|
Netzwerk und Hardware: Windows7: Seiten-Ladefehler - In Firefox, IE und ChromeWindows 7 Hilfe zu Motherboards, CPUs, Lüfter, Raid-Controller, Digitalkameras, Treiber usw. Bitte alle relevanten Angaben zur Hardware machen. Welche Hardware habe ich? Themen zum Trojaner Entfernen oder Viren Beseitigung bitte in den Bereinigungsforen des Trojaner-Boards posten. |
10.10.2013, 00:39 | #1 |
| Windows7: Seiten-Ladefehler - In Firefox, IE und Chrome Hallo werte Trojaner-Board Community. Ich würde mich über eure Hilfe sehr freuen und beginne nun mit der Schilderung des Problems. ---- Als ich vor einigen Tagen die Homepage des ADAC aufrufen wollte, erhielt ich einen "Seiten-Ladefehler". Nun überprüfte ich, wie Firefox in der Hilfe schildert, alle relevanten Einstellungen, löschte den Verlauf, Cache und die Cookies. Dies tat ich mit Firefox, dem IE und Chrome. Einen Proxy verwende ich auch nicht. Die Seite ist in keinem der Browser gesperrt. Die Windows-Firewall und MS Security Essentials schränken die Browser nicht ein. Allerdings wollte auch nach meinen Versuchen nichts funktionieren. Die benötigte Seite funktioniert in keinem meiner verwendeten Browser. Wie soll man dieses Problem sonst beheben? Eine weitere Einschränkung des Internets ist mir nicht bekannt, demnach kann ich alle, für mich relevanten, Seiten aufrufen. In meinem privaten Netzwerk befinden sich ein weiterer Desktop-PC, eine Playstation 3 und 3 Smartphones (Iphone 4 und 4s). Auf allen diesen Geräten funktioniert die geforderte Seite. ---- Ich erstellte bereits ein Thema im Bereich "Log-Analyse und Auswertung". Dort riet man mir, mich an diesen Bereich zuwenden. ipconfig /flushdns wurde bereits ausgeführt, leider ohne positive Auswirkung. Alle Geräte im Netzwerk wurden schon ausgeschaltet und neugestartet. Ich verfüge über eine 16.000er Leitung beim großen T. Beim Router handelt es sich um einen Speedport W 921V. ---- Die erbeteten LogFiles: - Defogger wurde ereignislos ausgeführt. Result.txt Code:
ATTFilter MiniToolBox by Farbar Version: 13-07-2013 Ran by Deniz (administrator) on 10-10-2013 at 01:30:48 Running from "C:\Users\Deniz\Desktop" Microsoft Windows 7 Ultimate Service Pack 1 (X64) Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows-IP-Konfiguration Der DNS-Aufl”sungscache wurde geleert. ========================= IE Proxy Settings: ============================== Proxy is not enabled. No Proxy Server is set. "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "network.proxy.type", 0 "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= ========================= IP Configuration: ================================ Realtek PCIe GBE Family Controller = Local Area Connection (Connected) # ---------------------------------- # IPv4-Konfiguration # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled popd # Ende der IPv4-Konfiguration Windows-IP-Konfiguration Hostname . . . . . . . . . . . . : DENIZPC Prim„res DNS-Suffix . . . . . . . : Knotentyp . . . . . . . . . . . . : Hybrid IP-Routing aktiviert . . . . . . : Nein WINS-Proxy aktiviert . . . . . . : Nein DNS-Suffixsuchliste . . . . . . . : Speedport_W_921V_1_22_000 Ethernet-Adapter Local Area Connection: Verbindungsspezifisches DNS-Suffix: Speedport_W_921V_1_22_000 Beschreibung. . . . . . . . . . . : Realtek PCIe GBE Family Controller Physikalische Adresse . . . . . . : 00-1A-4D-54-2C-D0 DHCP aktiviert. . . . . . . . . . : Ja Autokonfiguration aktiviert . . . : Ja IPv4-Adresse . . . . . . . . . . : 192.168.0.2(Bevorzugt) Subnetzmaske . . . . . . . . . . : 255.255.255.0 Lease erhalten. . . . . . . . . . : Mittwoch, 9. Oktober 2013 14:21:48 Lease l„uft ab. . . . . . . . . . : Sonntag, 16. November 2149 07:59:09 Standardgateway . . . . . . . . . : 192.168.0.1 DHCP-Server . . . . . . . . . . . : 192.168.0.1 DNS-Server . . . . . . . . . . . : 192.168.2.1 NetBIOS ber TCP/IP . . . . . . . : Aktiviert Tunneladapter isatap.Speedport_W_921V_1_22_000: Medienstatus. . . . . . . . . . . : Medium getrennt Verbindungsspezifisches DNS-Suffix: Speedport_W_921V_1_22_000 Beschreibung. . . . . . . . . . . : Microsoft ISATAP Adapter Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0 DHCP aktiviert. . . . . . . . . . : Nein Autokonfiguration aktiviert . . . : Ja Tunneladapter Local Area Connection* 11: Verbindungsspezifisches DNS-Suffix: Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physikalische Adresse . . . . . . : 00-00-00-00-00-00-00-E0 DHCP aktiviert. . . . . . . . . . : Nein Autokonfiguration aktiviert . . . : Ja IPv6-Adresse. . . . . . . . . . . : 2001:0:5ef5:79fb:2cfb:20ef:3f57:fffd(Bevorzugt) Verbindungslokale IPv6-Adresse . : fe80::2cfb:20ef:3f57:fffd%12(Bevorzugt) Standardgateway . . . . . . . . . : :: NetBIOS ber TCP/IP . . . . . . . : Deaktiviert Server: speedport.ip Address: 192.168.2.1 Name: google.com.Speedport_W_921V_1_22_000 Addresses: 62.157.140.133 80.156.86.78 Ping wird ausgefhrt fr google.com [173.194.35.131] mit 32 Bytes Daten: Antwort von 173.194.35.131: Bytes=32 Zeit=20ms TTL=56 Antwort von 173.194.35.131: Bytes=32 Zeit=19ms TTL=56 Ping-Statistik fr 173.194.35.131: Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0 (0% Verlust), Ca. Zeitangaben in Millisek.: Minimum = 19ms, Maximum = 20ms, Mittelwert = 19ms Server: speedport.ip Address: 192.168.2.1 Name: yahoo.com.Speedport_W_921V_1_22_000 Addresses: 62.157.140.133 80.156.86.78 Ping wird ausgefhrt fr yahoo.com [98.138.253.109] mit 32 Bytes Daten: Antwort von 98.138.253.109: Bytes=32 Zeit=141ms TTL=51 Antwort von 98.138.253.109: Bytes=32 Zeit=141ms TTL=51 Ping-Statistik fr 98.138.253.109: Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0 (0% Verlust), Ca. Zeitangaben in Millisek.: Minimum = 141ms, Maximum = 141ms, Mittelwert = 141ms Ping wird ausgefhrt fr 127.0.0.1 mit 32 Bytes Daten: Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128 Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128 Ping-Statistik fr 127.0.0.1: Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0 (0% Verlust), Ca. Zeitangaben in Millisek.: Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms =========================================================================== Schnittstellenliste 10...00 1a 4d 54 2c d0 ......Realtek PCIe GBE Family Controller 1...........................Software Loopback Interface 1 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface =========================================================================== IPv4-Routentabelle =========================================================================== Aktive Routen: Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik 0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.2 20 127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306 127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306 127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306 192.168.0.0 255.255.255.0 Auf Verbindung 192.168.0.2 276 192.168.0.2 255.255.255.255 Auf Verbindung 192.168.0.2 276 192.168.0.255 255.255.255.255 Auf Verbindung 192.168.0.2 276 224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306 224.0.0.0 240.0.0.0 Auf Verbindung 192.168.0.2 276 255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306 255.255.255.255 255.255.255.255 Auf Verbindung 192.168.0.2 276 =========================================================================== St„ndige Routen: Keine IPv6-Routentabelle =========================================================================== Aktive Routen: If Metrik Netzwerkziel Gateway 12 58 ::/0 Auf Verbindung 1 306 ::1/128 Auf Verbindung 12 58 2001::/32 Auf Verbindung 12 306 2001:0:5ef5:79fb:2cfb:20ef:3f57:fffd/128 Auf Verbindung 12 306 fe80::/64 Auf Verbindung 12 306 fe80::2cfb:20ef:3f57:fffd/128 Auf Verbindung 1 306 ff00::/8 Auf Verbindung 12 306 ff00::/8 Auf Verbindung =========================================================================== St„ndige Routen: Keine ========================= Winsock entries ===================================== Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation) Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation) Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation) Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation) Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.) Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.) Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation) Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation) x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation) x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation) x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation) x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation) x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.) x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.) x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation) x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.) x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (10/10/2013 00:45:08 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 24.0.0.5001, Zeitstempel: 0x522fd29f Name des fehlerhaften Moduls: xul.dll, Version: 24.0.0.5001, Zeitstempel: 0x522fd1a4 Ausnahmecode: 0xc0000005 Fehleroffset: 0x001b72a8 ID des fehlerhaften Prozesses: 0xd8c Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0 Pfad der fehlerhaften Anwendung: firefox.exe1 Pfad des fehlerhaften Moduls: firefox.exe2 Berichtskennung: firefox.exe3 Error: (10/09/2013 11:31:36 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: EdManager13.exe, Version: 1.0.0.0, Zeitstempel: 0x519c7c79 Name des fehlerhaften Moduls: Renderer.dll, Version: 1.0.0.0, Zeitstempel: 0x50114493 Ausnahmecode: 0x80000003 Fehleroffset: 0x000f9ce3 ID des fehlerhaften Prozesses: 0xabc Startzeit der fehlerhaften Anwendung: 0xEdManager13.exe0 Pfad der fehlerhaften Anwendung: EdManager13.exe1 Pfad des fehlerhaften Moduls: EdManager13.exe2 Berichtskennung: EdManager13.exe3 Error: (10/07/2013 11:46:57 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: fm.exe, Version: 12.0.2.33515, Zeitstempel: 0x4e9d7cb7 Name des fehlerhaften Moduls: fm.exe, Version: 12.0.2.33515, Zeitstempel: 0x4e9d7cb7 Ausnahmecode: 0xc0000005 Fehleroffset: 0x00c9134d ID des fehlerhaften Prozesses: 0x25bc Startzeit der fehlerhaften Anwendung: 0xfm.exe0 Pfad der fehlerhaften Anwendung: fm.exe1 Pfad des fehlerhaften Moduls: fm.exe2 Berichtskennung: fm.exe3 Error: (10/07/2013 10:40:49 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: fm.exe, Version: 12.0.2.33515, Zeitstempel: 0x4e9d7cb7 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0be4fe96 ID des fehlerhaften Prozesses: 0x52c0 Startzeit der fehlerhaften Anwendung: 0xfm.exe0 Pfad der fehlerhaften Anwendung: fm.exe1 Pfad des fehlerhaften Moduls: fm.exe2 Berichtskennung: fm.exe3 Error: (10/03/2013 05:51:56 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db09a ID des fehlerhaften Prozesses: 0x1518 Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (10/01/2013 10:45:21 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0xaa4 Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (10/01/2013 06:59:11 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0x11cc Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (10/01/2013 03:27:30 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0x266c Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (09/30/2013 10:59:26 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db09a ID des fehlerhaften Prozesses: 0x22ac Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (09/27/2013 01:30:17 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0x46e4 Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 System errors: ============= Error: (10/09/2013 08:23:20 PM) (Source: volsnap) (User: ) Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte. Error: (10/09/2013 02:21:40 PM) (Source: cdrom) (User: ) Description: Fehlerhafter Block bei Gerät \Device\CdRom0. Error: (10/08/2013 02:33:33 PM) (Source: volsnap) (User: ) Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte. Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Microsoft Office Sessions: ========================= **** End of log **** FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013 Ran by Deniz (administrator) on DENIZPC on 07-10-2013 15:30:02 Running from C:\Users\Deniz\Desktop Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe () C:\Users\Deniz\Desktop\Defogger.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-06-20] (Microsoft Corporation) HKCU\...\Run: [EADM] - D:\Origin\Origin.exe [3551576 2013-10-01] (Electronic Arts) HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2013-03-16] () MountPoints2: {27fbcc29-8b03-11e2-8c54-001a4d542cd0} - G:\LaunchU3.exe -a MountPoints2: {8f7173a3-8a91-11e2-8bbf-806e6f6e6963} - E:\Autorun.exe MountPoints2: {e2d7cb79-978d-11e2-929a-001a4d542cd0} - F:\SETUP.EXE -autorun HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.) HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-02-20] (Apple Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?rd=1&ucc=DE&dcc=DE&opt=0&ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xEC06D11F711ECE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\Deniz\AppData\Roaming\Mozilla\Firefox\Profiles\6876cet9.default FF Homepage: hxxp://www.google.de/ FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @Google.com/GoogleEarthPlugin - C:\Users\Deniz\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Deniz\AppData\Roaming\Mozilla\Firefox\Profiles\6876cet9.default\Extensions\ich@maltegoetz.de Chrome: ======= CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () CHR Plugin: (Google Earth Plugin) - C:\Users\Deniz\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll () CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) CHR Extension: (Google Docs) - C:\Users\Deniz\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\Deniz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\Deniz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\Deniz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\Deniz\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\Deniz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ==================== Services (Whitelisted) ================= R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-06-20] (Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-06-20] (Microsoft Corporation) S3 npggsvc; C:\Windows\SysWow64\GameMon.des [4703728 2012-11-15] (INCA Internet Co., Ltd.) R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75136 2013-08-22] () R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1223704 2013-02-07] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660504 2013-02-07] (Secunia) ==================== Drivers (Whitelisted) ==================== R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-09-20] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-03-28] (DT Soft Ltd) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-09-20] () R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-02-07] (Secunia) S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x] S3 tsusbhub; system32\drivers\tsusbhub.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-07 15:29 - 2013-10-07 15:29 - 00000542 _____ C:\Users\Deniz\Desktop\defogger_disable.log 2013-10-07 15:29 - 2013-10-07 15:29 - 00000168 _____ C:\Users\Deniz\defogger_reenable 2013-10-07 15:29 - 2013-10-07 15:29 - 00000000 ____D C:\FRST 2013-10-07 15:27 - 2013-10-07 15:27 - 01954124 _____ (Farbar) C:\Users\Deniz\Desktop\FRST64.exe 2013-10-07 15:27 - 2013-10-07 15:27 - 00377856 _____ C:\Users\Deniz\Desktop\gmer_2.1.19163.exe 2013-10-07 15:27 - 2013-10-07 15:27 - 00050477 _____ C:\Users\Deniz\Desktop\Defogger.exe 2013-10-07 14:58 - 2013-10-07 14:58 - 00006290 _____ C:\Users\Deniz\Documents\cc_20131007_145813.reg 2013-10-07 14:58 - 2013-10-07 14:58 - 00000164 _____ C:\Users\Deniz\Documents\cc_20131007_145826.reg 2013-10-07 14:57 - 2013-10-07 14:58 - 00092558 _____ C:\Users\Deniz\Documents\cc_20131007_145757.reg 2013-10-07 14:28 - 2013-10-07 14:28 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2013-10-07 14:28 - 2013-10-07 14:28 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk 2013-10-07 14:27 - 2013-10-07 14:28 - 00000000 ____D C:\Program Files\CCleaner 2013-10-07 14:27 - 2013-10-07 14:27 - 03294168 _____ (Piriform Ltd) C:\Users\Deniz\Downloads\ccsetup406_slim.exe 2013-10-07 14:05 - 2013-10-07 14:22 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-07 14:02 - 2013-10-07 14:05 - 00000000 ____D C:\Users\Deniz\Desktop\qew 2013-10-07 14:00 - 2013-10-07 14:00 - 00000000 ____D C:\Windows\LastGood 2013-10-07 13:59 - 2013-10-07 14:31 - 00000000 ____D C:\Windows\Minidump 2013-10-07 13:57 - 2013-10-07 13:57 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Deniz\Downloads\mbar-1.07.0.1005.exe 2013-10-07 13:57 - 2013-10-07 13:57 - 00000000 ____D C:\Users\Deniz\mbaaa 2013-10-03 10:45 - 2013-10-03 10:45 - 00071264 _____ C:\Users\Deniz\Downloads\config.big 2013-10-03 10:45 - 2013-10-03 10:45 - 00003473 _____ C:\Users\Deniz\Downloads\Tactics.rar 2013-09-29 15:49 - 2013-09-29 15:50 - 17681659 _____ (FM-Arena) C:\Users\Deniz\Downloads\fm13_datensatz_ozeanien.exe 2013-09-27 13:54 - 2013-09-27 13:54 - 00000000 ____D C:\Users\Deniz\Documents\Fax 2013-09-24 21:46 - 2013-09-24 21:46 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-09-24 21:45 - 2013-10-07 14:50 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-09-24 21:45 - 2013-10-07 14:00 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-09-24 21:45 - 2013-09-24 21:46 - 00000000 ____D C:\Program Files (x86)\Google 2013-09-24 21:45 - 2013-09-24 21:45 - 00784872 _____ (Google Inc.) C:\Users\Deniz\Downloads\ChromeSetup.exe 2013-09-24 21:45 - 2013-09-24 21:45 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-09-24 21:45 - 2013-09-24 21:45 