Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Auswertung der FRST Logdatei :)

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 17.09.2013, 14:46   #1
Lucas2703
 
Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



Moin Leute,

kann mir das bitte jemand auswerten? Bin mir nicht sicher, ob ich einen Virus habe..
In letzter Zeit habe ich außerdem des öfteren einen Bluescreen. Mal beim bearbeiten von Videos (Vegas Pro, After Effects) oder mal beim uploaden von Videos zu Yt.
Heute habe ich eine Sache anscheinend schon behoben, indem ich meinen Soundkartentreiber neu installiert habe. Grund: bei Bluescreen stand dort: cmudaxp.sys
Seitdem hatte ich auch keinen Bluescreen mehr. Hoffentlich lag es nur daran...

Mfg

Lucas

FRST Log:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-09-2013 03
Ran by Lucas (administrator) on LUCAS-PC on 17-09-2013 15:40:22
Running from E:\unnötiger shit\Anti Viren Krams
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Realtek) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
() C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\system\HsMgr64.exe
(Spotify Ltd) C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKAG20NT.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(LucidLogix) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\lucidservices.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [VIRTU_MVP_AUTORUN] - C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe [3099880 2013-02-07] ()
HKLM\...\Run: [XFast LAN] - C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-10-19] ()
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [7406392 2012-11-29] (Logitech Inc.)
HKLM\...\Run: [VIRTU MVP] - C:\Program Files\Lucidlogix Technologies\VIRTU MVP\MVPControlPanel.Exe [3099880 2013-02-07] ()
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Cmaudio8788] - C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] - C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] - C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Lucas\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-08-09] (Spotify Ltd)
HKCU\...\Run: [DAEMON Tools Lite] - E:\Programme (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKCU\...\Run: [AdobeBridge] - [x]
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [Control Center] - C:\Program Files (x86)\ASUS\WLAN Card Utilities\CenterAgent.exe [544256 2009-05-21] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642728 2012-09-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard)
AppInit_DLLs: C:\Windows\System32\appinit_dll.dll [512744 2013-02-07] (Lucidlogix Inc.)
AppInit_DLLs-x32: C:\Windows\SysWOW64\appinit_dll.dll [470248 2013-02-07] (Lucidlogix Inc.)
Startup: C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP3EC15258-EE96-422E-87B2-2C7017890308
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1AAC796FD2E5CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP3EC15258-EE96-422E-87B2-2C7017890308&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP3EC15258-EE96-422E-87B2-2C7017890308&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Ant.com browser helper (video detector) - {346FDE31-DFF9-418A-90C8-BA31DC9FF2EF} - C:\Program Files (x86)\Ant.com\IE add-on\download.dll (Ant.com)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - Ant.com Video Downloader toolbar - {2E924F4F-67F0-4BD8-9560-49F468E843D2} - C:\Program Files (x86)\Ant.com\IE add-on\anttoolbar.dll (Ant.com)
Toolbar: HKCU -  No Name - {2E924F4F-67F0-4BD8-9560-49F468E843D2} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default
FF DefaultSearchEngine: Conduit Search
FF SelectedSearchEngine: Conduit Search
FF Homepage: Youtube.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.10.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Lucas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\Profiles\d22axnka.default\searchplugins\conduit-search.xml
FF Extension: putlockerdownloader - C:\Users\Lucas\AppData\Roaming\Mozilla\Firefox\profiles\extensions\putlockerdownloader@putlockerdownloader.com.xpi
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF StartMenuInternet: FIREFOX.EXE - E:\Programme (x86)\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR Extension: (Google Drive) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Slinky Elegant) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0
CHR Extension: (Adblock Plus) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5.5_0
CHR Extension: (Google Search) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (ProxMate - Proxy on steroids!) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\3.0.8_0
CHR Extension: (Google Play) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0
CHR Extension: (ClipConverter) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\njjjgjlocdhecpgdcfjblcnfebfnmhpp\1.2.7_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Lucas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)
S4 AntUpdaterService; C:\Program Files (x86)\Ant.com\IE add-on\AntUpdaterService.exe [520216 2011-06-29] (Ant.com)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-08-08] ()
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133632 2012-02-09] ()
R2 LucidSrv; C:\Program Files\Lucidlogix Technologies\VIRTU MVP\LucidSrv.exe [16104 2013-02-07] (LucidLogix)
S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4340664 2012-07-15] (INCA Internet Co., Ltd.)
S4 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-06-25] ()
R2 Realtek11nCU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 xsherlock; C:\Windows\SysWow64\xsherlock.xem [666720 2012-12-16] (Wellbia.com Co., Ltd.)

