|
Plagegeister aller Art und deren Bekämpfung: Hack über Website?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
05.11.2013, 12:23 | #1 |
| Hack über Website? Servus! Ich hab grad ein (hoffentlich) kleines Problem, um das zu erklären, nur kurz vorweg: Ich bin im 3D-Bereich tätig und arbeite gerade an ein paar Modellen. Während des modelns bin ich auf ein kleines Problem gestoßen, welches allerdings schon auf vielfältige Weise gelöst wurde (wollte ein Kettenhemd modellieren), besonders die Artists von The Witcher 2 schienen mir hier eine super Lösung gefunden zu haben. Da die meisten Artists recht nett sind und einem helfen wenn man höflich fragt, habe ich also nach den Artists gesucht und wollte einen direkt kontaktieren. Als ich dann einen Namen gegoogled habe (Arkadiusz Matyszewski) kam dann auch prompt eine angebliche Website desjenigen als erstes Ergebnis - der kurze Auszug der sich bei Google unter dem Link findet, hat auch auf eine typische Artist-Homepage hingewiesen, an dem spitznamen habe ich mich nicht gestört, da auch das bei Artists nicht wirklich ungewöhnlich ist. Tja, Link angeklickt, auf einmal lächelt mich in gelber Schrift "You have been hacked" an, und die Seite sah irgendwie seltsam aus. Hab vor lauter Schreck direkt den Browser geschlossen (läuft über Sandboxie) und einen Virenscan durchgeführt, der nichts gefunden hat. Aber es heißt ja, sobald was auf dem System ist, wirds schwer fürs AV etwas zu finden. Hab schon über mein Smartphone meine Passwörter bei allen wichtigen Accounts geändert, aber jetzt habe ich Angst, dass tatsächlich irgendwer Zugriff auf meinen PC hat.... Geht das überhaupt? Das ich über den Link direkt gehackt werde? Wie kann ich das überprüfen? Wäre echt super, wenn ihr mir helfen könntet! Beste Grüße |
05.11.2013, 12:29 | #2 |
/// the machine /// TB-Ausbilder | Hack über Website? Hi,
__________________wenn wurde die Seite gehacked, und ein Witzbold hat diesen Schriftzug da gelassen. Das "You" bezieht sich dann auf den Betreiber der Seite. Aber ich schau mal über dein system Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
05.11.2013, 13:15 | #3 |
| Hack über Website? Ich hoffe, dass es nur die Website ist!^^ Ich habe mir das auch schon gedacht, aber man weiß ja nie....
__________________auf jedenfall herzlichsten Dank, dass du bereit bist, mir dabei zu helfen - hab nur das Notebook, entsprechend wichtig ist es für meine Arbeit^^° Hier mal die Dateien: FRST.txt: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-10-2013 Ran by Jan (administrator) on SZYJA-PC on 05-11-2013 13:14:13 Running from C:\Users\Jan\Downloads Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe () C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe (ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe (ASUS) C:\Program Files\P4G\BatteryLife.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUS) C:\Windows\AsScrPro.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Sonix Technology Co., Ltd.) C:\Windows\vsnp2uvc.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (FileHippo.com) C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SandboxieRpcSs.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SandboxieDcomLaunch.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\32\SbieSvc.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4156 2010-04-16] () HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2188904 2011-04-01] (Realtek Semiconductor) HKLM\...\Run: [snp2uvc] - C:\Windows\vsnp2uvc.exe [909824 2010-01-21] (Sonix Technology Co., Ltd.) HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-13] (ELAN Microelectronics Corp.) HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] () HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-13] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKCU\...\Run: [FileHippo.com] - C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com) HKCU\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [759496 2013-10-16] (Sandboxie Holdings, LLC) HKCU\...\Run: [AdobeBridge] - [x] HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [SonicMasterTray] - C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] () HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2237328 2013-09-03] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-03] (AVAST Software) AppInit_DLLs: C:\Windows\system32\nvinitx.dll [250504 2013-03-15] (NVIDIA Corporation) AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll ,C:\Windows\SysWOW64\nvinit.dll [205184 2013-03-15] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xAB89F9F410EDCD01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 FireFox: ======== FF ProfilePath: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\qgqt8a5f.default FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", ""); FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", ""); FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Google