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-09-24 21:44 - 2013-09-24 21:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-09-22 14:10 - 2013-09-22 14:10 - 00000628 _____ C:\Users\Public\Desktop\AetherFlyff.lnk 2013-09-22 14:10 - 2013-09-22 14:10 - 00000000 ____D C:\ProgramData\Caphyon 2013-09-22 14:03 - 2013-09-22 14:03 - 00000000 ____D C:\ProgramData\Package Cache 2013-09-22 14:02 - 2013-09-22 14:11 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\AetherNet 2013-09-22 14:02 - 2013-09-22 14:02 - 00000000 ____D C:\Windows\SysWOW64\directx 2013-09-22 14:01 - 2013-09-22 14:02 - 880504238 _____ (AetherNet) C:\Users\Deniz\Downloads\AetherFlyffSetup.exe 2013-09-21 23:14 - 2013-09-21 23:26 - 1012123646 _____ (Igor Pavlov) C:\Users\Deniz\Downloads\DragonCross2013.exe 2013-09-21 21:05 - 2013-09-21 21:14 - 838720164 _____ C:\Users\Deniz\Downloads\IMFullClient.exe 2013-09-21 19:09 - 2013-09-23 17:13 - 00000047 _____ C:\Users\Deniz\Documents\mt-x_hook.txt 2013-09-21 19:09 - 2013-09-23 17:13 - 00000007 _____ C:\Users\Deniz\Documents\mt-e_hook.txt 2013-09-21 19:06 - 2013-09-21 19:06 - 00002194 _____ C:\Users\Deniz\Desktop\MegaTrainer eXperience.lnk 2013-09-21 19:06 - 2013-09-21 19:06 - 00002181 _____ C:\Users\Deniz\Desktop\MT-X - Anleitung.lnk 2013-09-21 19:06 - 2013-09-21 19:06 - 00000000 ____D C:\Program Files (x86)\MegaDev 2013-09-21 19:04 - 2013-09-21 19:04 - 30927750 _____ ( ) C:\Users\Deniz\Downloads\mt-x_1202_setup.exe 2013-09-20 23:21 - 2013-09-20 23:21 - 00000000 ____D C:\Users\Deniz\Documents\Anno 1404 2013-09-20 21:29 - 2013-09-20 21:29 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\Ubisoft 2013-09-20 21:27 - 2013-09-20 21:27 - 00314016 _____ C:\Windows\system32\Drivers\atksgt.sys 2013-09-20 21:27 - 2013-09-20 21:27 - 00043680 _____ C:\Windows\system32\Drivers\lirsgt.sys 2013-09-17 22:22 - 2013-09-17 22:22 - 29337376 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 22102304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 15703688 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 13628208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 12947360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 11274528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2013-09-17 22:22 - 2013-09-17 22:22 - 09281032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 07720576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 07648000 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 06329552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02970400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02789152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02630304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02367264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02007328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6432723.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6432723.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01222824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00681760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00603424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00586016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00515360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00458528 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00388384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2013-09-17 22:22 - 2013-09-17 22:22 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2013-09-12 01:17 - 2013-09-12 01:17 - 00571168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2013-09-11 18:28 - 2013-08-10 07:22 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-09-11 18:28 - 2013-08-10 07:22 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-09-11 18:28 - 2013-08-10 07:22 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-09-11 18:28 - 2013-08-10 07:21 - 19246592 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-09-11 18:28 - 2013-08-10 07:21 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-09-11 18:28 - 2013-08-10 07:21 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-09-11 18:28 - 2013-08-10 07:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-09-11 18:28 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-09-11 18:28 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-09-11 18:28 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-09-11 18:28 - 2013-08-10 05:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-09-11 18:28 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-09-11 18:28 - 2013-08-10 04:27 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-09-11 18:28 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-09-11 18:27 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-09-11 17:46 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-09-11 17:46 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys 2013-09-11 17:46 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-09-11 17:46 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-09-11 17:46 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-09-11 17:46 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-09-11 17:46 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-09-11 17:46 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2013-09-11 17:46 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-09-11 17:46 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-09-11 17:46 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-09-11 17:46 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-09-11 17:46 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-09-11 17:46 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-09-11 17:46 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-09-11 17:46 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-09-11 17:46 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2013-09-11 17:46 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-09-11 17:46 