2013.06.08 19:02:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jasc Software [2013.06.08 19:01:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Jasc Software Inc [2013.06.08 18:59:49 | 011,455,648 | ---- | C] (Jasc Software Inc) -- C:\Users\Alex\Desktop\ans304gv.exe [2013.05.27 16:24:50 | 014,880,256 | ---- | C] (LastPass) -- C:\Program Files (x86)\Common Files\lpuninstall.exe [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.07.06 23:35:00 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.07.06 23:18:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013.07.06 19:33:00 | 000,014,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.07.06 19:33:00 | 000,014,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.07.06 19:25:58 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.07.06 19:25:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.07.06 19:25:23 | 2146,295,807 | -HS- | M] () -- C:\hiberfil.sys [2013.07.03 00:02:30 | 000,291,088 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013.07.03 00:02:30 | 000,291,088 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013.07.03 00:02:22 | 000,281,520 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013.07.02 14:01:47 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.07.02 01:18:00 | 000,000,466 | ---- | M] () -- C:\Users\Alex\SciTE.session [2013.07.02 01:07:58 | 000,001,956 | ---- | M] () -- C:\Users\Alex\Desktop\test - Kopie (2).au3 [2013.07.01 23:17:11 | 000,001,224 | ---- | M] () -- C:\Users\Alex\Desktop\test - Kopie.au3 [2013.06.27 23:45:11 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys [2013.06.27 23:45:11 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys [2013.06.27 23:45:11 | 000,189,936 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys [2013.06.27 23:45:11 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys.sum [2013.06.27 23:45:11 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum [2013.06.27 23:45:11 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum [2013.06.26 14:23:27 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2013.06.25 03:09:44 | 003,958,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013.06.25 03:09:44 | 001,509,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013.06.25 03:09:44 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013.06.25 03:09:44 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat [2013.06.25 03:09:44 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat [2013.06.25 03:09:44 | 001,054,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2013.06.25 03:09:44 | 000,905,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2013.06.25 03:09:44 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll [2013.06.25 03:09:44 | 000,762,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013.06.25 03:09:44 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2013.06.25 03:09:44 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll [2013.06.25 03:09:44 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013.06.25 03:09:44 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2013.06.25 03:09:44 | 000,599,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2013.06.25 03:09:44 | 000,526,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013.06.25 03:09:44 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2013.06.25 03:09:44 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec [2013.06.25 03:09:44 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013.06.25 03:09:44 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec [2013.06.25 03:09:44 | 000,281,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2013.06.25 03:09:44 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll [2013.06.25 03:09:44 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll [2013.06.25 03:09:44 | 000,226,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll [2013.06.25 03:09:44 | 000,216,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll [2013.06.25 03:09:44 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2013.06.25 03:09:44 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll [2013.06.25 03:09:44 | 000,173,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013.06.25 03:09:44 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe [2013.06.25 03:09:44 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2013.06.25 03:09:44 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe [2013.06.25 03:09:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll [2013.06.25 03:09:44 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe [2013.06.25 03:09:44 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe [2013.06.25 03:09:44 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2013.06.25 03:09:44 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll [2013.06.25 03:09:44 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll [2013.06.25 03:09:44 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll [2013.06.25 03:09:44 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll [2013.06.25 03:09:44 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll [2013.06.25 03:09:44 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll [2013.06.25 03:09:44 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll [2013.06.25 03:09:44 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll [2013.06.25 03:09:44 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2013.06.25 03:09:44 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe [2013.06.25 03:09:44 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe [2013.06.25 03:09:44 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll [2013.06.25 03:09:44 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll [2013.06.25 03:09:44 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2013.06.25 03:09:44 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx [2013.06.25 03:09:44 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe [2013.06.25 03:09:44 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe [2013.06.25 03:09:44 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll [2013.06.25 03:09:44 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013.06.25 03:09:44 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll [2013.06.25 03:09:44 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx [2013.06.25 03:09:44 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2013.06.25 03:09:44 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll [2013.06.25 03:09:44 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013.06.25 03:09:44 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll [2013.06.25 03:09:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll [2013.06.25 03:09:44 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll [2013.06.25 03:09:44 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013.06.25 03:09:44 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2013.06.25 03:09:44 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll [2013.06.25 03:09:44 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf [2013.06.25 03:09:44 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf [2013.06.25 03:09:44 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll [2013.06.25 03:09:44 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe [2013.06.25 03:09:44 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe [2013.06.25 03:09:44 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe [2013.06.21 01:24:53 | 000,068,523 | ---- | M] () -- C:\Users\Alex\Desktop\IMG-20120201-WA0000.jpg [2013.06.21 01:23:07 | 000,033,532 | ---- | M] () -- C:\Users\Alex\Desktop\IMG-20130427-WA0000.jpg [2013.06.20 17:37:55 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.06.20 16:21:26 | 000,075,052 | ---- | M] () -- C:\Users\Alex\Desktop\Bewerbungsschreiben.pdf [2013.06.20 