FF Homepage: hxxp://de.msn.com/?pc=UP22&ocid=UP22DHP&dt=032713 FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP22DF&PC=UP22&dt=032713&q= FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll () FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.2 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.2 - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems) FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\Jan\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google) FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\Jan\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google) FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\Jan\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll () FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Jan\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Jan\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom) FF SearchPlugin: C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\qgqt8a5f.default\searchplugins\bingp.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: firefox - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\qgqt8a5f.default\Extensions\firefox@ghostery.com.xpi FF Extension: Adblock Plus - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\qgqt8a5f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF Chrome: ======= CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Users\Jan\AppData\Local\Google\Chrome\Application\24.0.1312.52\PepperFlash\pepflashplayer.dll No File CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Jan\AppData\Local\Google\Chrome\Application\24.0.1312.52\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Users\Jan\AppData\Local\Google\Chrome\Application\24.0.1312.52\pdf.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Java(TM) Platform SE 7 U10) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (WacomTabletPlugin) - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.100.18) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File CHR Extension: (Docs) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0 CHR Extension: (Google Drive) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0 CHR Extension: (YouTube) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0 CHR Extension: (Google Search) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0 CHR Extension: (avast! WebRep) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0 CHR Extension: (Gmail) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 ==================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-03] (AVAST Software) R2 mi-raysat_3dsmax2013_64; C:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe [86016 2011-09-15] () R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [186056 2013-10-16] (Sandboxie Holdings, LLC) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [613688 2013-02-08] (Wacom Technology, Corp.) ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-11-03] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-11-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-17] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-17] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-11-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-10-17] (AVAST Software) R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-11-03] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-17] () R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-21] ( ) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [200552 2013-10-16] (Sandboxie Holdings, LLC) S3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800832 2010-09-07] (Sonix Technology Co., Ltd.) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] () R1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [59184 2011-11-17] (Windows (R) 2000 DDK provider) R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [572336 2011-11-17] (Paragon) R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [352816 2011-11-17] (Paragon) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-05 12:59 - 2013-11-05 12:59 - 00000000 ____D C:\FRST 2013-11-05 12:56 - 2013-11-05 12:56 - 01957098 _____ (Farbar) C:\Users\Jan\Downloads\FRST64.exe 2013-11-05 06:43 - 2013-11-05 06:43 - 00000110 ___RH C:\Users\Jan\Downloads\Stinger.opt 2013-11-05 05:45 - 2013-11-05 06:36 - 00000631 _____ C:\Users\Jan\Downloads\Stinger_05112013_054509.html 2013-11-05 05:44 - 2013-11-05 06:43 - 00000000 ____D C:\Program Files\stinger 2013-11-05 05:39 - 2013-11-05 05:39 - 11215392 _____ (McAfee Inc) C:\Users\Jan\Downloads\stinger64.exe 2013-11-03 23:49 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2013-11-03 23:49 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2013-11-03 23:49 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2013-11-03 23:49 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2013-11-03 23:49 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2013-11-03 23:49 