==================== Drivers (Whitelisted) ====================

R0 asahci64; C:\Windows\System32\DRIVERS\asahci64.sys [49760 2011-09-21] (Asmedia Technology)
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-04-07] (Avira Operations GmbH & Co. KG)
R3 cmudaxp; C:\Windows\System32\drivers\cmudaxp.sys [2727936 2011-12-20] (C-Media Inc)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-11-15] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-09] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-09] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-09] ()
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [66360 2012-10-03] (Logitech Inc.)
S3 NPPTNT2; C:\Windows\SysWow64\npptNT2.sys [4682 2005-01-02] (INCA Internet Co., Ltd.)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWow64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1047144 2011-09-20] (Realtek Semiconductor Corporation                           )
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2013-06-09] (Sony Ericsson Mobile Communications)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-06-21] (Oracle Corporation)
S3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2013-01-03] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 dump_wmimmc; \??\E:\Programme (x86)\WolfTeam-DE\GameGuard\dump_wmimmc.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]
S3 MBfilt; system32\drivers\MBfilt64.sys [x]
S3 NPPTNT2; \??\C:\Windows\system32\npptNT2.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-17 14:47 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Lucas\AppData\Local\ESN Sonar
2013-09-17 14:11 - 2013-09-17 14:30 - 00000710 _____ C:\Users\Lucas\Desktop\Neues Textdokument (2).txt
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-17 12:23 - 2013-09-17 12:23 - 00044950 _____ C:\Windows\Cmicnfgp.ini.cfl
2013-09-17 12:23 - 2013-09-17 12:23 - 00000941 _____ C:\Windows\Cmicnfgp.ini.imi
2013-09-17 12:23 - 2013-09-17 12:23 - 00000880 _____ C:\Windows\system\Cmicnfgp.ini
2013-09-17 12:23 - 2011-12-29 09:09 - 00000054 ____N C:\Windows\system32\cmasiopx.ini
2013-09-17 12:23 - 2011-12-29 09:08 - 00000049 ____N C:\Windows\SysWOW64\cmasiop.ini
2013-09-17 12:23 - 2011-12-12 07:44 - 00143360 ____N C:\Windows\SysWOW64\VmixP8.dll
2013-09-17 12:23 - 2011-11-24 12:46 - 00000594 ____N C:\Windows\cmudaxp.ini
2013-09-17 12:23 - 2011-11-21 11:20 - 00005066 ____N C:\Windows\Cmicnfgp.ini.cfg
2013-09-17 12:23 - 2011-10-05 05:16 - 00465408 ____N (C-Media Electronics Inc.) C:\Windows\system32\cmasiopx.dll
2013-09-17 12:23 - 2011-10-05 05:16 - 00303104 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\cmasiop.dll
2013-09-17 12:23 - 2011-05-12 11:05 - 08769536 ____N (C-Media Corporation) C:\Windows\SysWOW64\CmiCnfgp.dll
2013-09-17 12:23 - 2011-02-24 10:52 - 00805376 ____N C:\Windows\system32\Cmeauoxy.exe
2013-09-17 12:23 - 2008-07-23 12:59 - 00389120 ____N () C:\Windows\system32\CmiCnfgp.cpl
2013-09-17 12:23 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\SysWOW64\Cm_Oal.dll
2013-09-17 12:23 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\system32\Cm_Oal.dll
2013-09-17 12:23 - 2007-11-04 19:30 - 01144983 ____N C:\Windows\KB936225x64.msu
2013-09-17 12:23 - 2006-09-13 04:21 - 00200704 ____N (C-Media) C:\Windows\SysWOW64\Cmpaoxy.dll
2013-09-17 12:13 - 2013-09-17 12:13 - 00279832 _____ C:\Windows\Minidump\091713-12246-02.dmp
2013-09-17 08:44 - 2013-09-17 08:44 - 00279832 _____ C:\Windows\Minidump\091713-12870-01.dmp
2013-09-17 08:38 - 2013-09-17 08:38 - 00279792 _____ C:\Windows\Minidump\091713-12636-01.dmp
2013-09-17 00:04 - 2013-09-17 00:04 - 00279792 _____ C:\Windows\Minidump\091713-12246-01.dmp
2013-09-16 23:34 - 2013-09-16 23:34 - 97845400 _____ C:\Windows\SysWOW64\萪熞ª
2013-09-16 23:26 - 2013-09-16 23:26 - 00279832 _____ C:\Windows\Minidump\091613-15568-01.dmp
2013-09-16 22:41 - 2013-09-16 22:41 - 00279832 _____ C:\Windows\Minidump\091613-11528-01.dmp
2013-09-16 19:22 - 2013-09-16 19:22 - 00279832 _____ C:\Windows\Minidump\091613-12183-01.dmp
2013-09-16 17:49 - 2013-09-16 17:49 - 00279832 _____ C:\Windows\Minidump\091613-12636-01.dmp
2013-09-16 17:34 - 2013-09-16 17:34 - 00279832 _____ C:\Windows\Minidump\091613-12760-01.dmp
2013-09-16 13:23 - 2013-09-16 13:25 - 00000568 _____ C:\Users\Lucas\Desktop\Neues Textdokument.txt
2013-09-16 11:48 - 2013-09-16 11:48 - 00279832 _____ C:\Windows\Minidump\091613-12932-01.dmp
2013-09-16 10:30 - 2013-09-16 10:30 - 00000000 ____D C:\Program Files\NewBlue
2013-09-16 10:27 - 2013-09-16 10:27 - 00279832 _____ C:\Windows\Minidump\091613-12948-01.dmp
2013-09-15 22:12 - 2013-09-16 23:23 - 00000000 ____D C:\Users\Lucas\Desktop\Adobe After Effects CS6
2013-09-15 22:03 - 2013-09-16 23:23 - 00000021 _____ C:\Windows\SurCode.INI
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\Documents\Adobe
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Program Files\Common Files\PACE Anti-Piracy
2013-09-15 20:11 - 2013-09-15 20:11 - 00003502 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Lucas-PC-Lucas
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PDAppFlex
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-09-15 20:09 - 2013-09-16 10:31 - 00000000 ____D C:\Program Files\Adobe
2013-09-15 20:09 - 2013-09-15 20:10 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-15 17:31 - 2013-09-15 17:31 - 00279832 _____ C:\Windows\Minidump\091513-12495-01.dmp
2013-09-15 16:08 - 2013-09-15 16:08 - 00279832 _____ C:\Windows\Minidump\091513-13228-01.dmp
2013-09-15 15:05 - 2013-09-15 15:05 - 00013651 _____ C:\Users\Lucas\Desktop\Mozilla Firefox.lnk
2013-09-15 02:39 - 2013-09-15 02:39 - 00002105 _____ C:\Users\Lucas\Desktop\Stundenplan.lnk
2013-09-15 02:37 - 2013-09-15 02:37 - 00000000 ____D C:\Users\Lucas\Desktop\partycompany bewerbung
2013-09-15 02:09 - 2013-09-15 02:09 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sony Creative Software Inc
2013-09-14 22:54 - 2013-09-14 22:54 - 00279888 _____ C:\Windows\Minidump\091413-12511-01.dmp
2013-09-14 21:33 - 2013-09-17 14:33 - 00000000 ____D C:\Users\Lucas\Desktop\YouTube
2013-09-14 20:47 - 2013-09-14 20:47 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Publish Providers
2013-09-14 20:46 - 2013-09-14 20:46 - 00000000 ____D C:\Program Files\Sony
2013-09-14 20:35 - 2013-09-14 20:47 - 00001038 _____ C:\Users\Public\Desktop\Vegas Pro 12.0.lnk
2013-09-14 20:04 - 2013-09-14 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Sony
2013-09-14 20:00 - 2013-09-14 20:00 - 00279832 _____ C:\Windows\Minidump\091413-12355-01.dmp
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\Windows\SysWOW64\spool
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\ProgramData\HP Product Assistant
2013-09-14 13:28 - 2013-09-14 13:33 - 00241402 _____ C:\Windows\hpoins35.dat
2013-09-12 13:59 - 2013-09-12 13:59 - 00279832 _____ C:\Windows\Minidump\091213-11887-01.dmp
2013-09-11 22:46 - 2013-09-11 22:46 - 00279832 _____ C:\Windows\Minidump\091113-11762-01.dmp
2013-09-11 20:59 - 2013-09-11 20:59 - 00279832 _____ C:\Windows\Minidump\091113-11294-01.dmp
2013-09-11 11:17 - 2013-09-11 11:17 - 97080355 _____ C:\Windows\SysWOW64\汸襊£
2013-09-07 21:09 - 2013-09-07 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2013-09-07 19:41 - 2013-09-07 19:41 - 00003062 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00003060 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2013-09-07 17:42 - 2013-08-07 04:22 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-09-07 17:36 - 2013-09-07 20:15 - 00001912 _____ C:\Windows\epplauncher.mif
2013-09-07 17:36 - 2013-09-07 17:37 - 00000000 ____D C:\Windows\system32\MRT
2013-09-05 14:10 - 2013-09-05 14:10 - 00000936 _____ C:\Users\Lucas\Desktop\Evernote.lnk
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Users\Lucas\AppData\Local\Evernote
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Program Files (x86)\Evernote
2013-09-01 23:25 - 2013-09-01 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashRpt
2013-09-01 22:55 - 2013-09-01 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\JC2MP
2013-08-23 12:38 - 2013-08-23 12:38 - 00000000 ____D C:\Users\Lucas\Documents\Square Enix
2013-08-21 22:04 - 2013-08-21 22:04 - 00000000 ____D C:\Windows\de
2013-08-21 22:03 - 2013-08-21 22:03 - 00000020 _____ C:\Windows\èùT
2013-08-21 22:03 - 2013-08-21 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-08-21 22:02 - 2013-08-21 22:03 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-08-21 22:01 - 2013-08-21 23:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\Windows Live
2013-08-20 16:11 - 2013-08-20 16:11 - 00272584 _____ C:\Windows\Minidump\082013-12324-01.dmp
2013-08-19 22:07 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-19 22:07 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-19 22:07 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-19 22:07 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-19 22:07 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-19 22:07 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-19 22:07 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-19 22:07 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-19 22:07 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-19 22:07 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-19 22:07 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