16:10:26 | 000,077,696 | ---- | M] () -- C:\Users\Alex\Desktop\Lebenslauf.pdf [2013.06.20 14:37:15 | 000,001,134 | ---- | M] () -- C:\Users\Alex\Desktop\test.au3 [2013.06.19 18:37:03 | 001,361,360 | ---- | M] () -- C:\Users\Alex\Desktop\ts3_recording_13_06_19_18_36_52.wav [2013.06.19 03:02:17 | 001,602,306 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.06.19 03:02:17 | 000,702,154 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2013.06.19 03:02:17 | 000,656,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013.06.19 03:02:17 | 000,150,820 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2013.06.19 03:02:17 | 000,123,390 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013.06.19 03:02:07 | 001,602,306 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013.06.16 13:12:46 | 001,330,635 | ---- | M] () -- C:\Users\Alex\Desktop\Tolkien__J._R._R._-_Der_Hobbit.rar [2013.06.13 17:28:06 | 010,285,040 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Alex\Desktop\mbam-setup-1.75.0.1300.exe [2013.06.12 20:34:23 | 000,001,094 | ---- | M] () -- C:\Users\Public\Desktop\Warcraft III - The Frozen Throne.lnk [2013.06.12 20:09:38 | 000,001,049 | ---- | M] () -- C:\Users\Public\Desktop\Warcraft III.lnk [2013.06.11 22:18:13 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013.06.11 22:18:13 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013.06.11 14:19:20 | 386,526,676 | ---- | M] () -- C:\Users\Alex\Desktop\KSP0202_WINDOWS.rar [2013.06.08 19:04:43 | 000,207,520 | ---- | M] () -- C:\Users\Alex\Desktop\SlJ1NAn.gif [2013.06.08 19:01:10 | 001,655,795 | ---- | M] () -- C:\Users\Alex\Desktop\post2.jpg [2013.06.08 18:59:58 | 011,455,648 | ---- | M] (Jasc Software Inc) -- C:\Users\Alex\Desktop\ans304gv.exe [2 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.07.02 14:01:47 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.07.01 21:49:08 | 000,001,956 | ---- | C] () -- C:\Users\Alex\Desktop\test - Kopie (2).au3 [2013.07.01 21:05:04 | 000,001,224 | ---- | C] () -- C:\Users\Alex\Desktop\test - Kopie.au3 [2013.06.27 23:45:11 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys.sum [2013.06.27 00:43:52 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum [2013.06.27 00:43:51 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum [2013.06.26 14:23:27 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2013.06.25 03:09:44 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf [2013.06.25 03:09:44 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf [2013.06.21 01:24:55 | 000,068,523 | ---- | C] () -- C:\Users\Alex\Desktop\IMG-20120201-WA0000.jpg [2013.06.21 01:23:09 | 000,033,532 | ---- | C] () -- C:\Users\Alex\Desktop\IMG-20130427-WA0000.jpg [2013.06.20 16:21:26 | 000,075,052 | ---- | C] () -- C:\Users\Alex\Desktop\Bewerbungsschreiben.pdf [2013.06.20 13:59:42 | 000,001,134 | ---- | C] () -- C:\Users\Alex\Desktop\test.au3 [2013.06.19 18:36:55 | 001,361,360 | ---- | C] () -- C:\Users\Alex\Desktop\ts3_recording_13_06_19_18_36_52.wav [2013.06.16 13:12:23 | 001,330,635 | ---- | C] () -- C:\Users\Alex\Desktop\Tolkien__J._R._R._-_Der_Hobbit.rar [2013.06.12 20:34:12 | 000,001,094 | ---- | C] () -- C:\Users\Public\Desktop\Warcraft III - The Frozen Throne.lnk [2013.06.12 20:09:28 | 000,001,049 | ---- | C] () -- C:\Users\Public\Desktop\Warcraft III.lnk [2013.06.11 14:14:45 | 386,526,676 | ---- | C] () -- C:\Users\Alex\Desktop\KSP0202_WINDOWS.rar [2013.06.08 19:01:10 | 001,655,795 | ---- | C] () -- C:\Users\Alex\Desktop\post2.jpg [2013.06.08 18:55:25 | 000,207,520 | ---- | C] () -- C:\Users\Alex\Desktop\SlJ1NAn.gif [2013.05.24 13:53:41 | 001,602,306 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.05.13 14:51:12 | 002,498,216 | ---- | C] () -- C:\Windows\SysWow64\BootMan.exe [2013.05.13 14:51:12 | 000,087,112 | ---- | C] () -- C:\Windows\SysWow64\setupempdrv03.exe [2013.05.13 14:51:12 | 000,019,840 | ---- | C] () -- C:\Windows\SysWow64\EuEpmGdi.dll [2013.05.13 14:51:12 | 000,013,896 | ---- | C] () -- C:\Windows\SysWow64\epmntdrv.sys [2013.05.13 14:51:12 | 000,009,160 | ---- | C] () -- C:\Windows\SysWow64\EuGdiDrv.sys [2013.05.07 02:39:17 | 000,000,466 | ---- | C] () -- C:\Users\Alex\SciTE.session [2013.03.29 04:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe [2013.03.29 04:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe [2013.01.03 21:39:39 | 000,584,584 | ---- | C] () -- C:\Windows\adb.exe [2013.01.03 21:39:39 | 000,001,623 | ---- | C] () -- C:\Windows\InnoTipLanguage.ini [2012.12.18 11:06:10 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe [2012.12.18 11:06:06 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2012.12.18 11:06:06 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2012.12.18 11:06:06 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2012.12.18 11:06:06 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2012.11.27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll [2012.11.21 00:32:40 | 003,123,272 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2012.10.15 16:04:26 | 000,291,088 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2012.10.15 16:04:25 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2012.10.05 21:13:44 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat [2012.10.05 20:34:01 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2012.07.28 03:39:50 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat [2012.07.28 03:39:50 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat ========== ZeroAccess Check ========== [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 162 bytes -> C:\Users\Alex\Desktop\IMG-20130427-WA0000.jpg:com.dropbox.attributes @Alternate Data Stream - 162 bytes -> C:\Users\Alex\Desktop\IMG-20120201-WA0000.jpg:com.dropbox.attributes < End of report > und hier Malware: Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.07.02.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16618 Alex :: ALEX-PC [Administrator] 06.07.2013 23:48:09 MBAM-log-2013-07-07 (01-23-24).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 493632 Laufzeit: 1 Stunde(n), 30 Minute(n), 20 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 5 C:\Users\Alex\AppData\Local\Temp\pricepeep_130001_0101.exe (Adware.Agent) -> Keine Aktion durchgeführt. C:\Users\Alex\Desktop\operapassview.zip (PUP.OperaPasswordTool) -> Keine Aktion durchgeführt. C:\Users\Alex\Desktop\Neuer Ordner (3)\ChromePass.exe (PUP.ChromePasswordTool) -> Keine Aktion durchgeführt. C:\Users\Alex\Desktop\Neuer Ordner (3)\chromepass_1.25.zip (PUP.ChromePasswordTool) -> Keine Aktion durchgeführt. C:\Users\Alex\Desktop\Neuer Ordner (3)\OperaPassView.exe (PUP.OperaPasswordTool) -> Keine Aktion durchgeführt. (Ende) die adware habe ich entfernt! danke schonmal für die Hilfe |
|
07.07.2013, 05:41
| #2 |
| /// the machine /// TB-Ausbilder    | Windows uhr läuft zu schnell? hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
07.07.2013, 17:26
| #3 |
| | Windows uhr läuft zu schnell? hier die FRST txt:
__________________Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013
Ran by Alex (administrator) on 07-07-2013 18:23:49
Running from C:\Users\Alex\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Creative Technology Ltd) C:\Windows\sysWow64\CtHdaSvc.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.149\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.149\GoogleCrashHandler64.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Cristi) C:\Program Files (x86)\Dual Monitor\DualMonitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Sound Blaster Recon3D PCIe\Sound Blaster Recon3D PCIe Control Panel\SBRnPCIe.exe
(Opera Software) C:\Program Files (x86)\Opera\opera.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Logitech Download Assistant] C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch [1832760 2012-09-20] (Logitech, Inc.)