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2013-11-03 23:49 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2013-11-03 22:36 - 2013-11-03 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-30 19:24 - 2013-10-30 19:25 - 08677737 _____ C:\Users\Jan\Downloads\Szyja_Honoursarbeit_Tests.zip 2013-10-28 19:50 - 2013-10-28 19:50 - 04379048 _____ (Piriform Ltd) C:\Users\Jan\Downloads\ccsetup407.exe 2013-10-17 13:46 - 2013-10-17 13:46 - 00000000 ____D C:\Users\Jan\AppData\Roaming\AVAST Software 2013-10-17 13:42 - 2013-10-17 13:42 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2013-10-17 13:42 - 2013-10-17 13:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2013-10-17 13:42 - 2013-10-17 13:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2013-10-17 13:42 - 2013-10-17 13:42 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2013-10-17 13:42 - 2013-10-17 13:42 - 00000000 ____D C:\Program Files\Java 2013-10-17 13:21 - 2013-10-17 13:21 - 30694824 _____ (Oracle Corporation) C:\Users\Jan\Downloads\jre-7u45-windows-x64.exe 2013-10-17 13:12 - 2013-10-17 13:12 - 02600648 _____ (Sandboxie Holdings, LLC) C:\Users\Jan\Downloads\SandboxieInstall.exe 2013-10-15 03:51 - 2013-10-15 03:51 - 00001968 _____ C:\Users\Public\Desktop\Autodesk 3ds Max 2013 64-bit.lnk 2013-10-15 03:29 - 2013-10-15 03:30 - 115492352 _____ C:\Users\Jan\Downloads\3dsMax2013_PU06_64-bit.msp 2013-10-14 18:00 - 2013-10-14 18:00 - 00000000 ____D C:\Users\Public\Documents\sun 2013-10-10 22:40 - 2013-09-23 00:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-10 22:40 - 2013-09-23 00:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-10 22:40 - 2013-09-23 00:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-10 22:40 - 2013-09-22 23:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-10 22:40 - 2013-09-22 23:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-10 22:40 - 2013-09-22 23:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-10 22:40 - 2013-09-22 23:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-10 22:40 - 2013-09-22 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-10 22:40 - 2013-09-21 04:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-10 22:40 - 2013-09-21 04:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-10 22:40 - 2013-09-21 03:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-10 22:40 - 2013-09-21 03:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-10 18:50 - 2013-10-10 18:50 - 00000000 ____D C:\Users\Jan\Desktop\OpenOffice 4.0.1 (de) Installation Files 2013-10-10 18:47 - 2013-10-10 18:49 - 163606685 _____ C:\Users\Jan\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de.exe 2013-10-10 18:23 - 2013-11-05 12:32 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-10 18:23 - 2013-10-17 14:32 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-10 12:52 - 2013-09-14 02:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-10-10 12:52 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-10-10 12:52 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2013-10-10 12:52 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2013-10-10 12:52 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-10-10 12:52 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-10-10 12:52 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2013-10-10 12:52 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-10-10 12:52 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2013-10-10 12:52 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-10-10 12:52 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-10-10 12:52 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-10-10 12:52 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2013-10-10 12:52 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-10-10 12:52 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2013-10-10 12:52 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-10-10 12:52 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-10-10 12:52 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-10-10 12:52 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-10-10 12:52 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-10 12:52 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll 2013-10-10 12:52 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-10 12:52 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-10-10 12:52 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2013-10-10 12:52 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys 2013-10-10 12:52 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys 2013-10-10 12:52 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2013-10-10 12:52 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-10 12:52 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2013-10-10 12:52 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2013-10-10 12:52 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2013-10-10 