==================== One Month Modified Files and Folders =======

2013-09-17 15:38 - 2009-07-14 19:58 - 00699092 _____ C:\Windows\system32\perfh007.dat
2013-09-17 15:38 - 2009-07-14 19:58 - 00149232 _____ C:\Windows\system32\perfc007.dat
2013-09-17 15:38 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-17 15:37 - 2013-04-14 01:44 - 00000000 ____D C:\Users\Lucas\Desktop\Stuff
2013-09-17 15:37 - 2009-07-14 06:45 - 00014800 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-17 15:37 - 2009-07-14 06:45 - 00014800 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-17 15:36 - 2012-11-15 20:26 - 01250120 _____ C:\Windows\WindowsUpdate.log
2013-09-17 15:32 - 2012-11-18 12:58 - 00072493 _____ C:\Windows\setupact.log
2013-09-17 15:32 - 2012-11-15 22:47 - 00000000 ____D C:\Users\Lucas\Lucidlogix
2013-09-17 15:32 - 2012-11-15 20:40 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-17 15:32 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-17 15:28 - 2013-05-08 10:54 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-09-17 15:28 - 2012-12-18 16:56 - 00290184 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-09-17 15:27 - 2013-05-08 10:54 - 00291088 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-09-17 15:27 - 2012-11-17 00:35 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashDumps
2013-09-17 14:47 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Lucas\AppData\Local\ESN Sonar
2013-09-17 14:42 - 2012-11-15 20:40 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-17 14:33 - 2013-09-14 21:33 - 00000000 ____D C:\Users\Lucas\Desktop\YouTube
2013-09-17 14:30 - 2013-09-17 14:11 - 00000710 _____ C:\Users\Lucas\Desktop\Neues Textdokument (2).txt
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-17 12:37 - 2013-09-17 12:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-17 12:23 - 2013-09-17 12:23 - 00044950 _____ C:\Windows\Cmicnfgp.ini.cfl
2013-09-17 12:23 - 2013-09-17 12:23 - 00000941 _____ C:\Windows\Cmicnfgp.ini.imi
2013-09-17 12:23 - 2013-09-17 12:23 - 00000880 _____ C:\Windows\system\Cmicnfgp.ini
2013-09-17 12:23 - 2013-01-15 13:52 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2013-09-17 12:23 - 2013-01-15 13:52 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2013-09-17 12:23 - 2013-01-15 13:52 - 00111616 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2013-09-17 12:23 - 2013-01-15 13:52 - 00102400 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2013-09-17 12:23 - 2013-01-15 13:46 - 00000142 _____ C:\Windows\system\Dlap.pfx
2013-09-17 12:23 - 2013-01-15 13:46 - 00000000 ____D C:\Program Files\ASUS Xonar DGX Audio
2013-09-17 12:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2013-09-17 12:21 - 2013-01-15 13:52 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\ASUS
2013-09-17 12:13 - 2013-09-17 12:13 - 00279832 _____ C:\Windows\Minidump\091713-12246-02.dmp
2013-09-17 12:13 - 2013-08-08 20:54 - 635990974 _____ C:\Windows\MEMORY.DMP
2013-09-17 12:13 - 2012-11-30 02:19 - 00000000 ____D C:\Windows\Minidump
2013-09-17 08:54 - 2012-11-17 17:38 - 00000000 ____D C:\Users\Lucas\AppData\Local\Adobe
2013-09-17 08:44 - 2013-09-17 08:44 - 00279832 _____ C:\Windows\Minidump\091713-12870-01.dmp
2013-09-17 08:38 - 2013-09-17 08:38 - 00279792 _____ C:\Windows\Minidump\091713-12636-01.dmp
2013-09-17 00:04 - 2013-09-17 00:04 - 00279792 _____ C:\Windows\Minidump\091713-12246-01.dmp
2013-09-16 23:34 - 2013-09-16 23:34 - 97845400 _____ C:\Windows\SysWOW64\萪熞ª
2013-09-16 23:30 - 2012-12-05 20:40 - 00003930 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{BCA47DEE-9D3C-4E06-BD7A-84C3B024BCD6}
2013-09-16 23:26 - 2013-09-16 23:26 - 00279832 _____ C:\Windows\Minidump\091613-15568-01.dmp
2013-09-16 23:26 - 2009-07-14 06:45 - 04977024 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-16 23:23 - 2013-09-15 22:12 - 00000000 ____D C:\Users\Lucas\Desktop\Adobe After Effects CS6
2013-09-16 23:23 - 2013-09-15 22:03 - 00000021 _____ C:\Windows\SurCode.INI
2013-09-16 23:23 - 2012-11-15 22:49 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Adobe
2013-09-16 23:23 - 2012-03-30 02:56 - 00000000 ___HD C:\Users\Lucas\AppData\Local\s1I6mPsfxd
2013-09-16 23:22 - 2012-11-15 20:39 - 00090216 _____ C:\Users\Lucas\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-16 22:50 - 2012-12-17 18:30 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\uTorrent
2013-09-16 22:41 - 2013-09-16 22:41 - 00279832 _____ C:\Windows\Minidump\091613-11528-01.dmp
2013-09-16 19:22 - 2013-09-16 19:22 - 00279832 _____ C:\Windows\Minidump\091613-12183-01.dmp
2013-09-16 17:49 - 2013-09-16 17:49 - 00279832 _____ C:\Windows\Minidump\091613-12636-01.dmp
2013-09-16 17:34 - 2013-09-16 17:34 - 00279832 _____ C:\Windows\Minidump\091613-12760-01.dmp
2013-09-16 17:34 - 2012-11-18 12:58 - 02356534 _____ C:\Windows\PFRO.log
2013-09-16 13:25 - 2013-09-16 13:23 - 00000568 _____ C:\Users\Lucas\Desktop\Neues Textdokument.txt
2013-09-16 13:12 - 2012-11-17 20:54 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2013-09-16 13:12 - 2009-07-14 01:55 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2013-09-16 13:12 - 2009-07-14 01:54 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\themeservice.dll
2013-09-16 11:48 - 2013-09-16 11:48 - 00279832 _____ C:\Windows\Minidump\091613-12932-01.dmp
2013-09-16 10:31 - 2013-09-15 20:09 - 00000000 ____D C:\Program Files\Adobe
2013-09-16 10:30 - 2013-09-16 10:30 - 00000000 ____D C:\Program Files\NewBlue
2013-09-16 10:27 - 2013-09-16 10:27 - 00279832 _____ C:\Windows\Minidump\091613-12948-01.dmp
2013-09-16 10:08 - 2012-11-15 22:49 - 00000000 ____D C:\ProgramData\Adobe
2013-09-15 22:12 - 2012-11-16 15:56 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\vlc
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\Documents\Adobe
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Users\Lucas\AppData\Local\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\ProgramData\PACE Anti-Piracy
2013-09-15 22:03 - 2013-09-15 22:03 - 00000000 ____D C:\Program Files\Common Files\PACE Anti-Piracy
2013-09-15 22:03 - 2013-01-16 16:54 - 00000000 ___HD C:\Users\Lucas\AppData\Local\ALA3K1uH81OE
2013-09-15 20:11 - 2013-09-15 20:11 - 00003502 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Lucas-PC-Lucas
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\PDAppFlex
2013-09-15 20:11 - 2013-09-15 20:11 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-09-15 20:10 - 2013-09-15 20:09 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-09-15 20:10 - 2012-11-15 22:49 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-09-15 19:37 - 2012-11-17 17:22 - 00014808 _____ C:\Users\Lucas\Documents\Stundenplan.xlsx
2013-09-15 18:46 - 2013-04-26 17:28 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sony
2013-09-15 18:46 - 2012-11-15 22:29 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Skype
2013-09-15 17:50 - 2012-12-17 19:10 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\HpUpdate
2013-09-15 17:31 - 2013-09-15 17:31 - 00279832 _____ C:\Windows\Minidump\091513-12495-01.dmp
2013-09-15 16:08 - 2013-09-15 16:08 - 00279832 _____ C:\Windows\Minidump\091513-13228-01.dmp
2013-09-15 15:05 - 2013-09-15 15:05 - 00013651 _____ C:\Users\Lucas\Desktop\Mozilla Firefox.lnk
2013-09-15 02:39 - 2013-09-15 02:39 - 00002105 _____ C:\Users\Lucas\Desktop\Stundenplan.lnk
2013-09-15 02:37 - 2013-09-15 02:37 - 00000000 ____D C:\Users\Lucas\Desktop\partycompany bewerbung
2013-09-15 02:09 - 2013-09-15 02:09 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Sony Creative Software Inc
2013-09-14 23:10 - 2012-11-17 17:22 - 00000000 ____D C:\Users\Lucas\Documents\Rockstar Games
2013-09-14 23:09 - 2012-11-16 20:46 - 00000000 ____D C:\Users\Lucas\AppData\Local\Paint.NET
2013-09-14 22:54 - 2013-09-14 22:54 - 00279888 _____ C:\Windows\Minidump\091413-12511-01.dmp
2013-09-14 20:47 - 2013-09-14 20:47 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Publish Providers
2013-09-14 20:47 - 2013-09-14 20:35 - 00001038 _____ C:\Users\Public\Desktop\Vegas Pro 12.0.lnk
2013-09-14 20:46 - 2013-09-14 20:46 - 00000000 ____D C:\Program Files\Sony
2013-09-14 20:46 - 2013-09-14 20:04 - 00000000 ____D C:\Users\Lucas\AppData\Local\Sony
2013-09-14 20:46 - 2013-04-26 16:31 - 00000000 ____D C:\ProgramData\Sony
2013-09-14 20:46 - 2013-04-26 16:31 - 00000000 ____D C:\Program Files (x86)\Sony
2013-09-14 20:00 - 2013-09-14 20:00 - 00279832 _____ C:\Windows\Minidump\091413-12355-01.dmp
2013-09-14 19:23 - 2012-12-17 18:31 - 00000000 ____D C:\Program Files (x86)\uTorrent
2013-09-14 14:17 - 2012-11-15 23:32 - 00000000 ___RD C:\Users\Lucas\Desktop\Games
2013-09-14 14:11 - 2013-03-09 13:08 - 00000000 ____D C:\Users\Lucas\AppData\Local\Arma 3 Alpha
2013-09-14 13:55 - 2012-11-19 17:33 - 00009207 _____ C:\ProgramData\hpzinstall.log
2013-09-14 13:34 - 2009-07-14 04:34 - 00000666 _____ C:\Windows\win.ini
2013-09-14 13:33 - 2013-09-14 13:28 - 00241402 _____ C:\Windows\hpoins35.dat
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\Windows\SysWOW64\spool
2013-09-14 13:32 - 2013-09-14 13:32 - 00000000 ____D C:\ProgramData\HP Product Assistant
2013-09-14 13:32 - 2012-11-19 17:36 - 00000000 ____D C:\Program Files (x86)\HP
2013-09-14 13:32 - 2012-11-19 17:33 - 00000000 ____D C:\ProgramData\HP
2013-09-12 13:59 - 2013-09-12 13:59 - 00279832 _____ C:\Windows\Minidump\091213-11887-01.dmp
2013-09-11 22:46 - 2013-09-11 22:46 - 00279832 _____ C:\Windows\Minidump\091113-11762-01.dmp
2013-09-11 20:59 - 2013-09-11 20:59 - 00279832 _____ C:\Windows\Minidump\091113-11294-01.dmp
2013-09-11 11:17 - 2013-09-11 11:17 - 97080355 _____ C:\Windows\SysWOW64\汸襊£
2013-09-07 22:00 - 2012-11-17 17:37 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-07 22:00 - 2012-11-17 17:37 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-07 21:25 - 2013-08-09 04:04 - 00000000 ____D C:\Android
2013-09-07 21:09 - 2013-09-07 21:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2013-09-07 20:17 - 2013-05-26 16:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-09-07 20:15 - 2013-09-07 17:36 - 00001912 _____ C:\Windows\epplauncher.mif
2013-09-07 20:08 - 2012-12-08 16:40 - 00000000 ____D C:\Users\Lucas\Documents\Eigene Scans
2013-09-07 19:41 - 2013-09-07 19:41 - 00003062 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00003060 _____ C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe
2013-09-07 19:41 - 2013-09-07 19:41 - 00000000 ____D C:\Program Files\Microsoft Mouse and Keyboard Center
2013-09-07 19:41 - 2012-12-05 20:20 - 00003118 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2013-09-07 19:41 - 2012-12-05 20:20 - 00003092 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2013-09-07 19:41 - 2012-11-17 02:39 - 00003090 _____ C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2013-09-07 17:37 - 2013-09-07 17:36 - 00000000 ____D C:\Windows\system32\MRT
2013-09-07 17:37 - 2012-11-16 15:11 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-09-07 12:53 - 2013-06-25 16:47 - 00119296 _____ C:\Windows\SysWOW64\zlib.dll
2013-09-06 16:01 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Origin
2013-09-06 16:01 - 2013-03-20 18:13 - 00000000 ____D C:\Users\Lucas\AppData\Local\Origin
2013-09-05 14:38 - 2013-07-03 10:17 - 00000000 ___RD C:\Users\Lucas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-05 14:10 - 2013-09-05 14:10 - 00000936 _____ C:\Users\Lucas\Desktop\Evernote.lnk
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Users\Lucas\AppData\Local\Evernote
2013-09-05 14:10 - 2013-09-05 14:10 - 00000000 ____D C:\Program Files (x86)\Evernote
2013-09-05 14:01 - 2013-05-07 12:20 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-05 14:01 - 2013-04-07 23:15 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-05 14:01 - 2013-04-07 23:15 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-01 23:25 - 2013-09-01 23:25 - 00000000 ____D C:\Users\Lucas\AppData\Local\CrashRpt
2013-09-01 23:25 - 2013-09-01 22:55 - 00000000 ____D C:\Users\Lucas\AppData\Local\JC2MP
2013-09-01 22:52 - 2012-12-16 18:07 - 00000000 ____D C:\Windows\SysWOW64\directx
2013-09-01 16:54 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-30 15:35 - 2012-11-15 22:27 - 00000000 ____D C:\Users\Lucas\AppData\Local\Spotify
2013-08-30 15:35 - 2012-11-15 22:25 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\Spotify
2013-08-29 19:48 - 2013-01-05 15:42 - 00000000 ____D C:\Users\Lucas\AppData\Roaming\TS3Client
2013-08-25 18:01 - 2013-02-18 20:43 - 00000000 ____D C:\Users\Lucas\AppData\Local\ArmA 2 OA
2013-08-25 12:48 - 2013-06-25 17:02 - 00000000 ____D C:\Users\Lucas\.VirtualBox
2013-08-25 01:41 - 2013-07-04 15:19 - 00000000 ____D C:\Users\Lucas\AppData\Local\PMB Files
2013-08-25 01:41 - 2013-07-04 15:19 - 00000000 ____D C:\ProgramData\PMB Files
2013-08-23 12:38 - 2013-08-23 12:38 - 00000000 ____D C:\Users\Lucas\Documents\Square Enix
2013-08-21 23:03 - 2013-08-21 22:01 - 00000000 ____D C:\Users\Lucas\AppData\Local\Windows Live
2013-08-21 22:04 - 2013-08-21 22:04 - 00000000 ____D C:\Windows\de
2013-08-21 22:03 - 2013-08-21 22:03 - 00000020 _____ C:\Windows\èùT
2013-08-21 22:03 - 2013-08-21 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2013-08-21 22:03 - 2013-08-21 22:02 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-08-21 22:02 - 2012-11-21 20:43 - 00459415 _____ C:\Windows\DirectX.log
2013-08-21 22:02 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-20 16:11 - 2013-08-20 16:11 - 00272584 _____ C:\Windows\Minidump\082013-12324-01.dmp