HKCU\...\Run: [dualmonitor] C:\Program Files (x86)\Dual Monitor\DualMonitor.exe [478720 2013-02-18] (Cristi)
MountPoints2: {8425f492-12c8-11e2-8a09-1cbdb9dddf2f} - G:\autorun.exe
MountPoints2: {b9a66f4a-2f20-11e2-9e76-1cbdb9dddf2f} - E:\launcher.exe
MountPoints2: {bb485cb6-559d-11e2-86ef-1cbdb9dddf2f} - E:\ZTE_Handset_USB_Driver.exe
HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [Sound Blaster Recon3D PCIe Control Panel] "C:\Program Files (x86)\Creative\Sound Blaster Recon3D PCIe\Sound Blaster Recon3D PCIe Control Panel\SBRnPCIe.exe" /r [976896 2012-12-18] (Creative Technology Ltd)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU SearchScopes: DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss&mntrId=78A21CBDB9DDDF2F
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119816&tt=gc_&babsrc=SP_ss&mntrId=78A21CBDB9DDDF2F
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: LastPass Vault - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll (LastPass)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll (LastPass)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\576abl14.default
FF Homepage: user_pref("browser.startup.homepage", );
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.140.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.140.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.149\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.149\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www1.delta-search.com/?affID=119816&tt=gc_&babsrc=HP_ss&mntrId=78A21CBDB9DDDF2F"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll No File
CHR Extension: (Google Docs) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Speed Dial) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgpdioedihjhncjafcpgbbjdpbbkikmi\2.5.3_0
CHR Extension: (LastPass) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd\2.0.25_0
CHR Extension: (CnC TA Script Collection) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmhpmdclklpgfcpoiomjofgfagenmgeo\1.2.8.45_0
CHR Extension: (Gmail) - C:\Users\Alex\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-05-31] ()
R2 CtHdaSvc; C:\Windows\sysWow64\CtHdaSvc.exe [103424 2013-02-14] (Creative Technology Ltd)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2012-12-03] ()
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-27] ()
R3 cthda; C:\Windows\System32\drivers\cthda.sys [1044760 2013-02-14] (Creative Technology Ltd)
R3 cthdb; C:\Windows\System32\DRIVERS\cthdb.sys [28440 2013-02-14] (Creative Technology Ltd)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-10-10] (DT Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [18456 2011-03-07] (HandSet Incorporated)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-04-12] (Oracle Corporation)
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [31824 2013-02-26] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [70296 2012-10-24] (VMware, Inc.)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-07 18:23 - 2013-07-07 18:23 - 00000000 ____D C:\FRST
2013-07-07 18:21 - 2013-07-07 18:21 - 01934636 ____A (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2013-07-02 14:06 - 2013-07-02 14:07 - 00102018 ____A C:\Users\Alex\Desktop\Extras.Txt
2013-07-02 14:06 - 2013-07-02 14:06 - 00135222 ____A C:\Users\Alex\Desktop\OTL.Txt
2013-07-02 14:01 - 2013-07-02 14:01 - 00001109 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-02 13:49 - 2013-07-02 13:49 - 00000000 ____A C:\Users\Alex\Desktop\Neues Textdokument (3).txt
2013-07-02 02:38 - 2013-07-02 13:58 - 00000000 ____D C:\Program Files (x86)\Motherboard Monitor 5
2013-07-01 21:49 - 2013-07-02 01:07 - 00001956 ____A C:\Users\Alex\Desktop\test - Kopie (2).au3
2013-07-01 21:05 - 2013-07-01 23:17 - 00001224 ____A C:\Users\Alex\Desktop\test - Kopie.au3
2013-06-27 23:45 - 2013-06-27 23:45 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum
2013-06-27 00:43 - 2013-06-27 23:45 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum
2013-06-27 00:43 - 2013-06-27 23:45 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum
2013-06-26 19:27 - 2013-06-26 19:27 - 00000000 ____D C:\Users\Alex\Desktop\Neuer Ordner (4)
2013-06-26 14:23 - 2013-06-27 02:59 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-06-26 14:23 - 2013-06-26 14:23 - 00002517 ____A C:\Users\Public\Desktop\Skype.lnk
2013-06-26 14:23 - 2013-06-26 14:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-26 14:23 - 2013-06-26 14:23 - 00000000 ____D C:\ProgramData\Skype
2013-06-25 03:09 - 2013-06-25 03:09 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-25 03:09 - 2013-06-25 03:09 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-25 03:09 - 2013-06-25 03:09 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-25 03:09 - 2013-06-25 03:09 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-25 03:09 - 2013-06-25 03:09 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-25 03:09 - 2013-06-25 03:09 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-06-25 03:09 - 2013-06-25 03:09 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-06-25 03:09 - 2013-06-25 03:09 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-25 03:09 - 2013-06-25 03:09 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-06-25 03:09 - 2013-06-25 03:09 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-25 03:09 - 2013-06-25 03:09 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-25 03:00 - 2013-06-25 03:13 - 00009534 ____A C:\Windows\IE10_main.log
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-06-21 12:16 - 2013-07-03 01:55 - 00000000 ____D C:\Users\Alex\Documents\Outlook-Dateien
2013-06-21 12:16 - 2013-06-21 12:16 - 00000000 ____D C:\Users\Alex\AppData\Local\WinZip Courier
2013-06-21 12:16 - 2013-06-21 12:16 - 00000000 ____D C:\ProgramData\WinZipEC
2013-06-21 12:16 - 2013-06-21 12:16 - 00000000 ____D C:\ProgramData\DualMonitor
2013-06-20 13:59 - 2013-06-20 14:37 - 00001134 ____A C:\Users\Alex\Desktop\test.au3
2013-06-19 18:36 - 2013-06-19 18:37 - 01361360 ____A C:\Users\Alex\Desktop\ts3_recording_13_06_19_18_36_52.wav
2013-06-17 01:20 - 2013-06-17 01:20 - 03820480 ____A C:\Users\Alex\Downloads\battlelog-web-plugins_2.1.7_115.exe
2013-06-16 13:12 - 2013-06-16 13:12 - 01330635 ____A C:\Users\Alex\Desktop\Tolkien__J._R._R._-_Der_Hobbit.rar
2013-06-13 17:28 - 2013-06-13 17:28 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Alex\Desktop\mbam-setup-1.75.0.1300.exe