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-09-11 17:46 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-09-11 17:46 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-09-11 17:46 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-09-11 17:46 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-09-11 17:46 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2013-09-11 17:46 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll 2013-09-11 17:46 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-09-11 17:46 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll 2013-09-07 20:56 - 2012-11-15 23:27 - 04703728 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\GameMon.des 2013-09-07 20:55 - 2013-09-07 20:55 - 00000000 ____D C:\Program Files\Common Files\INCA Shared 2013-09-07 20:55 - 2005-01-03 08:43 - 00004682 _____ (INCA Internet Co., Ltd.) C:\Windows\SysWOW64\npptNT2.sys 2013-09-07 20:55 - 2003-07-19 17:17 - 00005174 _____ C:\Windows\SysWOW64\nppt9x.vxd ==================== One Month Modified Files and Folders ======= 2013-10-07 15:29 - 2013-10-07 15:29 - 00000542 _____ C:\Users\Deniz\Desktop\defogger_disable.log 2013-10-07 15:29 - 2013-10-07 15:29 - 00000168 _____ C:\Users\Deniz\defogger_reenable 2013-10-07 15:29 - 2013-10-07 15:29 - 00000000 ____D C:\FRST 2013-10-07 15:29 - 2013-03-11 16:44 - 00000000 ____D C:\Users\Deniz 2013-10-07 15:27 - 2013-10-07 15:27 - 01954124 _____ (Farbar) C:\Users\Deniz\Desktop\FRST64.exe 2013-10-07 15:27 - 2013-10-07 15:27 - 00377856 _____ C:\Users\Deniz\Desktop\gmer_2.1.19163.exe 2013-10-07 15:27 - 2013-10-07 15:27 - 00050477 _____ C:\Users\Deniz\Desktop\Defogger.exe 2013-10-07 15:10 - 2013-03-11 20:25 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-07 14:58 - 2013-10-07 14:58 - 00006290 _____ C:\Users\Deniz\Documents\cc_20131007_145813.reg 2013-10-07 14:58 - 2013-10-07 14:58 - 00000164 _____ C:\Users\Deniz\Documents\cc_20131007_145826.reg 2013-10-07 14:58 - 2013-10-07 14:57 - 00092558 _____ C:\Users\Deniz\Documents\cc_20131007_145757.reg 2013-10-07 14:50 - 2013-09-24 21:45 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-07 14:32 - 2013-03-28 22:00 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\DAEMON Tools Lite 2013-10-07 14:32 - 2013-03-13 22:38 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\TS3Client 2013-10-07 14:31 - 2013-10-07 13:59 - 00000000 ____D C:\Windows\Minidump 2013-10-07 14:31 - 2013-03-16 00:33 - 00000000 ____D C:\Users\Deniz\AppData\Local\PMB Files 2013-10-07 14:31 - 2013-03-12 00:20 - 00000000 ____D C:\Windows\Panther 2013-10-07 14:28 - 2013-10-07 14:28 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2013-10-07 14:28 - 2013-10-07 14:28 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk 2013-10-07 14:28 - 2013-10-07 14:27 - 00000000 ____D C:\Program Files\CCleaner 2013-10-07 14:27 - 2013-10-07 14:27 - 03294168 _____ (Piriform Ltd) C:\Users\Deniz\Downloads\ccsetup406_slim.exe 2013-10-07 14:22 - 2013-10-07 14:05 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-10-07 14:05 - 2013-10-07 14:05 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-07 14:05 - 2013-10-07 14:02 - 00000000 ____D C:\Users\Deniz\Desktop\qew 2013-10-07 14:05 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-07 14:05 - 2009-07-14 06:45 - 00014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-07 14:03 - 2013-03-11 23:23 - 01445908 ____N C:\Windows\WindowsUpdate.log 2013-10-07 14:00 - 2013-10-07 14:00 - 00000000 ____D C:\Windows\LastGood 2013-10-07 14:00 - 2013-09-24 21:45 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-07 14:00 - 2013-03-11 18:05 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-07 14:00 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-07 13:57 - 2013-10-07 13:57 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Deniz\Downloads\mbar-1.07.0.1005.exe 2013-10-07 13:57 - 2013-10-07 13:57 - 00000000 ____D C:\Users\Deniz\mbaaa 2013-10-07 13:56 - 2013-03-11 18:04 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-07 13:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2013-10-04 13:18 - 2013-03-16 00:33 - 00000000 ____D C:\ProgramData\PMB Files 2013-10-03 10:45 - 2013-10-03 10:45 - 00071264 _____ C:\Users\Deniz\Downloads\config.big 2013-10-03 10:45 - 2013-10-03 10:45 - 00003473 _____ C:\Users\Deniz\Downloads\Tactics.rar 2013-09-29 15:50 - 2013-09-29 15:49 - 17681659 _____ (FM-Arena) C:\Users\Deniz\Downloads\fm13_datensatz_ozeanien.exe 2013-09-27 14:27 - 2013-05-21 19:17 - 00002944 _____ C:\Windows\BRPARAM.INI 2013-09-27 14:23 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-09-27 13:54 - 2013-09-27 13:54 - 00000000 ____D C:\Users\Deniz\Documents\Fax 2013-09-25 13:50 - 2013-03-11 20:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-09-25 03:16 - 2013-08-09 17:36 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\vlc 2013-09-24 21:46 - 2013-09-24 21:46 - 00002255 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-09-24 21:46 - 2013-09-24 21:45 - 00000000 ____D C:\Program Files (x86)\Google 2013-09-24 21:46 - 2013-05-11 11:40 - 00000000 ____D C:\Users\Deniz\AppData\Local\Google 2013-09-24 21:45 - 2013-09-24 21:45 - 00784872 _____ (Google Inc.) C:\Users\Deniz\Downloads\ChromeSetup.exe 2013-09-24 21:45 - 2013-09-24 21:45 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-09-24 21:45 - 2013-09-24 21:45 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-09-24 21:45 - 2013-09-24 21:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-09-24 21:45 - 2013-03-11 20:24 - 00000000 ____D C:\Users\Deniz\AppData\Local\Mozilla 2013-09-23 17:13 - 2013-09-21 19:09 - 00000047 _____ C:\Users\Deniz\Documents\mt-x_hook.txt 2013-09-23 17:13 - 2013-09-21 19:09 - 00000007 _____ C:\Users\Deniz\Documents\mt-e_hook.txt 2013-09-22 14:11 - 2013-09-22 14:02 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\AetherNet 2013-09-22 14:10 - 2013-09-22 14:10 - 00000628 _____ C:\Users\Public\Desktop\AetherFlyff.lnk 2013-09-22 14:10 - 2013-09-22 14:10 - 00000000 ____D C:\ProgramData\Caphyon 2013-09-22 14:05 - 2013-03-11 18:25 - 00655278 _____ C:\Windows\system32\perfh007.dat 2013-09-22 14:05 - 2013-03-11 18:25 - 00130478 _____ C:\Windows\system32\perfc007.dat 2013-09-22 14:05 - 2009-07-14 07:13 - 01533350 _____ C:\Windows\system32\PerfStringBackup.INI 2013-09-22 14:03 - 2013-09-22 14:03 - 00000000 ____D C:\ProgramData\Package Cache 2013-09-22 14:02 - 2013-09-22 14:02 - 00000000 ____D C:\Windows\SysWOW64\directx 2013-09-22 14:02 - 2013-09-22 14:01 - 880504238 _____ (AetherNet) C:\Users\Deniz\Downloads\AetherFlyffSetup.exe 2013-09-21 23:26 - 2013-09-21 23:14 - 1012123646 _____ (Igor Pavlov) C:\Users\Deniz\Downloads\DragonCross2013.exe 2013-09-21 21:14 - 2013-09-21 21:05 - 838720164 _____ C:\Users\Deniz\Downloads\IMFullClient.exe 2013-09-21 19:06 - 2013-09-21 19:06 - 00002194 _____ C:\Users\Deniz\Desktop\MegaTrainer eXperience.lnk 2013-09-21 19:06 - 2013-09-21 19:06 - 00002181 _____ C:\Users\Deniz\Desktop\MT-X - Anleitung.lnk 2013-09-21 19:06 - 2013-09-21 19:06 - 00000000 ____D C:\Program Files (x86)\MegaDev 2013-09-21 19:04 - 2013-09-21 19:04 - 30927750 _____ ( ) C:\Users\Deniz\Downloads\mt-x_1202_setup.exe 2013-09-20 23:21 - 2013-09-20 23:21 - 00000000 ____D C:\Users\Deniz\Documents\Anno 1404 2013-09-20 21:29 - 2013-09-20 21:29 - 00000000 ____D C:\Users\Deniz\AppData\Roaming\Ubisoft 2013-09-20 21:27 - 2013-09-20 21:27 - 00314016 _____ C:\Windows\system32\Drivers\atksgt.sys 2013-09-20 21:27 - 2013-09-20 21:27 - 00043680 _____ C:\Windows\system32\Drivers\lirsgt.sys 2013-09-20 21:11 - 2013-03-16 01:33 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-09-20 16:10 - 2013-03-11 20:25 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-09-20 16:10 - 2013-03-11 20:25 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-09-20 16:10 - 2013-03-11 20:25 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-09-17 22:22 - 2013-09-17 22:22 - 29337376 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 22102304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 15703688 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 13628208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 12947360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 11274528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2013-09-17 22:22 - 2013-09-17 22:22 - 09281032 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 07720576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 07648000 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 06329552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02970400 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02789152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02630304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02367264 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 02007328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6432723.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6432723.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 01222824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00681760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00603424 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00586016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00515360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00458528 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00388384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2013-09-17 22:22 - 2013-09-17 22:22 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2013-09-17 22:22 - 2013-09-17 22:22 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2013-09-17 22:22 - 2013-03-11 18:28 - 15901448 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2013-09-17 22:22 - 2013-03-11 18:04 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-09-17 22:22 - 2013-03-11 18:04 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-09-17 22:22 - 2013-02-26 01:32 - 02986672 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2013-09-17 22:22 - 2013-02-26 01:32 - 01412832 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2013-09-17 22:22 - 2013-02-26 01:32 - 00022814 _____ C:\Windows\system32\nvinfo.pb 2013-09-14 08:18 - 2013-03-12 16:21 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-09-12 18:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-09-12 09:25 - 2013-03-11 18:04 - 06599968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2013-09-12 09:25 - 2013-03-11 18:04 - 03452192 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2013-09-12 09:25 - 2013-03-11 18:04 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2013-09-12 09:25 - 2013-03-11 18:04 - 00920864 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2013-09-12 09:25 - 2013-03-11 18:04 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2013-09-12 09:25 - 2013-03-11 18:04 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2013-09-12 01:17 - 2013-09-12 01:17 - 00571168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2013-09-12 00:06 - 2013-03-11 18:04 - 03361114 _____ C:\Windows\system32\nvcoproc.bin 2013-09-11 18:37 - 2013-03-11 16:44 - 00000000 ___RD C:\Users\Deniz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-09-11 18:37 - 2013-03-11 16:44 - 00000000 ___RD C:\Users\Deniz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-09-11 18:36 - 2009-07-14 06:45 - 00414704 _____ C:\Windows\system32\FNTCACHE.DAT 2013-09-11 18:27 - 2013-07-31 13:59 - 00000000 ____D C:\Windows\system32\MRT 2013-09-11 18:25 - 2013-03-11 17:26 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-09-07 20:55 - 2013-09-07 20:55 - 00000000 ____D C:\Program Files\Common Files\INCA Shared ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-01 17:48 ==================== End Of Log ============================ ADDITION Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013 Ran by Deniz at 2013-10-07 15:30:38 Running from C:\Users\Deniz\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} ==================== Installed