Some content of TEMP:
====================
C:\Users\Lucas\AppData\Local\Temp\MouseKeyboardCenterx64_1031.exe
C:\Users\Lucas\AppData\Local\Temp\nsf52D5.exe
C:\Users\Lucas\AppData\Local\Temp\nsj5911.exe
C:\Users\Lucas\AppData\Local\Temp\nsp5623.exe
C:\Users\Lucas\AppData\Local\Temp\nsu15F7.exe
C:\Users\Lucas\AppData\Local\Temp\nsz12BA.exe
C:\Users\Lucas\AppData\Local\Temp\nsz148F.exe
C:\Users\Lucas\AppData\Local\Temp\nsz579A.exe
C:\Users\Lucas\AppData\Local\Temp\Paint.NET.3.5.11.Install.exe
C:\Users\Lucas\AppData\Local\Temp\setup_3.2.20.exe
C:\Users\Lucas\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Lucas\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Lucas\AppData\Local\Temp\utt771.tmp.exe
C:\Users\Lucas\AppData\Local\Temp\utt85F3.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-25 17:31

==================== End Of Log ============================
         

Alt 17.09.2013, 14:59   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



hi,

Additional.txt fehlt noch.
__________________

__________________

Alt 17.09.2013, 15:07   #3
Lucas2703
 
Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



wo krieg ich die nochmal her? habs vergessen
__________________

Alt 17.09.2013, 16:24   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



FRST öffnen, Haken setzen bei Additional, und scannen lassen.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.09.2013, 16:31   #5
Lucas2703
 
Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



Bitteschön:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-09-2013 03
Ran by Lucas at 2013-09-17 17:30:32
Running from E:\unnötiger shit\Anti Viren Krams
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