12:52 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2013-10-10 12:52 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2013-10-10 12:52 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys 2013-10-10 12:52 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-10-10 12:52 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2013-10-10 12:52 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2013-10-10 12:52 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2013-10-10 12:52 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-10 12:52 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2013-10-10 12:52 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2013-10-10 12:52 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2013-10-10 12:52 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2013-10-10 12:52 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2013-10-10 12:52 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-10 12:52 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2013-10-10 12:52 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2013-10-07 19:53 - 2013-10-07 19:53 - 05831344 _____ (TeamViewer GmbH) C:\Users\Jan\Desktop\TeamViewer_Setup_de-ckc.exe ==================== One Month Modified Files and Folders ======= 2013-11-05 12:59 - 2013-11-05 12:59 - 00000000 ____D C:\FRST 2013-11-05 12:58 - 2012-12-22 02:05 - 00000000 ____D C:\Users\Public\Pixologic 2013-11-05 12:56 - 2013-11-05 12:56 - 01957098 _____ (Farbar) C:\Users\Jan\Downloads\FRST64.exe 2013-11-05 12:46 - 2013-02-21 18:56 - 01960330 ____N C:\Windows\WindowsUpdate.log 2013-11-05 12:34 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-11-05 12:34 - 2009-07-14 05:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-11-05 12:32 - 2013-10-10 18:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-11-05 12:27 - 2012-12-18 18:21 - 00045056 _____ C:\Windows\system32\acovcnt.exe 2013-11-05 12:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-11-05 12:21 - 2013-09-24 20:11 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001UA.job 2013-11-05 11:43 - 2010-08-13 16:45 - 00708282 _____ C:\Windows\system32\perfh007.dat 2013-11-05 11:43 - 2010-08-13 16:45 - 00151886 _____ C:\Windows\system32\perfc007.dat 2013-11-05 11:43 - 2009-07-14 06:13 - 01643244 _____ C:\Windows\system32\PerfStringBackup.INI 2013-11-05 11:41 - 2012-12-18 18:46 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-11-05 07:09 - 2012-12-18 20:19 - 00000000 ____D C:\Users\Jan\Desktop\Jans Zeug 2013-11-05 06:43 - 2013-11-05 06:43 - 00000110 ___RH C:\Users\Jan\Downloads\Stinger.opt 2013-11-05 06:43 - 2013-11-05 05:44 - 00000000 ____D C:\Program Files\stinger 2013-11-05 06:36 - 2013-11-05 05:45 - 00000631 _____ C:\Users\Jan\Downloads\Stinger_05112013_054509.html 2013-11-05 05:39 - 2013-11-05 05:39 - 11215392 _____ (McAfee Inc) C:\Users\Jan\Downloads\stinger64.exe 2013-11-05 02:00 - 2012-12-18 21:44 - 00000000 ____D C:\Users\Jan\AppData\Local\Adobe 2013-11-04 20:26 - 2012-12-18 19:38 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Skype 2013-11-04 13:21 - 2013-09-24 20:11 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001Core.job 2013-11-03 23:43 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-03 23:29 - 2013-01-13 22:04 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-11-03 22:38 - 2012-12-18 18:46 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-11-03 22:38 - 2012-12-18 18:46 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-11-03 22:38 - 2012-12-18 18:46 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-11-03 22:38 - 2012-12-18 18:46 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-11-03 22:38 - 2012-12-18 18:46 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-11-03 22:38 - 2012-12-18 18:45 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-11-03 22:36 - 2013-11-03 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-11-03 22:33 - 2012-12-18 20:52 - 00005552 _____ C:\Windows\Sandboxie.ini 2013-10-30 19:25 - 2013-10-30 19:24 - 08677737 _____ C:\Users\Jan\Downloads\Szyja_Honoursarbeit_Tests.zip 2013-10-29 02:52 - 2012-12-18 21:31 - 00000000 ____D C:\Program Files\CCleaner 2013-10-28 19:50 - 2013-10-28 19:50 - 04379048 _____ (Piriform Ltd) C:\Users\Jan\Downloads\ccsetup407.exe 2013-10-25 09:22 - 2013-01-13 22:06 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Mozilla 2013-10-17 14:46 - 2012-12-18 18:21 - 00000000 ____D C:\Users\Jan 2013-10-17 14:32 - 2013-10-10 18:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-17 14:32 - 2013-07-30 01:48 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-17 14:32 - 2013-07-30 01:48 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-17 13:46 - 2013-10-17 13:46 - 00000000 ____D C:\Users\Jan\AppData\Roaming\AVAST Software 2013-10-17 13:45 - 2011-04-01 19:14 - 00002034 _____ C:\Windows\system32\AutoRunFilter.ini 2013-10-17 13:42 - 2013-10-17 