2013-06-12 21:04 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 21:04 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 21:04 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 21:04 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 21:04 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 21:04 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 21:04 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 21:04 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 21:04 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 21:04 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 21:04 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 21:04 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 21:04 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 21:04 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 21:04 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 21:04 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 21:04 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 21:04 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 21:04 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-12 20:34 - 2013-06-12 20:34 - 00001094 ____A C:\Users\Public\Desktop\Warcraft III - The Frozen Throne.lnk
2013-06-12 20:20 - 2013-06-12 20:32 - 00000000 ____D C:\Users\Alex\Downloads\Warcraft III 1.21b TFT Installer enGB
2013-06-12 20:09 - 2013-07-02 23:46 - 00000000 ____D C:\Program Files (x86)\Warcraft III
2013-06-12 20:09 - 2013-06-12 20:09 - 00001049 ____A C:\Users\Public\Desktop\Warcraft III.lnk
2013-06-12 19:38 - 2013-06-12 20:08 - 00000000 ____D C:\Users\Alex\Downloads\Warcraft III 1.21b ROC Installer enGB
2013-06-12 19:37 - 2013-06-12 19:37 - 02693531 ____A (Blizzard Entertainment) C:\Users\Alex\Downloads\Downloader_Warcraft3_Reign_of_Chaos_enGB.exe
2013-06-12 18:34 - 2013-06-12 18:34 - 02686998 ____A (Blizzard Entertainment) C:\Users\Alex\Downloads\Downloader_Warcraft3_The_Frozen_Throne_enGB.exe
2013-06-11 14:21 - 2013-06-11 15:04 - 00000000 ____D C:\Users\Alex\Desktop\KSP_win
2013-06-11 14:14 - 2013-06-11 14:19 - 386526676 ____A C:\Users\Alex\Desktop\KSP0202_WINDOWS.rar
2013-06-11 00:47 - 2013-06-11 00:47 - 00001392 ____A C:\Users\Alex\Downloads\Cultures_3_plus_4-MULTi2-GoodOldGames-i4luulma5g6.dlc
2013-06-11 00:47 - 1998-10-21 18:43 - 00328704 ____A (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe
2013-06-09 19:02 - 2013-06-09 19:02 - 00002359 ____A C:\Users\Alex\Downloads\Preisliste-2-HayDay.txt
2013-06-09 19:01 - 2013-06-09 19:01 - 00001871 ____A C:\Users\Alex\Downloads\Preisliste.txt
2013-06-08 19:02 - 2013-06-08 19:02 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Jasc
2013-06-08 19:01 - 2013-06-08 19:02 - 00000000 ____D C:\Program Files (x86)\Jasc Software Inc
2013-06-08 18:59 - 2013-06-08 18:59 - 11455648 ____A (Jasc Software Inc) C:\Users\Alex\Desktop\ans304gv.exe
2013-06-08 18:58 - 2013-06-08 18:58 - 00393056 ____A (Softonic ) C:\Users\Alex\Downloads\SoftonicDownloader_fuer_animation-shop.exe
==================== One Month Modified Files and Folders =======
2013-07-07 18:23 - 2013-07-07 18:23 - 00000000 ____D C:\FRST
2013-07-07 18:21 - 2013-07-07 18:21 - 01934636 ____A (Farbar) C:\Users\Alex\Desktop\FRST64.exe
2013-07-07 18:20 - 2009-07-14 06:45 - 00014944 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-07 18:20 - 2009-07-14 06:45 - 00014944 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-07 18:18 - 2012-10-29 11:13 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-07 18:15 - 2012-10-09 14:35 - 00000000 ____D C:\Users\Alex\AppData\Roaming\TS3Client
2013-07-07 18:13 - 2013-05-24 13:53 - 00000000 ____D C:\ProgramData\VMware
2013-07-07 18:13 - 2012-10-05 22:13 - 00001102 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-07 18:13 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-07 18:13 - 2009-07-14 06:51 - 00034312 ____A C:\Windows\setupact.log
2013-07-07 01:43 - 2012-10-05 19:31 - 01153766 ____A C:\Windows\WindowsUpdate.log
2013-07-07 01:27 - 2012-10-06 15:20 - 00178652 ____A C:\Windows\PFRO.log
2013-07-07 01:24 - 2013-05-27 15:49 - 00000000 ____D C:\Users\Alex\Desktop\Neuer Ordner (3)
2013-07-07 00:45 - 2012-10-05 22:13 - 00001106 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-07 00:36 - 2012-10-15 16:12 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.xtr
2013-07-07 00:36 - 2012-10-15 16:04 - 00291088 ____A C:\Windows\SysWOW64\PnkBstrB.exe
2013-07-07 00:35 - 2012-10-15 16:04 - 00281520 ____A C:\Windows\SysWOW64\PnkBstrB.ex0
2013-07-07 00:34 - 2012-10-09 14:30 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-07 00:06 - 2013-01-13 14:53 - 00000000 ___RD C:\Users\Alex\Desktop\Alles
2013-07-03 01:55 - 2013-06-21 12:16 - 00000000 ____D C:\Users\Alex\Documents\Outlook-Dateien
2013-07-02 23:46 - 2013-06-12 20:09 - 00000000 ____D C:\Program Files (x86)\Warcraft III
2013-07-02 14:08 - 2012-12-21 01:12 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-02 14:07 - 2013-07-02 14:06 - 00102018 ____A C:\Users\Alex\Desktop\Extras.Txt
2013-07-02 14:06 - 2013-07-02 14:06 - 00135222 ____A C:\Users\Alex\Desktop\OTL.Txt
2013-07-02 14:01 - 2013-07-02 14:01 - 00001109 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-07-02 13:58 - 2013-07-02 02:38 - 00000000 ____D C:\Program Files (x86)\Motherboard Monitor 5
2013-07-02 13:49 - 2013-07-02 13:49 - 00000000 ____A C:\Users\Alex\Desktop\Neues Textdokument (3).txt
2013-07-02 01:18 - 2013-05-07 02:39 - 00000466 ____A C:\Users\Alex\SciTE.session
2013-07-02 01:07 - 2013-07-01 21:49 - 00001956 ____A C:\Users\Alex\Desktop\test - Kopie (2).au3
2013-07-01 23:17 - 2013-07-01 21:05 - 00001224 ____A C:\Users\Alex\Desktop\test - Kopie.au3
2013-06-28 00:12 - 2012-11-12 22:21 - 00000000 ____D C:\Users\Alex\AppData\Roaming\vlc
2013-06-27 23:45 - 2013-06-27 23:45 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum
2013-06-27 23:45 - 2013-06-27 00:43 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum
2013-06-27 23:45 - 2013-06-27 00:43 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum
2013-06-27 23:45 - 2013-05-17 00:44 - 00378944 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys
2013-06-27 23:45 - 2013-05-17 00:43 - 01030952 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys
2013-06-27 23:45 - 2013-05-17 00:43 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys
2013-06-27 12:03 - 2013-03-11 23:33 - 00000000 ____D C:\Windows\pss
2013-06-27 11:56 - 2013-03-11 23:33 - 00000000 ___RD C:\Users\Alex\Dropbox
2013-06-27 11:56 - 2013-03-11 23:31 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Dropbox
2013-06-27 02:59 - 2013-06-26 14:23 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Skype
2013-06-26 19:27 - 2013-06-26 19:27 - 00000000 ____D C:\Users\Alex\Desktop\Neuer Ordner (4)
2013-06-26 19:27 - 2013-05-27 15:53 - 00000000 ____D C:\Users\Alex\AppData\Local\WinZip
2013-06-26 14:23 - 2013-06-26 14:23 - 00002517 ____A C:\Users\Public\Desktop\Skype.lnk