µTorrent (HKCU Version: 3.3.1.30017)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Acrobat.com (x32 Version: 0.0.0)
Acrobat.com (x32 Version: 1.1.377)
Adobe After Effects CS6 (x32 Version: 11)
Adobe AIR (x32 Version: 3.5.0.600)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.169)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Help Manager (x32 Version: 4.0.244)
Adobe Reader XI (11.0.04) - Deutsch (x32 Version: 11.0.04)
Adobe Shockwave Player 11.6 (x32 Version: 11.6.8.638)
Age of Mythology (x32)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD Accelerated Video Transcoding (Version: 12.5.100.20928)
AMD APP SDK Runtime (Version: 10.0.1016.4)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70928.1539)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
AMD Wireless Display v3.0 (Version: 1.0.0.10)
Amnesia: The Dark Descent Demo  (x32)
Ant.com IE add-on (x32 Version: 2.2.1.75)
APB Reloaded (x32)
Arma 2 (x32)
Arma 2: Operation Arrowhead (x32)
ASIO4ALL (x32 Version: 2.10)
Asmedia ASM106x SATA Host Controller Driver (x32 Version: 1.3.1.000)
ASRock App Charger v1.0.5
ASRock eXtreme Tuner v0.1.188 (x32)
ASRock InstantBoot v1.29 (x32)
ASRock SmartConnect v1.0.6
ASRock XFast RAM v2.0.9
Assassin's Creed Revelations (x32)
ASUS USB-N13 WLAN Card Utilities & Driver (x32 Version: 1.0.0.5)
ASUS WLAN Card Utilities/Driver (x32 Version: 4.3.1.0)
ASUS Xonar DG Audio Driver
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Battlefield 1942™ (x32 Version: 1.6.20.0)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
BattlEye for OA Uninstall (x32)
BioShock Infinite (x32)
BufferChm (x32 Version: 130.0.331.000)
C309a (x32 Version: 130.0.425.000)
Call of Duty(R) 4 - Modern Warfare(TM) (x32 Version: 1.00.0000)
CameraHelperMsi (x32 Version: 13.50.854.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (x32 Version: 2012.0928.1532.26058)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2012.0928.1531.26058)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2012.0928.1531.26058)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2012.0928.1531.26058)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2012.0928.1531.26058)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2012.0928.1531.26058)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2012.0928.1531.26058)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2012.0928.1531.26058)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2012.0928.1531.26058)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2012.0928.1531.26058)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2012.0928.1531.26058)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2012.0928.1531.26058)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2012.0928.1531.26058)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2012.0928.1531.26058)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2012.0928.1531.26058)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2012.0928.1531.26058)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2012.0928.1531.26058)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2012.0928.1531.26058)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2012.0928.1531.26058)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2012.0928.1531.26058)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2012.0928.1531.26058)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2012.0928.1531.26058)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2012.0928.1531.26058)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2012.0928.1532.26058)
ccc-utility64 (Version: 2013.0328.2218.38225)
CD Bremse 1.49 (x32 Version: 1.49)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.46.1.0327)
DayZ Commander (x32 Version: 0.91.4)
Dead Island Riptide (x32)
Dead Space™ 3 (x32 Version: 1.0.0.0)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Destinations (x32 Version: 130.0.0.0)
Deus Ex: Human Revolution (x32)
DeviceDiscovery (x32 Version: 130.0.372.000)
DocProc (x32 Version: 13.0.0.0)
erLT (x32 Version: 1.20.0137)
erLT (x32 Version: 1.20.138.34)
ESN Sonar (x32 Version: 0.70.4)
Evernote v. 5.0.1 (x32 Version: 5.0.1.1174)
ExtremMT2_aka_Uschi_Tv 2.00 Neues Update Win7 & Vista & XP, IceRun, 18 Neue Rüstungen, Neue Waffen, uvm.. (x32 Version: 2.00 Neues Update Win7 & Vista & XP, IceRun, 18 Neue Rüstungen, Neue Waffen, uvm..)
Far Cry 3 (x32 Version: 1.01)
Fax (x32 Version: 130.0.372.000)
Flashtool (x32 Version: 0.9.10.1)
Fotogalerie (x32 Version: 16.4.3508.0205)
GeoGebra 4.2 (x32 Version: 4.2.21.0)
Google Chrome (x32 Version: 29.0.1547.66)
Google Update Helper (x32 Version: 1.3.21.153)
GPBaseService2 (x32 Version: 130.0.371.000)
GRID 2 (c) Codemasters version 1 (x32 Version: 1)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart C309a All-In-One Driver Software 13.0 Rel .5 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 5.003.001.001)
HPDiagnosticAlert (x32 Version: 1.00.0000)
HPPhotoGadget (x32 Version: 130.0.282.000)
HPPhotoSmartDiscLabel_PaperLabel (x32 Version: 2.04.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (x32 Version: 2.04.0000)
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000)
hpphotosmartdisclabelplugin (x32 Version: 2.04.0000)
HPPhotosmartEssential (x32 Version: 2.04.0000)
HPProductAssistant (x32 Version: 130.0.371.000)
HPSSupply (x32 Version: 130.0.371.000)
HTC BMP USB Driver (x32 Version: 1.0.5375)
HTC Driver Installer (x32 Version: 3.0.0.021)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Management Engine Components (x32 Version: 8.0.2.1410)
Intel(R) OpenCL CPU Runtime (x32)
Intel(R) Processor Graphics (x32 Version: 9.17.10.2932)
Intel(R) Rapid Storage Technology (x32 Version: 11.0.0.1032)
Intel(R) Smart Connect Technology 2.0 x64 (Version: 2.0.1083.0)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.3.214)
IPTInstaller (x32 Version: 4.0.8)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
JC2-MP version 0.0.16 (Build 550) (x32 Version: 0.0.16 (Build 550))
Just Cause (x32)
Just Cause 2 (x32)
League of Legends (x32 Version: 3.0.1)
Left 4 Dead 2 (x32)
Logitech Gaming Software (Version: 8.40.83)
Logitech Gaming Software 8.40 (Version: 8.40.83)
Logitech SetPoint 5.20 (Version: 5.20)
Logitech Vid HD (x32 Version: 7.2 (7248))
Logitech Webcam Software (x32 Version: 2.0)
LWS Facebook (x32 Version: 13.50.854.0)
LWS Gallery (x32 Version: 13.50.854.0)
LWS Help_main (x32 Version: 13.50.862.0)
LWS Launcher (x32 Version: 13.50.859.0)
LWS Motion Detection (x32 Version: 13.30.1395.0)
LWS Pictures And Video (x32 Version: 13.50.861.0)
LWS Twitter (x32 Version: 13.30.1346.0)
LWS Video Mask Maker (x32 Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (x32 Version: 13.31.1038.0)
LWS WLM Plugin (x32 Version: 1.30.1201.0)
LWS YouTube Plugin (x32 Version: 13.31.1038.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 130.0.374.000)
Metin2 (x32)
Metro Last Light Update 1.0.0.2 (x32)
Metro: Last Light (c) Deep Silver version 1 (x32 Version: 1)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Office 2010 Service Pack 1 (SP1) (x32)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.6029.1000)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 (x32 Version: 4.0.20823.0)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0)
Movie Maker (x32 Version: 16.4.3508.0205)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MSXML4 Parser (x32 Version: 1.0.0)
Network64 (Version: 130.0.572.000)
Network64 (Version: 140.0.221.000)
NewBlue Free Effects for Windows (x32 Version: 1.4)
Nexus Mod Manager (Version: 0.33.1)
Notepad++ (x32 Version: 6.2.1)
NVIDIA PhysX (x32 Version: 9.12.1031)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OpenAL (x32)
Oracle VM VirtualBox 4.2.14 (Version: 4.2.14)
Origin (x32 Version: 9.1.13.85)
Paint.NET v3.5.11 (Version: 3.61.0)
Pando Media Booster (x32 Version: 2.6.0.7)
Photo Common (x32 Version: 16.4.3508.0205)
Photo Gallery (x32 Version: 16.4.3508.0205)
PS_AIO_05_C309_Software_Min (x32 Version: 130.0.425.000)
PunkBuster Services (x32 Version: 0.991)
RAR Password Unlocker 4.2.0.0 (x32)
RGSS-RTP Standard (x32 Version: 1.03)
Scan (x32 Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Skype™ 6.5 (x32 Version: 6.5.158)
Sleeping Dogs™ (x32)
SmartWebPrinting (x32 Version: 130.0.373.000)
SolutionCenter (x32 Version: 130.0.373.000)
Sony Ericsson Update Engine (x32 Version: 2.13.6.201305161305)
Sony Mobile Emma (x32 Version: 2.13.4.20)
Sony PC Companion 2.10.155 (x32 Version: 2.10.155)
Spotify (HKCU Version: 0.9.1.57.ge7405149)
Status (x32 Version: 130.0.373.000)
Steam (x32 Version: 1.0.0.0)
Street Fighter X Tekken (x32 Version: 1.0.0.0)
swMSM (x32 Version: 12.0.0.1)
Team Fortress 2 (x32)
TeamSpeak 3 Client (Version: 3.0.11.1)
THX TruStudio (x32 Version: 1.00.01)
Toolbox (x32 Version: 130.0.648.000)
TrayApp (x32 Version: 130.0.376.000)
Ultimate ZIP Cracker Trial version (x32)
Unity Web Player (HKCU Version: )
UnloadSupport (x32 Version: 11.0.0)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Office 2010 (KB2553065) (x32)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2566458) (x32)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (x32)
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition (x32)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (x32)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition (x32)
Uplay (x32 Version: 2.0)
User's Guides (Version: 1.20.0000)
Vegas Pro 12.0 (64-bit) (Version: 12.0.367)
VIRTU MVP 2.1.223 (Version: 2.1.223)
VLC media player 2.0.6 (x32 Version: 2.0.6)
VLC media player 2.0.7 (Version: 2.0.7)
War Thunder (x32)
WebReg (x32 Version: 130.0.132.017)
Winamp (x32 Version: 5.63 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205)
Windows Live Essentials (x32 Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3508.0205)
Windows Live Photo Common (x32 Version: 16.4.3508.0205)
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205)
Windows Live SOXE (x32 Version: 16.4.3508.0205)
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205)
Windows Live UX Platform (x32 Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
XFast LAN v6.61 (Version: 6.61)

==================== Restore Points  =========================

10-09-2013 16:19:39 Windows Update
11-09-2013 15:43:56 Installed Evernote v. 5.0.1
14-09-2013 18:34:21 Removed Vegas Pro 12.0 (64-bit)
14-09-2013 18:46:17 Removed Vegas Pro 12.0 (64-bit)
15-09-2013 15:45:45 Installed Network64