13:42 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2013-10-17 13:42 - 2013-10-17 13:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2013-10-17 13:42 - 2013-10-17 13:42 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2013-10-17 13:42 - 2013-10-17 13:42 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2013-10-17 13:42 - 2013-10-17 13:42 - 00000000 ____D C:\Program Files\Java 2013-10-17 13:42 - 2013-09-18 12:00 - 00000000 ____D C:\ProgramData\Oracle 2013-10-17 13:31 - 2013-03-03 04:02 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-17 13:31 - 2013-03-03 04:02 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-17 13:31 - 2012-12-18 18:46 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-17 13:31 - 2012-12-18 18:46 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-17 13:28 - 2012-12-18 18:46 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-17 13:28 - 2012-12-18 18:45 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-17 13:21 - 2013-10-17 13:21 - 30694824 _____ (Oracle Corporation) C:\Users\Jan\Downloads\jre-7u45-windows-x64.exe 2013-10-17 13:12 - 2013-10-17 13:12 - 02600648 _____ (Sandboxie Holdings, LLC) C:\Users\Jan\Downloads\SandboxieInstall.exe 2013-10-16 00:06 - 2009-07-29 07:03 - 00000000 ____D C:\Windows\Panther 2013-10-15 23:01 - 2013-01-29 10:18 - 00000132 _____ C:\Users\Jan\AppData\Roaming\Adobe Targa Format CS6 Prefs 2013-10-15 03:51 - 2013-10-15 03:51 - 00001968 _____ C:\Users\Public\Desktop\Autodesk 3ds Max 2013 64-bit.lnk 2013-10-15 03:30 - 2013-10-15 03:29 - 115492352 _____ C:\Users\Jan\Downloads\3dsMax2013_PU06_64-bit.msp 2013-10-14 18:00 - 2013-10-14 18:00 - 00000000 ____D C:\Users\Public\Documents\sun 2013-10-11 12:16 - 2013-09-24 20:11 - 00004078 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001UA 2013-10-11 12:16 - 2013-09-24 20:11 - 00003682 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001Core 2013-10-11 11:51 - 2012-12-18 18:29 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Adobe 2013-10-11 11:50 - 2012-12-18 21:31 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-10-10 23:21 - 2009-07-14 05:45 - 04915104 _____ C:\Windows\system32\FNTCACHE.DAT 2013-10-10 23:20 - 2012-12-19 02:49 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-10-10 23:20 - 2012-12-19 02:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-10 22:38 - 2012-12-18 23:27 - 01621138 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-10-10 22:35 - 2013-07-15 06:53 - 00000000 ____D C:\Windows\system32\MRT 2013-10-10 22:33 - 2012-12-18 19:13 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-10-10 19:11 - 2012-12-18 19:10 - 00065656 _____ C:\Users\Jan\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-10 18:53 - 2013-07-29 01:42 - 00000000 ____D C:\Program Files (x86)\OpenOffice 4 2013-10-10 18:50 - 2013-10-10 18:50 - 00000000 ____D C:\Users\Jan\Desktop\OpenOffice 4.0.1 (de) Installation Files 2013-10-10 18:49 - 2013-10-10 18:47 - 163606685 _____ C:\Users\Jan\Downloads\Apache_OpenOffice_4.0.1_Win_x86_install_de.exe 2013-10-10 17:58 - 2013-01-13 22:40 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-10 17:58 - 2012-12-18 19:38 - 00000000 ____D C:\ProgramData\Skype 2013-10-09 03:41 - 2012-12-18 19:03 - 00000000 ____D C:\Users\Jan\AppData\Local\Google 2013-10-07 19:53 - 2013-10-07 19:53 - 05831344 _____ (TeamViewer GmbH) C:\Users\Jan\Desktop\TeamViewer_Setup_de-ckc.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-09-03 08:36 ==================== End Of Log ============================ Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-10-2013 Ran by Jan at 2013-11-05 13:14:30 Running from C:\Users\Jan\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== 64 Bit HP CIO Components Installer (Version: 6.2.2) Adobe Creative Cloud (x32 Version: 2.1.2.232) Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117) Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117) Adobe Photoshop CS6 (x32 Version: 13.0) Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05) ASUS AI Recovery (x32 Version: 1.0.13) ASUS FancyStart (x32 Version: 1.0.8) ASUS K3 Series ScreenSaver (x32 Version: 1.0.0002) ASUS LifeFrame3 (x32 Version: 3.0.20) ASUS Live Update (x32 Version: 3.0.6) ASUS Power4Gear Hybrid (Version: 1.1.43) ASUS SmartLogon (x32 Version: 1.0.0008) ASUS Splendid Video Enhancement Technology (x32 Version: 1.02.0030) ASUS Virtual Camera (x32 Version: 1.0.20) ATK Package (x32 Version: 1.0.0007) Autodesk 3ds Max 2013 64-bit (Version: 15.6.164.0) Autodesk 3ds Max 2013 64-bit Product Update 6 (Version: 15.6.164.0) Autodesk Backburner 2013.0.0 (x32 Version: 2013.0.0) Autodesk DirectConnect 2013 64-bit (Version: 7.0.28.0) Autodesk Essential Skills Movies for 3ds Max 2013 64-bit (Version: 1.0.0.1) Autodesk FBX Plug-in 2013.1 - 3ds Max 2013 64-bit Autodesk Inventor Server Engine for 3ds Max 2013 64-bit (Version: 15.0) Autodesk Material Library 2013 (x32 Version: 3.0.13) Autodesk