Programs ====================== Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.175) Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.168) Adobe Reader XI (11.0.04) - Deutsch (x32 Version: 11.0.04) AetherFlyff (x32 Version: 1.0.0) Anno 1404 (x32 Version: 1.00.0000) ANNO 1404 (x32 Version: 1.03.0000) Apple Application Support (x32 Version: 2.3.3) Apple Mobile Device Support (Version: 6.1.0.13) Apple Software Update (x32 Version: 2.1.3.127) Battlefield 1942™ (x32 Version: 1.6.20.0) Bonjour (Version: 3.0.0.10) Brother MFL-Pro Suite MFC-J5910DW (x32 Version: 1.0.5.0) CCleaner (Version: 4.06) CDBurnerXP (x32 Version: 4.5.2.4214) Counter-Strike: Global Offensive (x32) Counter-Strike: Source (x32) DAEMON Tools Lite (x32 Version: 4.47.1.0333) Die Sims - Megastar (x32) Free YouTube to MP3 Converter version 3.12.1.320 (x32 Version: 3.12.1.320) FUSSBALL MANAGER 13 (x32 Version: 1.0.3.0) GIMP 2.8.4 (Version: 2.8.4) Google Chrome (x32 Version: 29.0.1547.76) Google Earth (x32 Version: 6.2.2.6613) Google Update Helper (x32 Version: 1.3.21.153) Grand Theft Auto (x32) Hex-Editor MX (x32 Version: 6.0) iTunes (Version: 11.0.2.26) Java 7 Update 25 (x32 Version: 7.0.250) Java Auto Updater (x32 Version: 2.1.9.5) League of Legends (x32 Version: 1.3) MegaTrainer eXperience V1.2.0.2 (x32) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft Office 2007 Service Pack 3 (SP3) (x32) Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000) Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32) Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Security Client (Version: 4.3.0215.0) Microsoft Security Essentials (Version: 4.3.215.0) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106) Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0) Mozilla Maintenance Service (x32 Version: 24.0) NVIDIA 3D Vision Controller Driver 314.07 (Version: 314.07) NVIDIA 3D Vision Driver 327.23 (Version: 327.23) NVIDIA Control Panel 327.23 (Version: 327.23) NVIDIA Graphics Driver 327.23 (Version: 327.23) NVIDIA Install Application (Version: 2.1002.133.889) NVIDIA PhysX (x32 Version: 9.12.1031) NVIDIA PhysX System Software 9.12.1031 (Version: 9.12.1031) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2723) NVIDIA Update 1.14.17 (Version: 1.14.17) NVIDIA Update Components (Version: 1.14.17) Origin (x32 Version: 9.0.11.77) Pando Media Booster (x32 Version: 2.6.0.8) Postal 2 Share The Pain (x32) Roll (x32) RollerCoaster Tycoon 3 (x32) Secunia PSI (3.0.0.6005) (x32 Version: 3.0.0.6005) Skype™ 6.3 (x32 Version: 6.3.105) Steam (x32 Version: 1.0.0.0) TeamSpeak 3 Client (Version: 3.0.11.1) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32) Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825641) 32-Bit Edition (x32) Update für Microsoft Office Excel 2007 Help (KB963678) (x32) Update für Microsoft Office Outlook 2007 Help (KB963677) (x32) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32) Update für Microsoft Office Word 2007 Help (KB963665) (x32) VLC media player 2.0.8 (x32 Version: 2.0.8) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) WinRAR 4.20 (64-Bit) (Version: 4.20.0) ==================== Restore Points ========================= 05-10-2013 22:00:01 Scheduled Checkpoint 07-10-2013 11:53:54 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {5D25DFA5-230D-4F12-B04D-087D9215D444} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-24] (Google Inc.) Task: {766A8500-8D8A-4E10-B0AD-3CFA036FA340} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd) Task: {96EE289C-382F-4D86-B15D-71560C14142C} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation) Task: {9BA85FF3-27AB-4881-B2DE-76DF1F4C1AD9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-24] (Google Inc.) Task: {D6F8D81A-628C-44F6-8BF9-78E1041CB681} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20] (Adobe Systems Incorporated) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-01-28 13:08 - 2013-01-28 13:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2013-01-28 13:08 - 2013-01-28 13:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2013-09-24 21:44 - 2013-09-24 21:44 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: Audiocontroller für Multimedia Description: Audiocontroller für Multimedia Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (10/03/2013 05:51:56 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db09a ID des fehlerhaften Prozesses: 0x1518 Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (10/01/2013 10:45:21 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0xaa4 Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (10/01/2013 06:59:11 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0x11cc Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (10/01/2013 03:27:30 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0x266c Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (09/30/2013 10:59:26 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db09a ID des fehlerhaften Prozesses: 0x22ac Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (09/27/2013 01:30:17 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Manager13.exe, Version: 1.0.4.0, Zeitstempel: 0x026d3040 Name des fehlerhaften Moduls: GfxCore.dll, Version: 1.0.0.0, Zeitstempel: 0x519c7cd5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x002db811 ID des fehlerhaften Prozesses: 0x46e4 Startzeit der fehlerhaften Anwendung: 0xManager13.exe0 Pfad der fehlerhaften Anwendung: Manager13.exe1 Pfad des fehlerhaften Moduls: Manager13.exe2 Berichtskennung: Manager13.exe3 Error: (09/26/2013 03:12:02 PM) (Source: Application Hang) (User: ) Description: Programm Neuz.exe, Version 3.8.22.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 109c Startzeit: 01cebab1efd58d72 Endzeit: 275 Anwendungspfad: D:\Flyff\InsanityFlyff\InsanityFlyFF\Neuz.exe Berichts-ID: 39d13aa0-26ad-11e3-b00b-001a4d542cd0 Error: (09/26/2013 00:43:55 AM) (Source: Application Hang) (User: ) Description: Programm Neuz.exe, Version 3.8.22.