==================== Hosts content: ==========================

2013-05-07 22:55 - 2013-07-04 14:18 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {000A7AAF-BAFE-4F8C-8157-6D5C7CE429A2} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {1BAEABA1-24EB-4583-80F7-225D59EF4D12} - System32\Tasks\{3532EC97-7AE4-4390-B757-0FABFC5B4FCD} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {1F22147C-7975-444B-9CF2-F82568F02322} - System32\Tasks\{26C7FBBC-FB25-40C2-AA59-C667BBDF0B10} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {25F41820-64CA-4C4A-A1B6-EA9CEDCCE005} - System32\Tasks\{3DB3DE11-A714-4E56-BDA5-2DC62497AB59} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {27C185B4-1962-4A3B-B1CC-12BE8F952202} - System32\Tasks\{24F5BBE6-7BF4-41D3-A758-324DEB61C223} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe
Task: {2FE293CD-B9D5-47DF-B66F-00EDFFEBB89A} - System32\Tasks\{FB64D9D1-1893-40B0-94FA-306C154EF756} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe
Task: {35B549B7-94FF-42C2-8410-72E89F9C87D2} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {35D870C1-A8F6-42C1-94D7-500B66EC3D1D} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {37DD60AD-F640-4296-B5B0-3FFF1D004D99} - System32\Tasks\{EF7E0D13-93A8-43E8-91B0-587A432821A4} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe
Task: {440BB64D-317C-4C42-8312-A0141012A78C} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {448EB6E1-6631-4F2A-8C75-B2E7E6261CFA} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {5E9207DF-8EBC-4393-9C3A-B7F0CBFED44A} - System32\Tasks\{0BCA830D-103C-4A48-950E-BF462367FE6C} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe
Task: {5EB87FB6-861A-4AD1-87DB-42B5E3D93FB6} - System32\Tasks\{2BCE6C5D-FC97-46FF-A368-10128CEE4813} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {6540233A-0C5E-40DA-98D9-914C0E99B3EB} - System32\Tasks\{1FA277A7-14F4-4696-B5AB-B4609BBC6393} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe
Task: {6ADF06CA-BE45-464F-ACE3-D166B1D5E287} - System32\Tasks\RDReminder => C:\Program Files (x86)\Dll-Files.com
Task: {6B49064A-C774-4826-AA08-0867C432AC1C} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
Task: {6DC6B95B-C596-44D0-94AA-79BB45F5AE56} - System32\Tasks\AdobeAAMUpdater-1.0-Lucas-PC-Lucas => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {7883574F-4A35-4677-ADC3-E38D56EF25A2} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2769869888-1427536677-3102229627-1000
Task: {7A35F582-62AE-40DB-B0F6-967BD63E5217} - System32\Tasks\{B5309DE6-C223-44A9-A009-46D5206B5883} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {833B33B0-FE83-4971-8C77-6B7ECB186779} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {8F5DBF08-5F33-4BA5-BF14-22E734C429DB} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {8FFAF17B-BAFF-4CDF-B60E-106BCE741057} - System32\Tasks\{12B1D667-0AC3-49B3-9B7E-3C015C496C94} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {95F50871-CD6A-49D3-8CFA-EE17A9EA7571} - System32\Tasks\{431CA018-621A-44B8-8A65-0E0010AF7129} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {985CF365-2C91-44C5-9AB0-2BDDC75DAB85} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15] (Google Inc.)
Task: {A8CA34F5-5803-40F9-9AC0-3A052C283E62} - System32\Tasks\{B383D8A0-5AAE-48B7-98AA-96210B9EAB66} => C:\Users\Lucas\Desktop\Watch Dog Demo Instalation\Watch Dogs Demo Instal.exe
Task: {DD4F0536-44A8-4C11-8430-497F4F1394AD} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {DED50F49-B7EF-4DF8-BFAA-DD6D815A10B2} - System32\Tasks\{D354F500-1DF6-44EE-B120-8DC947AB6A27} => C:\Program Files (x86)\Adobe\Acrobat.com\assets\icons\Watch Dogs Demo Instal.exe
Task: {E34DEA0F-3EE9-4E4E-8139-D2E355DC009C} - System32\Tasks\User_Feed_Synchronization-{BCA47DEE-9D3C-4E06-BD7A-84C3B024BCD6} => C:\Windows\system32\msfeedssync.exe [2013-03-22] (Microsoft Corporation)
Task: {E901220A-7C8A-4188-8296-58F37B56F4B9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-15] (Google Inc.)
Task: {F07B0E86-B65F-4163-883A-64BA49896691} - System32\Tasks\Microsoft_Hardware_Launch_rundll32_exe => C:\Windows\System32\url.dll [2013-03-22] (Microsoft Corporation)
Task: {F58229D4-E72E-48A5-8FC1-AF78DB9525C4} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-05-16 17:42 - 2013-04-13 07:49 - 00308736 _____ (Microsoft Corporation) C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
2013-03-11 18:31 - 2013-02-07 21:19 - 00141544 _____ () C:\Program Files\Lucidlogix Technologies\VIRTU MVP\GuiCommon.dll
2013-03-11 18:31 - 2013-02-07 21:19 - 00687336 _____ (Lucidlogix Inc.) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\Services.dll
2013-03-11 18:31 - 2013-02-07 21:19 - 00799464 _____ (Lucidlogix Inc.) c:\program files\lucidlogix technologies\virtu mvp\ConfigurationController.dll
2013-03-11 18:31 - 2013-02-07 21:19 - 00190696 _____ (Lucidlogix Inc.) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\GpuEnumerator.Dll
2013-03-11 18:31 - 2013-02-07 21:06 - 00305664 _____ (Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKC6420.DLL
2012-11-15 22:33 - 2012-01-05 11:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-12-14 02:42 - 2012-12-14 02:42 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2013-01-15 13:47 - 2012-02-06 09:15 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv64.dll
2013-01-15 13:47 - 2012-02-06 09:15 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv.dll
2013-09-17 12:23 - 2011-12-26 11:41 - 00348160 ____N (C-Media Electronics Inc.) C:\Program Files\ASUS Xonar DGX Audio\CustomApp\cmdevice.dll
2013-09-17 12:23 - 2011-06-02 12:12 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll
2012-08-28 22:12 - 2012-08-28 22:12 - 00284160 _____ (Evernote Corporation) C:\Program Files (x86)\Evernote\Evernote\encrashrep.dll
2012-09-08 14:16 - 2012-09-08 14:16 - 00433664 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll
2012-09-08 14:16 - 2012-09-08 14:16 - 00258048 _____ (Evernote Corporation, 333 West Evelyn Avenue, Mountain View, CA 94041) C:\Program Files (x86)\Evernote\Evernote\LibPCRE.dll
2012-09-08 14:16 - 2012-09-08 14:16 - 00315392 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll
2013-09-09 17:40 - 2013-09-09 17:40 - 00443904 _____ (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\Intl\EvernoteClipper.de-DE.dll
2013-08-18 13:15 - 2013-08-18 13:15 - 00487424 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\d4493b0e5a5c6faf89cfeaa5f2a21034\IAStorUtil.ni.dll
2013-08-17 18:21 - 2013-08-17 18:21 - 00014336 _____ (Intel Corp.) C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\6e3778958a8bfd03bf0f2f60c4e25623\IAStorCommon.ni.dll
2010-08-06 12:15 - 2010-08-06 12:15 - 00054784 _____ (Hewlett-Packard) C:\Windows\system32\hpzipr12.dll
2013-09-04 02:43 - 2013-09-02 22:35 - 00709584 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libglesv2.dll
2013-09-04 02:43 - 2013-09-02 22:35 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\libegl.dll
2013-09-04 02:43 - 2013-09-02 22:35 - 04053456 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll
2013-09-04 02:43 - 2013-09-02 22:35 - 00410576 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
2013-09-04 02:43 - 2013-09-02 22:35 - 01604560 _____ () C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll
2013-05-30 13:48 - 2013-05-30 13:48 - 00733184 _____ (ESN Social Software AB) C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll
2013-05-30 13:48 - 2013-05-30 13:48 - 00284056 _____ () C:\Program Files (x86)\Battlelog Web Plugins\launcher-115.dll
2011-11-03 16:08 - 2011-11-03 16:08 - 00122216 _____ (ESN Social Software AB) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
2013-04-18 13:50 - 2013-02-13 09:52 - 00421200 _____ (Microsoft Corporation) E:\Programme (x86)\Origin\Games\Battlefield 3\Core\MSVCP100.dll
2013-04-18 13:50 - 2013-02-13 09:52 - 00773968 _____ (Microsoft Corporation) E:\Programme (x86)\Origin\Games\Battlefield 3\Core\MSVCR100.dll
2013-03-11 18:31 - 2013-02-07 21:18 - 00624360 _____ () C:\Program Files\Lucidlogix Technologies\VIRTU MVP\x86\LoaderExtension.dll
2013-03-11 18:31 - 2013-02-07 21:18 - 01000680 _____ (Lucidlogix Inc.) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\x86\ConfigurationController.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 39334240 _____ (Electronic Arts) E:\Programme (x86)\Origin\OriginClient.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00412160 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\QtXml4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 02966528 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\QtCore4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 09679872 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\QtGui4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 01232896 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\QtNetwork4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 18662400 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\QtWebKit4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 03514368 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\QtXmlPatterns4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00062976 _____ () E:\Programme (x86)\Origin\tufao.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00028672 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\imageformats\qgif4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00032256 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\imageformats\qico4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00211968 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\imageformats\qjpeg4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00264192 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\imageformats\qmng4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00022528 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\imageformats\qtga4.dll
2013-03-20 18:13 - 2013-09-17 14:53 - 00312320 _____ (Digia Plc and/or its subsidiary(-ies)) E:\Programme (x86)\Origin\imageformats\qtiff4.dll
2013-04-08 00:10 - 2013-09-17 14:53 - 00566104 _____ (Electronic Arts) E:\Programme (x86)\Origin\igo32.dll
2013-03-11 18:31 - 2013-02-07 21:18 - 01690856 _____ (Lucidlogix Inc.) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\x86\lucidd3d9u.dll
2013-03-11 18:31 - 2013-02-07 21:06 - 00166912 _____ (Software Security System) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\EKC3220.DLL
2013-03-11 18:31 - 2013-02-07 21:18 - 00228072 _____ (Lucidlogix Inc.) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\x86\LucidInterop.dll
2013-04-18 13:50 - 2013-02-13 09:52 - 00773968 _____ (Microsoft Corporation) E:\Programme (x86)\Origin\Games\Battlefield 3\Core\msvcr100.dll
2013-04-18 13:50 - 2013-02-13 09:52 - 11687040 _____ (Electronic Arts) E:\Programme (x86)\Origin\Games\Battlefield 3\Core\EACore.dll
2013-04-18 13:50 - 2013-02-13 09:52 - 00935040 _____ (Electronic Arts, Inc.) E:\Programme (x86)\Origin\Games\Battlefield 3\Core\awc.dll
2013-04-18 13:50 - 2013-02-14 09:31 - 00017408 _____ () E:\Programme (x86)\Origin\Games\Battlefield 3\Engine.BuildInfo_Win32_retail_dll.dll
2013-03-11 18:31 - 2013-02-07 21:18 - 02036456 _____ (Lucidlogix Inc.) C:\Program Files\Lucidlogix Technologies\VIRTU MVP\x86\lucidd3d10u.dll
2013-05-07 21:22 - 2013-05-07 21:22 - 00425984 _____ () E:\Programme (x86)\Origin\Games\Battlefield 3\pb\pbsv.dll
2013-03-21 19:50 - 2013-09-17 16:56 - 00963480 _____ () C:\Users\Lucas\AppData\Local\PunkBuster\BF3\pb\pbcl.dll
2013-03-21 19:50 - 2013-05-07 21:22 - 00057344 _____ () C:\Users\Lucas\AppData\Local\PunkBuster\BF3\pb\pbag.dll