Material Library Base Resolution Image Library 2013 (x32 Version: 3.0.13) Autodesk Material Library Medium Resolution Image Library 2013 (x32 Version: 3.0.13) Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit (Version: 1.0.0.1) avast! Free Antivirus (x32 Version: 9.0.2007) CCleaner (Version: 4.07) Composite 2013 64-bit (Version: 8.0.0) ETDWare PS/2-X64 8.0.5.0_WHQL (Version: 8.0.5.0) Fast Boot (Version: 1.0.8) FileHippo.com Update Checker (x32) Google Talk Plugin (x32 Version: 4.8.2.15856) HP Photosmart B109a-m All-in-One Driver 14.0 Rel. 6 (Version: 14.0) Intel(R) Control Center (x32 Version: 1.2.1.1007) Intel(R) Processor Graphics (x32 Version: 9.17.10.2932) Intel(R) Turbo Boost Technology Monitor (Version: 1.0.400.4) Java 7 Update 40 (x32 Version: 7.0.400) Java 7 Update 45 (64-bit) (Version: 7.0.450) Java Auto Updater (x32 Version: 2.1.9.8) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Extended (Version: 4.0.30319) Microsoft Silverlight (Version: 5.1.20913.0) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053) Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000) Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0) Mozilla Maintenance Service (x32 Version: 25.0) MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MSXML 4.0 SP3 Parser (KB973685) (x32 Version: 4.30.2107.0) NVIDIA Grafiktreiber 314.22 (Version: 314.22) NVIDIA Install Application (Version: 2.1002.115.743) NVIDIA Optimus 1.12.12 (Version: 1.12.12) NVIDIA Photoshop Plug-ins 64 bit (x32 Version: 8.50) NVIDIA PhysX (x32 Version: 9.12.1031) NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031) NVIDIA Systemsteuerung 314.22 (Version: 314.22) NVIDIA Update 1.12.12 (Version: 1.12.12) NVIDIA Update Components (Version: 1.12.12) OpenOffice 4.0.1 (x32 Version: 4.01.9714) OpenRL Runtime 1.2.1000.0 x64 (Version: 1.2.1000.0) Paragon Backup & Recovery™ 2012 Free (x32 Version: 90.00.0003) PDF Settings CS6 (x32 Version: 11.0) PDFCreator (x32 Version: 1.6.2) Pixum Fotobuch (x32 Version: 5.0.1) PS_AIO_06_B109a-m_SW_Min (x32 Version: 140.0.690.000) Realtek Ethernet Controller Driver (x32 Version: 7.38.113.2011) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6294) Realtek USB 2.0 Reader Driver (x32 Version: 6.1.7600.10001) Sandboxie 4.06 (64-bit) (Version: 4.06) Scan (x32 Version: 140.0.80.000) Skype™ 6.9 (x32 Version: 6.9.106) Sonic Focus (x32 Version: 1.00.0000) Toolbox (x32 Version: 140.0.428.000) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3) USB2.0 UVC VGA WebCam (Version: 5.8.55133.208) Wacom Tablett (Version: 6.3.5-3) WebTablet FB Plugin 32 bit (x32 Version: 2.1.0.3) WebTablet FB Plugin 64 bit (Version: 2.1.0.3) WinFlash (x32 Version: 2.31.0) WinRAR 5.00 (64-bit) (Version: 5.00.0) Wireless Console 3 (x32 Version: 3.0.19) xNormal 3.18.1 ZBrush 4R6 (x32 Version: 4R6) ==================== Restore Points ========================= ==================== Hosts content: ========================== 2009-07-14 03:34 - 2013-11-05 13:08 - 00000822 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {00E96DEC-17F9-48AA-83EF-0AE715B16846} - System32\Tasks\AdobeAAMUpdater-1.0-Szyja-PC-Jan => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2013-06-13] (Adobe Systems Incorporated) Task: {12C8DDED-4F68-4027-A780-4F2EAE1C9949} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-08-31] (ASUSTeK Computer Inc.) Task: {19642E36-1790-4B64-BA40-F4257B1480C7} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-20] (Microsoft Corporation) Task: {346BCBBC-B4F6-4768-ADB3-A31AF6C1B07B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-11-03] (AVAST Software) Task: {35998D19-6428-4ED9-BEF1-03BB13FEBE13} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd) Task: {54EAA74D-CCEF-4096-933C-DD88437A801B} - System32\Tasks\{94F1A77A-718D-465C-8750-1D37A4498637} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/abandoninstall?source=lightinstaller&page=tsPlugin Task: {5DAC40BA-B8BE-4023-B7C7-3085C60CD8FC} - System32\Tasks\{BB3CBC9C-6A99-47A3-8BAA-82BD9F0C7CA1} => Firefox.exe hxxp://ui.skype.com/ui/0/6.1.0.129.272/de/go/help.faq.installer?source=lightinstaller&LastError=1618 Task: {5EA131A9-C7D7-4E08-94E3-5A9CCFCAF5CA} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-17] (Adobe Systems Incorporated) Task: {79A9C56A-D7CF-4A80-867E-9BDEF7B3C292} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001Core => C:\Users\Jan\AppData\Local\Google\Update\GoogleUpdate.exe [2013-09-24] (Google Inc.) Task: {9AB5C2B6-9FB1-4D2B-A68E-FF8E26794978} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS) Task: {B95895AE-8B9C-4068-8A07-3436F515D88E} - System32\Tasks\PandaUSBVaccine => C:\Program Files (x86)\Panda USB Vaccine\RunInteractiveWin.exe Task: {C2309F41-B7B3-46E6-8B0D-8E6FAACB8C88} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001UA => C:\Users\Jan\AppData\Local\Google\Update\GoogleUpdate.exe [2013-09-24] (Google Inc.) Task: {CCF1D34F-E59C-45CC-8DD8-89369D4D91F3} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-12-02] (ASUS) Task: {D05F5D55-E67F-4F7A-AA66-B5C588F17706} - System32\Tasks\{5E0D4496-BD60-4E0D-A5D2-4CCF4A0D70D3} => Firefox.exe hxxp://ui.skype.com/ui/0/6.2.60.106/de/abandoninstall?page=tsBing Task: {D77BCC92-3B4F-426E-BE46-EA99D6D15D96} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-07-31] (ASUS) Task: {D828779D-62FB-43E9-B07D-D4DB588FF8D7} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001Core.job => C:\Users\Jan\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2474292159-3807282660-1869944422-1001UA.job => C:\Users\Jan\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2013-08-30 09:01 - 2013-08-30 09:01 - 03358064 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll 2010-04-03 03:21 - 2008-10-01 07:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2010-07-15 00:11 - 2010-07-15 00:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll 2013-01-02 15:11 - 2013-02-08 19:37 - 01185080 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll 2011-04-01 01:53 - 2011-04-01 01:53 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll 2013-11-05 11:42 - 2013-11-05 09:55 - 02138112 _____ () C:\Program Files\AVAST Software\Avast\defs\13110500\algo.dll 2011-08-31 15:33 - 2011-08-31 15:33 - 00208384 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll 2013-09-03 14:25 - 2013-09-03 14:25 - 32726528 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll 2013-03-13 12:42 - 2013-06-05 13:21 - 00071560 _____ () C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\zlib1.dll 2013-10-17 13:31 - 2013-10-17 13:31 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2013-08-30 09:00 - 2013-08-30 09:00 - 00381808 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CCInvokeAAM.dll 2013-11-03 22:36 - 2013-11-03 22:36 - 03368048 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (11/05/2013 00:58:20 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: _uninstall2960, Version: 1.0.0.0, Zeitstempel: 0x5049c0c3 Name des fehlerhaften Moduls: nvinit.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x51427a3e Ausnahmecode: 0xc0000005 Fehleroffset: 0x74abd8d9 ID des fehlerhaften Prozesses: 0xd48 Startzeit der fehlerhaften Anwendung: 0x_uninstall29600 Pfad der fehlerhaften Anwendung: _uninstall29601 Pfad des fehlerhaften Moduls: _uninstall29602 Berichtskennung: _uninstall29603 Error: (11/05/2013 00:56:39 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Uninstall ZBrush 4R5.exe, Version: 1.0.0.0, Zeitstempel: 0x5049c0c3 Name des fehlerhaften Moduls: nvinit.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x51427a3e Ausnahmecode: 0xc0000005 Fehleroffset: 0x74abd8d9 ID des fehlerhaften Prozesses: 0xb90 Startzeit der fehlerhaften Anwendung: 0xUninstall ZBrush 4R5.exe0 Pfad der fehlerhaften Anwendung: Uninstall ZBrush 4R5.exe1 Pfad des fehlerhaften Moduls: Uninstall ZBrush 4R5.exe2 Berichtskennung: Uninstall ZBrush 4R5.exe3 Error: (11/05/2013 07:15:27 AM) (Source: Application Hang) (User: ) Description: Programm Explorer.EXE, Version 6.1.7601.17567 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: f0c Startzeit: 01ced90220f9ea09 Endzeit: 43858 Anwendungspfad: C:\Windows\Explorer.EXE Berichts-ID: 8909f9dc-45e1-11e3-90d3-f46d0414f1ff Error: (11/05/2013 05:03:12 AM) (Source: Application Hang) (User: ) Description: Programm 3dsmax.exe, Version 15.6.164.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1b54 Startzeit: 01ced9d5822746ab Endzeit: 74 Anwendungspfad: C:\Program Files\Autodesk\3ds Max 2013\3dsmax.exe Berichts-ID: 2cad4a84-45cf-11e3-90d3-f46d0414f1ff Error: (11/05/2013 04:12:59 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: WSCommCntr4.exe, Version: 3.5.110.0, Zeitstempel: 0x4fbe1bec Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521eaf24 Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000004e4e4 ID des fehlerhaften Prozesses: 0x1428 Startzeit der fehlerhaften Anwendung: 0xWSCommCntr4.exe0 Pfad der fehlerhaften Anwendung: WSCommCntr4.exe1 Pfad des fehlerhaften Moduls: WSCommCntr4.exe2 Berichtskennung: WSCommCntr4.exe3 Error: (11/04/2013 03:00:14 AM) (Source: System Restore) (User: ) Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\servicing\TrustedInstaller.exe; Beschreibung = Windows Modules Installer; Fehler = 0x80070422). Error: (11/04/2013 03:00:14 AM) (Source: System Restore) (User: ) Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Fehler = 0x80070422). Error: (11/04/2013 01:24:44 AM) (Source: WTabletServicePro) (User: ) Description: Prefs: Failed to get user path Error: (11/03/2013 10:36:40 PM) (Source: System Restore) (User: ) Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Program Files\AVAST Software\Avast\setup\New\instup.exe Files\AVAST Software\Avast\setup\New\instup.exe" /instop:update_vps_and_program /session_id:124 /wait; Beschreibung = avast! antivirus system restore point; Fehler = 0x80070422). Error: (11/03/2013 10:32:46 PM) (Source: Windows Search Service) (User: ) Description: Der Index kann nicht initialisiert werden. Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) System errors: ============= Error: (11/05/2013 00:29:09 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Error: (11/05/2013 00:29:09 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%1330 Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (11/05/2013 07:10:54 AM) (Source: Disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR6. Error: (11/05/2013 07:00:03 AM) (Source: Disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR4. Error: (11/05/2013 06:57:32 AM) (Source: Ntfs) (User: ) Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar. Führen Sie auf dem Volume "E:" den Befehl "chkdsk" aus. Error: (11/05/2013 06:57:28 AM) (Source: Disk) (User: ) Description: Fehlerhafter Block bei Gerät \Device\Harddisk1\DR3. Error: (11/05/2013 06:57:25 AM) (Source: Ntfs) (User: ) Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar. Führen Sie auf dem Volume "E:" den Befehl "chkdsk" aus. Error: (11/05/2013 06:57:06 AM) (Source: Disk) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR2 gefunden. Error: (11/05/2013 05:45:09 AM) (Source: Service Control Manager) (User: ) Description: Dienst "Adobe Acrobat Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (11/05/2013 05:45:09 AM) (Source: Service Control Manager) (User: ) Description: Dienst "AFBAgent" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Microsoft Office Sessions: ========================= Error: (11/05/2013 00:58:20 PM) (Source: Application Error)(User: ) Description: _uninstall29601.0.0.05049c0c3nvinit.dll_unloaded0.0.0.051427a3ec000000574abd8d9d4801ceda1e11dec215C:\Users\Jan\AppData\Local\Temp\_uninstall\_uninstall2960nvinit.dll90103c86-4611-11e3-9e72-f46d0414f1ff Error: (11/05/2013 00:56:39 PM) (Source: Application Error)(User: ) Description: Uninstall ZBrush 4R5.exe1.0.0.05049c0c3nvinit.dll_unloaded0.0.0.051427a3ec000000574abd8d9b9001ceda1e0fd0b1f8C:\Program Files (x86)\Pixologic\ZBrush 4R5\Uninstall\Uninstall ZBrush 4R5.exenvinit.dll539200cb-4611-11e3-9e72-f46d0414f1ff Error: (11/05/2013 07:15:27 AM) (Source: Application Hang)(User: ) Description: Explorer.EXE6.1.7601.17567f0c01ced90220f9ea0943858C:\Windows\Explorer.EXE8909f9dc-45e1-11e3-90d3-f46d0414f1ff Error: (11/05/2013 05:03:12 AM) (Source: Application Hang)(User: ) Description: 3dsmax.exe15.6.164.01b5401ced9d5822746ab74C:\Program Files\Autodesk\3ds Max 2013\3dsmax.exe2cad4a84-45cf-11e3-90d3-f46d0414f1ff Error: (11/05/2013 04:12:59 AM) (Source: Application Error)(User: ) Description: WSCommCntr4.exe3.5.110.04fbe1becntdll.dll6.1.7601.18247521eaf24c0000005000000000004e4e4142801ced9d4ed9c61d7C:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\lib\WSCommCntr4.exeC:\Windows\SYSTEM32\ntdll.dll2bdbc8a6-45c8-11e3-90d3-f46d0414f1ff Error: (11/04/2013 03:00:14 AM) (Source: System Restore)(User: ) Description: C:\Windows\servicing\TrustedInstaller.exeWindows Modules Installer0x80070422 Error: (11/04/2013 03:00:14 AM) (Source: System Restore)(User: ) Description: C:\Windows\system32\svchost.exe -k netsvcsWindows Update0x80070422 Error: (11/04/2013 01:24:44 AM) (Source: WTabletServicePro)(User: ) Description: Prefs: Failed to get user path Error: (11/03/2013 10:36:40 PM) (Source: System Restore)(User: ) Description: C:\Program Files\AVAST Software\Avast\setup\New\instup.exe Files\AVAST Software\Avast\setup\New\instup.exe" /instop:update_vps_and_program /session_id:124 /waitavast! antivirus system restore point0x80070422 Error: (11/03/2013 10:32:46 PM) (Source: Windows Search Service)(User: ) Description: Details: Der Inhaltsindexkatalog ist fehlerhaft. (HRESULT : 0xc0041801) (0xc0041801) ==================== Memory info =========================== Percentage of memory in use: 36% Total physical RAM: 6055.77 MB Available physical RAM: 3835.9 MB Total Pagefile: 12109.72 MB Available Pagefile: 9730.76 MB Total Virtual: 8192 MB Available Virtual: 8191.8 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:583.12 GB) (Free:492 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: C74DA1D3) Partition 1: (Not Active) - (Size=13 GB) - (Type=1C) Partition 2: (Active) - (Size=583 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
06.11.2013, 10:14 | #4 |
/// the machine /// TB-Ausbilder | Hack über Website? alles gut
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
06.11.2013, 11:53 | #5 |
| Hack über Website? PUH!^^ Super, danke dir VIELMALS!!! |
06.11.2013, 16:40 | #6 |
/// the machine /// TB-Ausbilder | Hack über Website? Gern Geschehen
__________________ --> Hack über Website? |
Themen zu Hack über Website? |
browser, direkt, ergebnis, gehackt, gelöst, geschlossen, gesucht, geändert, hack, hacked, kleines, kurze, link, lösung, namen, nichts, passwörter, problem, scan, seite, seltsam, smartphone, super, system, virenscan, wirklich, zugriff |