2013-06-26 14:23 - 2013-06-26 14:23 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-06-26 14:23 - 2013-06-26 14:23 - 00000000 ____D C:\ProgramData\Skype
2013-06-25 19:46 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-25 05:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-06-25 03:13 - 2013-06-25 03:00 - 00009534 ____A C:\Windows\IE10_main.log
2013-06-25 03:09 - 2013-06-25 03:09 - 19233792 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-25 03:09 - 2013-06-25 03:09 - 02706432 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-06-25 03:09 - 2013-06-25 03:09 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01509376 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-06-25 03:09 - 2013-06-25 03:09 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-25 03:09 - 2013-06-25 03:09 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-25 03:09 - 2013-06-25 03:09 - 01400416 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-06-25 03:09 - 2013-06-25 03:09 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 01054720 ____A (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00905728 ____A (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00762368 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00599552 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00526336 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00452096 ____A (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00441856 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2013-06-25 03:09 - 2013-06-25 03:09 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-25 03:09 - 2013-06-25 03:09 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00281600 ____A (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00270848 ____A (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00247296 ____A (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00235008 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00226304 ____A (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00197120 ____A (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00173568 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00167424 ____A (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00149504 ____A (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00144896 ____A (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00136192 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00135680 ____A (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00102912 ____A (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00097280 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00092160 ____A (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00081408 ____A (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00077312 ____A (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-06-25 03:09 - 2013-06-25 03:09 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00062976 ____A (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-25 03:09 - 2013-06-25 03:09 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00053760 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00051200 ____A (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00048640 ____A (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00039936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00027648 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-25 03:09 - 2013-06-25 03:09 - 00013824 ____A (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00012800 ____A (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-06-25 03:09 - 2013-06-25 03:09 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-25 01:26 - 2012-10-09 14:31 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2013-06-23 19:37 - 2013-06-23 19:37 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2013-06-21 12:16 - 2013-06-21 12:16 - 00000000 ____D C:\Users\Alex\AppData\Local\WinZip Courier
2013-06-21 12:16 - 2013-06-21 12:16 - 00000000 ____D C:\ProgramData\WinZipEC
2013-06-21 12:16 - 2013-06-21 12:16 - 00000000 ____D C:\ProgramData\DualMonitor
2013-06-21 12:16 - 2012-10-13 19:35 - 00000000 ____D C:\Users\Alex\AppData\Roaming\TeamViewer
2013-06-20 17:37 - 2013-05-30 15:21 - 00002183 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-06-20 14:37 - 2013-06-20 13:59 - 00001134 ____A C:\Users\Alex\Desktop\test.au3
2013-06-19 18:37 - 2013-06-19 18:36 - 01361360 ____A C:\Users\Alex\Desktop\ts3_recording_13_06_19_18_36_52.wav
2013-06-19 12:00 - 2013-02-17 20:48 - 00000000 ____D C:\Users\Alex\AppData\Local\ArmA 2 OA
2013-06-19 03:02 - 2013-05-24 13:53 - 01602306 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-06-19 03:02 - 2009-07-14 19:58 - 00702154 ____A C:\Windows\System32\perfh007.dat
2013-06-19 03:02 - 2009-07-14 19:58 - 00150820 ____A C:\Windows\System32\perfc007.dat
2013-06-19 03:02 - 2009-07-14 07:13 - 01602306 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-18 21:39 - 2013-05-14 18:16 - 00000000 ____D C:\Users\Public\Creative
2013-06-17 01:20 - 2013-06-17 01:20 - 03820480 ____A C:\Users\Alex\Downloads\battlelog-web-plugins_2.1.7_115.exe
2013-06-17 01:20 - 2012-10-09 14:27 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-06-16 13:12 - 2013-06-16 13:12 - 01330635 ____A C:\Users\Alex\Desktop\Tolkien__J._R._R._-_Der_Hobbit.rar
2013-06-13 17:28 - 2013-06-13 17:28 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\Alex\Desktop\mbam-setup-1.75.0.1300.exe
2013-06-13 02:45 - 2012-10-05 23:25 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 20:34 - 2013-06-12 20:34 - 00001094 ____A C:\Users\Public\Desktop\Warcraft III - The Frozen Throne.lnk
2013-06-12 20:32 - 2013-06-12 20:20 - 00000000 ____D C:\Users\Alex\Downloads\Warcraft III 1.21b TFT Installer enGB
2013-06-12 20:09 - 2013-06-12 20:09 - 00001049 ____A C:\Users\Public\Desktop\Warcraft III.lnk
2013-06-12 20:08 - 2013-06-12 19:38 - 00000000 ____D C:\Users\Alex\Downloads\Warcraft III 1.21b ROC Installer enGB
2013-06-12 19:37 - 2013-06-12 19:37 - 02693531 ____A (Blizzard Entertainment) C:\Users\Alex\Downloads\Downloader_Warcraft3_Reign_of_Chaos_enGB.exe
2013-06-12 18:34 - 2013-06-12 18:34 - 02686998 ____A (Blizzard Entertainment) C:\Users\Alex\Downloads\Downloader_Warcraft3_The_Frozen_Throne_enGB.exe
2013-06-11 22:18 - 2012-10-05 22:12 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-11 22:18 - 2012-10-05 22:12 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-11 15:04 - 2013-06-11 14:21 - 00000000 ____D C:\Users\Alex\Desktop\KSP_win
2013-06-11 14:19 - 2013-06-11 14:14 - 386526676 ____A C:\Users\Alex\Desktop\KSP0202_WINDOWS.rar
2013-06-11 13:40 - 2013-06-06 22:24 - 00000000 ____D C:\Users\Alex\AppData\Local\LogMeIn Hamachi