==================== Alternate Data Streams (whitelisted) ==========

AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:DocumentSummaryInformation
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:SummaryInformation
AlternateDataStreams: C:\Windows\SysWOW64\zlib.dll:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\ProgramData\Microsoft:4AQXOfZvtAB7MfllksQN
AlternateDataStreams: C:\ProgramData\Microsoft:xnl6DMLy488G2QNImpnjICB
AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\Users\Lucas\AppData\Local\s1I6mPsfxd:D1mJkCMWSiNwAw32PWkFoOgqNxf
AlternateDataStreams: C:\Users\Lucas\AppData\Local\Temp:fr2sSozcc2z3k1DS
AlternateDataStreams: C:\Users\Lucas\AppData\Local\Temp:ku8ILlxVkIH7xSRJetE


==================== Faulty Device Manager Devices =============

Name: Photosmart C309a series
Description: Photosmart C309a series
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Photosmart C309a series
Description: Photosmart C309a series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C309a series
Description: Photosmart C309a series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Ethernet-Controller
Description: Ethernet-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (09/17/2013 03:27:06 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: bf3.exe, Version: 1.6.0.0, Zeitstempel: 0x511c9356
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0x80000003
Fehleroffset: 0x00013219
ID des fehlerhaften Prozesses: 0x14e8
Startzeit der fehlerhaften Anwendung: 0xbf3.exe0
Pfad der fehlerhaften Anwendung: bf3.exe1
Pfad des fehlerhaften Moduls: bf3.exe2
Berichtskennung: bf3.exe3

Error: (09/17/2013 03:26:33 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: bf3.exe, Version: 1.6.0.0, Zeitstempel: 0x511c9356
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0x80000003
Fehleroffset: 0x00013219
ID des fehlerhaften Prozesses: 0x93c
Startzeit der fehlerhaften Anwendung: 0xbf3.exe0
Pfad der fehlerhaften Anwendung: bf3.exe1
Pfad des fehlerhaften Moduls: bf3.exe2
Berichtskennung: bf3.exe3

Error: (09/17/2013 03:25:18 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: bf3.exe, Version: 1.6.0.0, Zeitstempel: 0x511c9356
Name des fehlerhaften Moduls: bf3.exe, Version: 1.6.0.0, Zeitstempel: 0x511c9356
Ausnahmecode: 0xc0000005
Fehleroffset: 0x006ed4a8
ID des fehlerhaften Prozesses: 0x8b0
Startzeit der fehlerhaften Anwendung: 0xbf3.exe0
Pfad der fehlerhaften Anwendung: bf3.exe1
Pfad des fehlerhaften Moduls: bf3.exe2
Berichtskennung: bf3.exe3

Error: (09/15/2013 03:56:15 PM) (Source: Application Hang) (User: )
Description: Programm WINWORD.EXE, Version 14.0.6129.5000 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: b6c

Startzeit: 01ceb20d8c001196

Endzeit: 10

Anwendungspfad: C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE

Berichts-ID: 90ea60ab-1e0e-11e3-9de3-08002700d484

Error: (09/15/2013 03:02:01 PM) (Source: Chrome) (User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=29.0.1547.66;lang=;id=;is_machine=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\b71d1119-e7f6-410d-b7e8-314929f55fae.dmp

Error: (09/15/2013 02:24:25 PM) (Source: Application Hang) (User: )
Description: Programm winamp.exe, Version 5.6.3.3235 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: bd4

Startzeit: 01ceb20e76b3eb4a

Endzeit: 9

Anwendungspfad: C:\Program Files (x86)\Winamp\winamp.exe

Berichts-ID: bfdb136c-1e01-11e3-9de3-08002700d484

Error: (09/14/2013 11:36:40 PM) (Source: Application Hang) (User: )
Description: Programm winamp.exe, Version 5.6.3.3235 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 624

Startzeit: 01ceb18d2b65f7e5

Endzeit: 19

Anwendungspfad: C:\Program Files (x86)\Winamp\winamp.exe

Berichts-ID: bb551484-1d85-11e3-b4fd-08002700d484

Error: (09/14/2013 10:58:30 PM) (Source: Application Hang) (User: )
Description: Programm winamp.exe, Version 5.6.3.3235 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: a14

Startzeit: 01ceb18cf8631af4

Endzeit: 20

Anwendungspfad: C:\Program Files (x86)\Winamp\winamp.exe

Berichts-ID: 65701f67-1d80-11e3-b4fd-08002700d484

Error: (09/14/2013 04:57:42 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: winamp.exe, Version: 5.6.3.3235, Zeitstempel: 0x4fec7b3e
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x1918
Startzeit der fehlerhaften Anwendung: 0xwinamp.exe0
Pfad der fehlerhaften Anwendung: winamp.exe1
Pfad des fehlerhaften Moduls: winamp.exe2
Berichtskennung: winamp.exe3

Error: (09/14/2013 01:28:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: cfosspeed.exe, Version: 0.0.0.0, Zeitstempel: 0x4e11bdc8
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000129988
ID des fehlerhaften Prozesses: 0xbf0
Startzeit der fehlerhaften Anwendung: 0xcfosspeed.exe0
Pfad der fehlerhaften Anwendung: cfosspeed.exe1
Pfad des fehlerhaften Moduls: cfosspeed.exe2
Berichtskennung: cfosspeed.exe3


System errors:
=============
Error: (09/17/2013 03:33:56 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (09/17/2013 03:33:55 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Bilderfassung (WIA)" wurde nicht richtig gestartet.