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: e58 Startzeit: 01ceba407aaee434 Endzeit: 109 Anwendungspfad: D:\Flyff\InsanityFlyff\InsanityFlyFF\Neuz.exe Berichts-ID: f43bd20c-2633-11e3-a4a7-001a4d542cd0 Error: (09/26/2013 00:42:12 AM) (Source: Application Hang) (User: ) Description: Programm Neuz.exe, Version 3.8.22.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 10ec Startzeit: 01ceba405d26aa9b Endzeit: 109 Anwendungspfad: D:\Flyff\InsanityFlyff\InsanityFlyFF\Neuz.exe Berichts-ID: b6585884-2633-11e3-a4a7-001a4d542cd0 Error: (09/26/2013 00:41:21 AM) (Source: Application Hang) (User: ) Description: Programm Neuz.exe, Version 3.8.22.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: be0 Startzeit: 01ceba19dea6d5ac Endzeit: 296 Anwendungspfad: D:\Flyff\InsanityFlyff\InsanityFlyFF\Neuz.exe Berichts-ID: 97c16d3d-2633-11e3-a4a7-001a4d542cd0 System errors: ============= Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Error: (10/07/2013 02:14:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Error: (10/07/2013 02:07:55 PM) (Source: mbamchameleon) (User: ) Description: \Device\HarddiskVolume2\PROGRAM FILES\MICROSOFT SECURITY CLIENT\MPCMDRUN.EXE Error: (10/07/2013 02:07:55 PM) (Source: mbamchameleon) (User: ) Description: \??\C:\Program Files\Microsoft Security Client\MpCmdRun.exe Microsoft Office Sessions: ========================= ==================== Memory info =========================== Percentage of memory in use: 26% Total physical RAM: 6142.48 MB Available physical RAM: 4490.09 MB Total Pagefile: 12283.15 MB Available Pagefile: 10675.44 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.21 GB) (Free:136.28 GB) NTFS Drive d: () (Fixed) (Total:270.45 GB) (Free:149.24 GB) NTFS Drive e: (anno) (CDROM) (Total:2.75 GB) (Free:0 GB) UDF Drive f: (Meine Dateien) (CDROM) (Total:0.18 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: F4D3F4D3) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=195 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=270 GB) - (Type=07 NTFS) ==================== End Of Log ============================ GMER Code:
ATTFilter GMER 2.1.19163 - hxxp://www.gmer.net Rootkit scan 2013-10-07 15:41:23 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP5T0L0-7 ST3500630AS rev.3.AAK 465,76GB Running: gmer_2.1.19163.exe; Driver: C:\Users\Deniz\AppData\Local\Temp\pxldapod.sys ---- Kernel code sections - GMER 2.1 ---- INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 544 fffff80002bba000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...] INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 591 fffff80002bba02f 16 bytes [00, 70, 2C, CE, 05, 80, FA, ...] ---- User code sections - GMER 2.1 ---- .text C:\Windows\SysWOW64\PnkBstrA.exe[1968] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322 0000000072f91a22 2 bytes [F9, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1968] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496 0000000072f91ad0 2 bytes [F9, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1968] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552 0000000072f91b08 2 bytes [F9, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1968] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730 0000000072f91bba 2 bytes [F9, 72] .text C:\Windows\SysWOW64\PnkBstrA.exe[1968] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762 0000000072f91bda 2 bytes [F9, 72] .text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[1824] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758f1465 2 bytes [8F, 75] .text C:\Program Files (x86)\Secunia\PSI\PSIA.exe[1824] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758f14bb 2 bytes [8F, 75] .text ... * 2 .text C:\Program Files (x86)\Secunia\PSI\sua.exe[3184] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758f1465 2 bytes [8F, 75] .text C:\Program Files (x86)\Secunia\PSI\sua.exe[3184] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758f14bb 2 bytes [8F, 75] .text ... * 2 .text C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[3680] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758f1465 2 bytes [8F, 75] .text C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[3680] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758f14bb 2 bytes [8F, 75] .text ... * 2 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[4184] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000758f1465 2 bytes [8F, 75] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[4184] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000758f14bb 2 bytes [8F, 75] .text ... * 2 ---- EOF - GMER 2.1 ---- |
11.10.2013, 11:22 | #2 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Windows7: Seiten-Ladefehler - In Firefox, IE und Chrome Hallo,
__________________zufälligerweise hab ich hin und wieder dasselbe Problem mit der ADAC-Seite. Mein Provider ist aber KabelDeutschland. Teste mal ob du das Problem nur unter Windows hast, lade also mal ein Live-Linux wie zB Parted Magic runter oder verwende ein Xubuntu oder Lubuntu im Ausprobiermodus und surfe die ADAC-Website an wenn du den Problemrechner davon gebootet hast
__________________ |
13.10.2013, 12:52 | #3 |
| Windows7: Seiten-Ladefehler - In Firefox, IE und Chrome Hallo cosinus,
__________________habe derzeit keine Möglichkeit deinen Rat auszuprobieren. Hoffentlich kann ich es nächste Woche testen, werde mich dann melden. Vielen Dank und einen schönen Sonntag. Grüße |
Themen zu Windows7: Seiten-Ladefehler - In Firefox, IE und Chrome |
192.168.0.2, bonjour, browser, ccsetup, converter, einstellungen, email, excel, farbar, farbar recovery scan tool, firefox, flash player, homepage, installation, log-analyse und auswertung, mozilla, mp3, ms security essentials, netzwerk, origin, plug-in, programm, proxy, proxy server, registry, scan, secunia psi, security, server, services.exe, standardgateway, svchost.exe, system, teredo, windows |