2013-06-11 01:05 - 2012-12-17 17:19 - 00000000 ____D C:\GOG Games
2013-06-11 00:47 - 2013-06-11 00:47 - 00001392 ____A C:\Users\Alex\Downloads\Cultures_3_plus_4-MULTi2-GoodOldGames-i4luulma5g6.dlc
2013-06-09 19:02 - 2013-06-09 19:02 - 00002359 ____A C:\Users\Alex\Downloads\Preisliste-2-HayDay.txt
2013-06-09 19:01 - 2013-06-09 19:01 - 00001871 ____A C:\Users\Alex\Downloads\Preisliste.txt
2013-06-08 19:02 - 2013-06-08 19:02 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Jasc
2013-06-08 19:02 - 2013-06-08 19:01 - 00000000 ____D C:\Program Files (x86)\Jasc Software Inc
2013-06-08 18:59 - 2013-06-08 18:59 - 11455648 ____A (Jasc Software Inc) C:\Users\Alex\Desktop\ans304gv.exe
2013-06-08 18:58 - 2013-06-08 18:58 - 00393056 ____A (Softonic ) C:\Users\Alex\Downloads\SoftonicDownloader_fuer_animation-shop.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-06-24 15:59
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-07-2013 Ran by Alex at 2013-07-07 18:24:31 Running from C:\Users\Alex\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Adobe AIR (x32 Version: 3.7.0.1860) Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Reader X (10.1.7) - Deutsch (x32 Version: 10.1.7) AION Free-to-Play Version 1.0 (x32 Version: 1.0) AMD Accelerated Video Transcoding (Version: 12.10.100.30328) AMD Catalyst Install Manager (Version: 8.0.911.0) AMD Drag and Drop Transcoding (Version: 2.00.0000) AMD Fuel (Version: 2013.0328.2218.38225) AMD Media Foundation Decoders (Version: 1.0.80328.2204) AMD VISION Engine Control Center (x32 Version: 2013.0328.2218.38225) Animation Shop 3 Try And Buy (x32 Version: 3.0.4.0000) Arma 2 (x32) Arma 2: Operation Arrowhead (x32) Arma 2: Operation Arrowhead Beta (x32) Assassin's Creed (R) III (x32 Version: 1.01) AutoIt v3.3.8.0 (x32) avast! Free Antivirus (x32 Version: 8.0.1489.0) Battlefield 3™ (x32 Version: 1.6.0.0) Battlelog Web Plugins (x32 Version: 2.1.7) BattlEye for OA Uninstall (x32) BattlEye Uninstall (x32) Borderlands 2 (x32) Borderlands 2 Update 14 (v1.5.0) Plus Ultimate Vault Hunters Upgrade Pack DLC 1.00 (x32 Version: 1.00) Bundled software uninstaller (x32) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225) Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225) Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225) CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225) CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225) CCC Help Czech (x32 Version: 2013.0328.2217.38225) CCC Help Danish (x32 Version: 2013.0328.2217.38225) CCC Help Dutch (x32 Version: 2013.0328.2217.38225) CCC Help English (x32 Version: 2013.0328.2217.38225) CCC Help Finnish (x32 Version: 2013.0328.2217.38225) CCC Help French (x32 Version: 2013.0328.2217.38225) CCC Help German (x32 Version: 2013.0328.2217.38225) CCC Help Greek (x32 Version: 2013.0328.2217.38225) CCC Help Hungarian (x32 Version: 2013.0328.2217.38225) CCC Help Italian (x32 Version: 2013.0328.2217.38225) CCC Help Japanese (x32 Version: 2013.0328.2217.38225) CCC Help Korean (x32 Version: 2013.0328.2217.38225) CCC Help Norwegian (x32 Version: 2013.0328.2217.38225) CCC Help Polish (x32 Version: 2013.0328.2217.38225) CCC Help Portuguese (x32 Version: 2013.0328.2217.38225) CCC Help Russian (x32 Version: 2013.0328.2217.38225) CCC Help Spanish (x32 Version: 2013.0328.2217.38225) CCC Help Swedish (x32 Version: 2013.0328.2217.38225) CCC Help Thai (x32 Version: 2013.0328.2217.38225) CCC Help Turkish (x32 Version: 2013.0328.2217.38225) ccc-utility64 (Version: 2013.0328.2218.38225) CrystalDiskInfo 5.6.2 (x32 Version: 5.6.2) Cultures 3 Cultures 4 Cultures2 - Die Tore Asgards (x32) D3DX10 (x32 Version: 15.4.2368.0902) DAEMON Tools Lite (x32 Version: 4.45.4.0314) DayZ Commander (x32 Version: 0.91.2) Dead Space™ 3 (x32 Version: 1.0.0.0) Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32) Die Sims™ 3 (x32 Version: 1.42.130) Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.3.2) Die Sims™ 3 Diesel Accessoires (x32 Version: 14.0.48) Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96) Die Sims™ 3 Gib Gas-Accessoires (x32 Version: 5.0.44) Die Sims™ 3 Jahreszeiten (x32 Version: 16.0.136) Die Sims™ 3 Katy Perry Süße Welt (x32 Version: 13.0.62) Die Sims™ 3 Late Night (x32 Version: 6.5.1) Die Sims™ 3 Lebensfreude (x32 Version: 8.0.152) Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38) Die Sims™ 3 Reiseabenteuer (x32 Version: 2.0.86) Die Sims™ 3 Showtime (x32 Version: 12.0.273) Die Sims™ 3 Stadt-Accessoires (x32 Version: 9.0.73) Die Sims™ 3 Supernatural (x32 Version: 15.0.135) Die Sims™ 3 Traumkarrieren (x32 Version: 4.0.87) Die Sims™ 3 Traumsuite-Accessoires (x32 Version: 11.0.84) Dolby Digital Live Pack (x32 Version: 3.03) Dropbox (HKCU Version: 2.0.22) Dual Monitor 1.22 (x32 Version: 1.22.021813) EaseUS Partition Master 9.2.2 (x32) ESN Sonar (x32 Version: 0.70.4) Euro Truck Simulator 2 (x32 Version: 1.0.2) Far Cry 3 (x32 Version: 1.01) Far Cry 3 Deutsch Patch Fix-TokZic 1.00 (x32 Version: 1.00) Far Cry 3 Deutsch Patch-TokZic 1.00 (x32 Version: 1.00) FIFA 13 (x32 Version: 1.4.0.0) Fotogalerie (x32 Version: 16.4.3505.0912) Gameforge Live 1.0 "Legend" (x32 Version: 1.1.1724) Gefeuert - Dein Letzer Tag Version 1 (x32 Version: 1) Google Chrome (x32 Version: 27.0.1453.116) Google Drive (x32 Version: 1.10.4769.632) Google Update Helper (x32 Version: 1.3.21.149) Guild Wars 2 (x32) Hitman Absolution (x32) Hitman Absolution Deutsch Patch-TokZic 1.00 (x32 Version: 1.00) HTC BMP USB Driver (x32 Version: 1.0.5375) HTC Driver Installer (x32 Version: 3.0.0.007) HTC Driver Installer (x32 Version: 4.0.1.001) HTC Sync (x32 Version: 3.3.21) IPTInstaller (x32 Version: 4.0.8) Java 7 Update 21 (64-bit) (Version: 7.0.210) JDownloader 0.9 (x32 Version: 0.9) LastPass(Nur deinstallieren) (x32) League of Legends (x32 Version: 1.3) LogMeIn Hamachi (x32 Version: 2.1.0.362) M2Fish 4.4 (x32 Version: 4.4) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300) Microsoft .NET Framework 4.5 (Version: 4.5.50709) Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Office 2010 Service Pack 1 (SP1) (x32) Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000) Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Professional Plus 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000) Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0) Movie Maker (x32 Version: 16.4.3505.0912) Mozilla Firefox 21.0 (x86 de) (x32 Version: 21.0) Mozilla Maintenance Service (x32 Version: 21.