Error: (09/17/2013 03:32:59 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Realtek11nCU erreicht.

Error: (09/17/2013 03:32:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Net.Tcp Listener Adapter" ist vom Dienst "Net.Tcp Port Sharing Service" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (09/17/2013 03:32:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Net.Pipe Listener Adapter" ist von folgendem Dienst abhängig: was. Dieser Dienst ist eventuell nicht installiert.

Error: (09/17/2013 03:32:23 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Net.Msmq Listener Adapter" ist von folgendem Dienst abhängig: msmq. Dieser Dienst ist eventuell nicht installiert.

Error: (09/17/2013 03:32:22 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (09/17/2013 00:27:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Bilderfassung (WIA)" wurde nicht richtig gestartet.

Error: (09/17/2013 00:27:00 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (09/17/2013 00:26:03 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Realtek11nCU erreicht.


Microsoft Office Sessions:
=========================
Error: (09/17/2013 03:27:06 PM) (Source: Application Error)(User: )
Description: bf3.exe1.6.0.0511c9356KERNELBASE.dll6.1.7601.1801550b83c8a800000030001321914e801ceb3a98df4a236E:\Programme (x86)\Origin\Games\Battlefield 3\bf3.exeC:\Windows\syswow64\KERNELBASE.dlld8712626-1f9c-11e3-90eb-08002700d484

Error: (09/17/2013 03:26:33 PM) (Source: Application Error)(User: )
Description: bf3.exe1.6.0.0511c9356KERNELBASE.dll6.1.7601.1801550b83c8a800000030001321993c01ceb3a9799e097aE:\Programme (x86)\Origin\Games\Battlefield 3\bf3.exeC:\Windows\syswow64\KERNELBASE.dllc4ba7941-1f9c-11e3-90eb-08002700d484

Error: (09/17/2013 03:25:18 PM) (Source: Application Error)(User: )
Description: bf3.exe1.6.0.0511c9356bf3.exe1.6.0.0511c9356c0000005006ed4a88b001ceb3a947f02d52E:\Programme (x86)\Origin\Games\Battlefield 3\bf3.exeE:\Programme (x86)\Origin\Games\Battlefield 3\bf3.exe981c28b1-1f9c-11e3-90eb-08002700d484

Error: (09/15/2013 03:56:15 PM) (Source: Application Hang)(User: )
Description: WINWORD.EXE14.0.6129.5000b6c01ceb20d8c00119610C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE90ea60ab-1e0e-11e3-9de3-08002700d484

Error: (09/15/2013 03:02:01 PM) (Source: Chrome)(User: NT-AUTORITÄT)
Description: Chrome has encountered a fatal error.
ver=29.0.1547.66;lang=;id=;is_machine=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\b71d1119-e7f6-410d-b7e8-314929f55fae.dmp

Error: (09/15/2013 02:24:25 PM) (Source: Application Hang)(User: )
Description: winamp.exe5.6.3.3235bd401ceb20e76b3eb4a9C:\Program Files (x86)\Winamp\winamp.exebfdb136c-1e01-11e3-9de3-08002700d484

Error: (09/14/2013 11:36:40 PM) (Source: Application Hang)(User: )
Description: winamp.exe5.6.3.323562401ceb18d2b65f7e519C:\Program Files (x86)\Winamp\winamp.exebb551484-1d85-11e3-b4fd-08002700d484

Error: (09/14/2013 10:58:30 PM) (Source: Application Hang)(User: )
Description: winamp.exe5.6.3.3235a1401ceb18cf8631af420C:\Program Files (x86)\Winamp\winamp.exe65701f67-1d80-11e3-b4fd-08002700d484

Error: (09/14/2013 04:57:42 PM) (Source: Application Error)(User: )
Description: winamp.exe5.6.3.32354fec7b3eunknown0.0.0.000000000c000000500000000191801ceb15a287774beC:\Program Files (x86)\Winamp\winamp.exeunknown0156b9c8-1d4e-11e3-a284-08002700d484

Error: (09/14/2013 01:28:23 PM) (Source: Application Error)(User: )
Description: cfosspeed.exe0.0.0.04e11bdc8unknown0.0.0.000000000c00000050000000000129988bf001ceb13d848cfb75C:\Program Files\ASRock\XFast LAN\cfosspeed.exeunknownc3ac14c4-1d30-11e3-a284-3085a9f36431


CodeIntegrity Errors:
===================================
  Date: 2013-07-03 16:11:12.267
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-07-03 16:11:12.208
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-07-03 16:11:12.150
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-07-03 16:11:12.091
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-07-03 10:22:32.949
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-07-03 10:22:32.893
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 62%
Total physical RAM: 8087.06 MB
Available physical RAM: 3004.51 MB
Total Pagefile: 16172.31 MB
Available Pagefile: 8964.89 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:119.14 GB) (Free:40.1 GB) NTFS
Drive e: (Seagate 1TB HDD) (Fixed) (Total:931.51 GB) (Free:411.64 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: DFADCAF9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 932 GB) (Disk ID: 980C6ECB)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         


Alt 17.09.2013, 20:06   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



Malware-technisch is da nix
__________________
--> Auswertung der FRST Logdatei :)

Alt 17.09.2013, 20:46   #7
Lucas2703
 
Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



dann bin ich ja beruhigt

Alt 18.09.2013, 09:55   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Auswertung der FRST Logdatei  :) - Standard

Auswertung der FRST Logdatei :)



ok
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Auswertung der FRST Logdatei :)
adblock, adobe after effects, antivir, auswerten, auswertung, autorun, avira, browser, combofix, computer, desktop, downloader, farbar, farbar recovery scan tool, frst log, google, home, homepage, iexplore.exe, launch, minidump, mozilla, plug-in, proxy, realtek, registry, rundll, scan, security, software, spotify web helper, system, viren, virus, wlan




Ähnliche Themen: Auswertung der FRST Logdatei :)


  1. FRST Log Auswertung?
    Log-Analyse und Auswertung - 10.10.2015 (4)
  2. FRST Logfile auswertung?
    Log-Analyse und Auswertung - 03.08.2015 (1)
  3. FRST Auswertung, ist alles in Ordnung?
    Log-Analyse und Auswertung - 18.09.2014 (5)
  4. FRST Auswertung, alles Ok?
    Log-Analyse und Auswertung - 24.08.2014 (11)
  5. FRST-Auswertung: Langsames Arbeiten/Surfen mit Notebook
    Plagegeister aller Art und deren Bekämpfung - 29.06.2014 (42)
  6. FRST Log - Auswertung (ohne Anfangsverdacht)
    Log-Analyse und Auswertung - 27.05.2014 (2)
  7. Windows 7 FRST Auswertung
    Log-Analyse und Auswertung - 16.04.2014 (9)
  8. FRST Logfile Auswertung
    Log-Analyse und Auswertung - 11.02.2014 (38)
  9. GMER, FRST, ADWCleaner Auswertung. Festplatte defekt. Neustart
    Log-Analyse und Auswertung - 19.11.2013 (7)
  10. FRST.txt und Addition.txt auswertung
    Log-Analyse und Auswertung - 30.09.2013 (62)
  11. Weißer Bildschirm win7 Frst. log gemacht bitte um Auswertung
    Plagegeister aller Art und deren Bekämpfung - 18.07.2013 (12)
  12. auswertung Logdatei des Trojaner "der Computer ist für die Verletzung der Gesetze der Bundesrepublik deutschland wurde Blockert" Ukash
    Log-Analyse und Auswertung - 03.10.2012 (13)
  13. Logdatei Auswertung
    Log-Analyse und Auswertung - 01.06.2012 (1)
  14. Logdatei zur Auswertung
    Log-Analyse und Auswertung - 19.05.2012 (1)
  15. BKA Trojaner - Auswertung der Logdatei
    Log-Analyse und Auswertung - 27.07.2011 (1)
  16. Auswertung der HiJackThis Logdatei
    Log-Analyse und Auswertung - 26.01.2009 (3)
  17. Bitte um Hilfe und Auswertung meiner Logdatei
    Mülltonne - 08.12.2008 (0)

Zum Thema Auswertung der FRST Logdatei :) - Moin Leute, kann mir das bitte jemand auswerten? Bin mir nicht sicher, ob ich einen Virus habe.. In letzter Zeit habe ich außerdem des öfteren einen Bluescreen. Mal beim bearbeiten - Auswertung der FRST Logdatei :)...
Archiv
Du betrachtest: Auswertung der FRST Logdatei :) auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.