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT110 (x32 Version: 16.4.1108.0727) MSVCRT110_amd64 (Version: 16.4.1109.0912) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0) myBet Poker (HKCU) Need for Speed Most Wanted Deutsch Patch-TokZic Version 1.0 (x32 Version: 1.0) Need for Speed™ Most Wanted (x32 Version: 1.0.0.0) Northland and 8th Wonder of the World (x32 Version: 2.0.0.8) Notepad++ (x32 Version: 6.3.2) Opera 12.15 (x32 Version: 12.15.1748) Oracle VM VirtualBox 4.2.12 (Version: 4.2.12) Origin (x32 Version: 9.0.13.2142) Pando Media Booster (x32 Version: 2.6.0.8) Photo Gallery (x32 Version: 16.4.3505.0912) PokerStars.eu (x32) PunkBuster Services (x32 Version: 0.991) Python 2.2.3 (x32 Version: 2.2.3) Python 3.3.1 (64-bit) (Version: 3.3.1150) R.U.S.E (x32) Samsung Kies (x32 Version: 2.5.1.12123_2) SAMSUNG USB Driver for Mobile Phones (Version: 1.5.16.0) SimCity 4 (x32) SimCity™ (x32 Version: 1.0.0.0) Six Updater (x32 Version: 2.09.7038) Skype™ 6.5 (x32 Version: 6.5.158) Sound Blaster Recon3D PCIe (x32 Version: 1.01.11) Sound Blaster Recon3D PCIe Extras (x32 Version: 1.0) Steam (x32 Version: 1.0.0.0) Stronghold HD (x32 Version: 2.0.0.3) TeamSpeak 3 Client (Version: 3.0.10.1) TeamViewer 8 (x32 Version: 8.0.18051) TERA (x32 Version: 19.04.02.03.hf3) tools-windows (x32 Version: 9.2.3.1031769) UnderCoverXP 1.23 (x32) UnLock Root 3.1.3 (x32 Version: 3.1.3) UnLock Root Pro 3.41 (x32 Version: 3.41) Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1) Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1) Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1) Update for Microsoft Office 2010 (KB2553065) (x32) Update for Microsoft Office 2010 (KB2553092) (x32) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2566458) (x32) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32) Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32) Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32) Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32) Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32) Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32) Uplay (x32 Version: 2.0) VLC media player 2.0.2 (Version: 2.0.2) VLC media player 2.0.6 (x32 Version: 2.0.6) VMware Player (Version: 5.0.2) VMware Player (x32 Version: 5.0.2) Warcraft III (x32) Windows 7 USB/DVD Download Tool (x32 Version: 1.0.30) Windows Live Communications Platform (x32 Version: 16.4.3505.0912) Windows Live Essentials (x32 Version: 16.4.3505.0912) Windows Live ID Sign-in Assistant (Version: 7.250.4311.0) Windows Live Installer (x32 Version: 16.4.3505.0912) Windows Live Photo Common (x32 Version: 16.4.3505.0912) Windows Live PIMT Platform (x32 Version: 16.4.3505.0912) Windows Live SOXE (x32 Version: 16.4.3505.0912) Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912) Windows Live UX Platform (x32 Version: 16.4.3505.0912) Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912) WinRAR 4.20 (64-Bit) (Version: 4.20.0) WinSetupFromUSB (HKCU) WinZip 17.5 (Version: 17.5.10480) World of Tanks (x32) Zoo Tycoon: Complete Collection (x32) ZTE Handset USB Driver 5.2066.1.8B02 (Version: 5.2066.1.8B02) ==================== Restore Points ========================= 18-06-2013 11:34:50 Windows Update 19-06-2013 01:00:12 Windows Update 20-06-2013 07:25:09 Windows Update 25-06-2013 01:00:17 Windows Update 28-06-2013 11:03:47 Windows Update 02-07-2013 12:50:37 Windows Update 05-07-2013 16:36:08 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {0E9548BC-4BDD-4F86-B6A0-25101DEEAE31} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {25D63616-1BCB-47BC-9368-79E269D9F21C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-11] (Adobe Systems Incorporated) Task: {43FC88E1-1120-4F20-9141-705B0A0A2A86} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => C:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {64A71862-2978-4048-B140-947AC1BE297A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-05] (Google Inc.) Task: {B5D0F81C-2D38-4A89-8CEA-7B85AD71CCFB} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-12-12] () Task: {BF55EB83-A3C0-4DFA-9E15-EE1B8D428FF1} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe No File Task: {CB0492FC-3529-4462-9107-C5E3BD2B8119} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-05] (Google Inc.) Task: {FEE8C7F5-09EC-4C35-BDAF-3BEE5F2FECE6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/02/2013 02:43:09 AM) (Source: Application Hang) (User: ) Description: Programm MBM5.exe, Version 5.3.7.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: d24 Startzeit: 01ce76bd0b12f6d5 Endzeit: 2 Anwendungspfad: C:\Program Files (x86)\Motherboard Monitor 5\MBM5.exe Berichts-ID: Error: (07/01/2013 03:40:23 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (06/28/2013 03:16:05 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (06/27/2013 09:18:30 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (06/27/2013 01:03:24 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.0.6.0, Zeitstempel: 0x516ae039 Name des fehlerhaften Moduls: vlc.exe, Version: 2.0.6.0, Zeitstempel: 0x516ae039 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00001cb9 ID des fehlerhaften Prozesses: 0x578 Startzeit der fehlerhaften Anwendung: 0xvlc.exe0 Pfad der fehlerhaften Anwendung: vlc.exe1 Pfad des fehlerhaften Moduls: vlc.exe2 Berichtskennung: vlc.exe3 Error: (06/26/2013 02:25:05 PM) (Source: MsiInstaller) (User: Alex-PC) Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL) Error: (06/25/2013 07:38:28 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (06/24/2013 03:59:16 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (06/22/2013 00:00:59 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "1". Fehler in Manifest- oder Richtliniendatei "2" in Zeile 3. Das Stammelement der Manifestdatei muss assembliert sein. Error: (06/17/2013 11:03:41 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.0.6.0, Zeitstempel: 0x516ae039 Name des fehlerhaften Moduls: vlc.exe, Version: 2.0.6.0, Zeitstempel: 0x516ae039 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00006f07 ID des fehlerhaften Prozesses: 0x41a4 Startzeit der fehlerhaften Anwendung: 0xvlc.exe0 Pfad der fehlerhaften Anwendung: vlc.exe1 Pfad des fehlerhaften Moduls: vlc.exe2 Berichtskennung: vlc.exe3 System errors: ============= Error: (07/02/2013 01:45:44 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: mbmiodrvr Error: (07/02/2013 02:38:50 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "mbmiodrvr" wurde aufgrund folgenden Fehlers nicht gestartet: %%577 Error: (06/21/2013 00:14:12 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:14:12 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:13:42 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:13:42 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:13:42 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:13:42 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:12:42 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (06/21/2013 00:12:12 PM) (Source: Schannel) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Microsoft Office Sessions: ========================= Error: (07/02/2013 02:43:09 AM) (Source: Application Hang)(User: ) Description: MBM5.exe5.3.7.0d2401ce76bd0b12f6d52C:\Program Files (x86)\Motherboard Monitor 5\MBM5.exe Error: (07/01/2013 03:40:23 AM) (Source: SideBySide)(User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (06/28/2013 03:16:05 PM) (Source: SideBySide)(User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (06/27/2013 09:18:30 PM) (Source: SideBySide)(User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (06/27/2013 01:03:24 AM) (Source: Application Error)(User: ) Description: vlc.exe2.0.6.0516ae039vlc.exe2.0.6.0516ae039c000000500001cb957801ce72bc979a97bcC:\Program Files (x86)\VideoLAN\VLC\vlc.exeC:\Program Files (x86)\VideoLAN\VLC\vlc.exe9a18323f-deb4-11e2-9a00-005056c00008 Error: (06/26/2013 02:25:05 PM) (Source: MsiInstaller)(User: Alex-PC) Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL) Error: (06/25/2013 07:38:28 PM) (Source: SideBySide)(User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (06/24/2013 03:59:16 PM) (Source: SideBySide)(User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (06/22/2013 00:00:59 PM) (Source: SideBySide)(User: ) Description: C:\Program Files\WinZip\adxloader.dll.ManifestC:\Program Files\WinZip\adxloader.dll.Manifest2 Error: (06/17/2013 11:03:41 PM) (Source: Application Error)(User: ) Description: vlc.exe2.0.6.0516ae039vlc.exe2.0.6.0516ae039c000000500006f0741a401ce6b9e245991b8C:\Program Files (x86)\VideoLAN\VLC\vlc.exeC:\Program Files (x86)\VideoLAN\VLC\vlc.exe631c2bd2-d791-11e2-a97a-005056c00008 ==================== Memory info =========================== Percentage of memory in use: 27% Total physical RAM: 8190.49 MB Available physical RAM: 5925.93 MB Total Pagefile: 16379.17 MB Available Pagefile: 13999.81 MB Total Virtual: 8192 MB Available Virtual: 8191.84 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:931.51 GB) (Free:418.65 GB) NTFS (Disk=0 Partition=1) ==>[System with boot components (obtained from reading drive)] Drive f: (FILMETV) (Fixed) (Total:465.61 GB) (Free:387.77 GB) FAT32 (Disk=1 Partition=1) Drive i: (Speicherplatte) (Fixed) (Total:1397.25 GB) (Free:302.33 GB) NTFS (Disk=1 Partition=2) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D9F5DFA1) Partition 1: (Active) - (Size=932 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0031063B) Partition 1: (Not Active) - (Size=466 GB) - (Type=0C) Partition 2: (Not Active) - (Size=-698733297664) - (Type=07 NTFS) ==================== End Of Log ============================ |
|
07.07.2013, 18:41
| #4 |
| /// the machine /// TB-Ausbilder | Windows uhr läuft zu schnell? Hi, ESET Online Scanner
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.07.2013, 01:19
| #5 |
| | Windows uhr läuft zu schnell? braucht ganz schön lange das ding  Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=4cb2d815a161d14bb44f6e157416a475
# engine=14322
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-08 11:51:25
# local_time=2013-07-09 01:51:25 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 91 957974 150037357 0 0
# compatibility_mode=5893 16776573 100 94 22724 124957335 0 0
# scanned=565398
# found=2
# cleaned=0
# scan_time=16547
sh=1FC4D7F09BE93E63A74A5F935B541B9C20DD60F7 ft=0 fh=0000000000000000 vn="HTML/Iframe.B.Gen virus" ac=I fn="C:\Users\Alex\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\HQDWYPOM\b015e0b[1].htm"
sh=EBCA02174831FCD758DCCCB5EF4937DD370485D5 ft=1 fh=2098c93e421afd41 vn="Win32/Adware.AddLyrics.F application" ac=I fn="C:\Users\Alex\AppData\Local\Temp\LyricsPal.exe"
|
|
09.07.2013, 07:23
| #6 |
| /// the machine /// TB-Ausbilder | Windows uhr läuft zu schnell? Nope, Logs sind alle sauber.
__________________ --> Windows uhr läuft zu schnell? |
|
09.07.2013, 12:42
| #7 |
| | Windows uhr läuft zu schnell? sonst evtl ne andere idee, woran es liegen könnte?? |
|
09.07.2013, 12:51
| #8 |
| /// the machine /// TB-Ausbilder | Windows uhr läuft zu schnell? CMOS Batterie haste getauscht?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.07.2013, 13:00
| #9 |
| | Windows uhr läuft zu schnell? Jap, ist von k&k, kann diese evtl leer sein?? glaube ich aber eher nicht... |
|
09.07.2013, 13:21
| #10 |
| /// the machine /// TB-Ausbilder | Windows uhr läuft zu schnell? Möglich. Tausch nochmal. Dann Bios auf Standard zurücksetzen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.07.2013, 15:58
| #11 |
| | Windows uhr läuft zu schnell? Batterie raus, power taste 30 seks, neue Batterie rein, wieder hoch fahren und dabei kann ein Fenster wo ungefähr stand auf englisch : letzte eiszeitlichen nicht da, welche auswählen: last known oder default, habe default gewählt und jetzt spinnt mein pc... Inet Treiber will nicht, tastatur will nicht, Mais schon, obwohl beides über den gleichen treiber läuft. Hab schon alles mögliche probiert... |
|
09.07.2013, 17:01
| #12 |
| /// the machine /// TB-Ausbilder | Windows uhr läuft zu schnell? wie kommst Du auf diese Weise die Batterie zu wechseln?  Rechner neu starten, F8 drücken um in die Auswahl zu kommen, wähle letzte als funktionierend bekannte Version.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.07.2013, 17:21
| #13 | |
| | Windows uhr läuft zu schnell?Zitat:
tausch nochmal, hab das interpretiert, als nochmal ne neue einzusetzen?! letzte bekannte funktionierende version: gleiche wie vorher -.-, aber war doch eig klar oder?? die funktion lädt doch nur die letzte funktionierende version vom os und lädt nicht die letzten einstellungen vom bios oder?? |
|
09.07.2013, 17:31
| #14 |
| /// the machine /// TB-Ausbilder | Windows uhr läuft zu schnell? Ja Du solltest ja auch die Batterie tauschen. Ahso, ums BIOS gehts. Lad mal die Default werte nochmal.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.07.2013, 17:51
| #15 |
| | Windows uhr läuft zu schnell? ich kenn bios zurücksetzen auf dieser art oder mit einem jumper überbrücken, sodass dbios für kurze zeit keine spannung mehr hat. gibt man bei google bios zurücksetzen ein, dann kommt unter anderem auch diese methode. wenn ich die feault einstellungen lade, selbe wieder vorher, maus/tasta treiber lässt sich nicht mehr richtig instalieren, kein inet und so -.- |
|
| Themen zu Windows uhr läuft zu schnell? |
| adware.agent, autorun, firefox, flash player, frage, gebraucht, helper, html/iframe.b.gen, launch, object, plug-in, pricepeep, pup.chromepasswordtool, pup.operapasswordtool, realtek, schädling, software, win32/adware.addlyrics.f, windows |
Linear-Darstellung
