| |
| |||||||
Log-Analyse und Auswertung: firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertungWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
15.06.2014, 01:30
| #1 |
| |  firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung hallo, bei mir fing es mit firefox an, seiten öffneten sich nur noch langsam später gar nicht mehr. nach einer de/installation von firefox lief es wieder scheinbar normal. kurze zeit darauf (paar tage)aktualliesierte sich avast nicht mehr und das scannen dauerte gefühlt 10 mal länger als sonst, was aber nach einer de/installation wieder behoben war.(gefunden wurde aber nichts) windows sollte kurze zeit später per telefon aktiviert werden, was aber ein halbes jahr nicht funktioniert hatte(windows Neuinstallation 4mal in 6 monaten) . bei der 4 Neuinstallation von windows und ablauf der 30 tage erneut die telefonaktivierung angewählt und bei der länderauswahl fror die windows seite direkt ein. paar sek. später kam unter windows eine benachrichtigung windows erfolgreich aktiviert. habe also irgendwie das gefühl das irgendwas nicht stimmt wüsste nur nicht was^^ das alles geschah nach der 4 Neuinstallation von windows. bitte um hilfe bei der analyse und auswertung um schadsoftware auszuschliesen oder die verantwortung dafür zu geben |
|
15.06.2014, 06:03
| #2 |
| /// the machine /// TB-Ausbilder    | firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
15.06.2014, 16:56
| #3 |
| | firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung FRST Logfile:
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-06-2014 02
Ran by ogogog (administrator) on GIBMIRNENNAMEN on 15-06-2014 17:31:48
Running from C:\Users\ogogog\Desktop\Neuer Ordner (3)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Farbar) C:\Users\ogogog\Desktop\Neuer Ordner (3)\FRST64(1).exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
==================== Registry (Whitelisted) ==================
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-06-14] (AVAST Software)
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-4148648416-1248544909-178784645-1000\...\MountPoints2: {244cf606-e8c7-11e3-be0d-001fd026e66e} - E:\pushinst.exe
HKU\S-1-5-21-4148648416-1248544909-178784645-1000\...\MountPoints2: {e95d6120-c788-11e3-82d4-001fd026e66e} - E:\autorun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://de.search.yahoo.com/?type=501549&fr=spigot-yhp-ie
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDF1237A1AC5BCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - {B6C91D74-F19B-41CB-84E6-4DBE94B1291A} URL = https://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=501549&p={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\ogogog\AppData\Roaming\Mozilla\Firefox\Profiles\dtxhvkrk.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-14]
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-06-14] (AVAST Software)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-06-14] (BitRaider, LLC)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5214384 2014-01-13] (INCA Internet Co., Ltd.)
==================== Drivers (Whitelisted) ====================
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-06-14] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-06-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-06-14] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-06-14] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-06-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-06-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-06-14] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-06-14] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2010-10-22] (AVM Berlin)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2011-10-24] (Huawei Technologies Co., Ltd.)
R3 Thermnaltake MS6 Filter; C:\Windows\System32\Drivers\MS6Filter.sys [57200 2011-08-01] (Thermaltake)
R3 Thermnaltake MS6 Filter; C:\Windows\SysWOW64\Drivers\MS6Filter.sys [31488 2011-08-01] (Thermaltake) [File not signed]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-06-15 05:57 - 2014-06-15 05:57 - 00002029 _____ () C:\Users\ogogog\Desktop\sg_backup_2014-06-15-0557.spg
2014-06-15 05:46 - 2014-06-15 05:46 - 00002048 _____ () C:\Users\ogogog\Desktop\sg_backup_2014-06-15-0546.spg
2014-06-15 05:46 - 2014-06-15 05:46 - 00002048 _____ () C:\Users\ogogog\Desktop\FirstBackup.spg
2014-06-15 05:35 - 2014-06-15 05:35 - 00001150 _____ () C:\Users\ogogog\Desktop\FreshUI.lnk
2014-06-15 05:35 - 2014-06-15 05:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreshDevices
2014-06-15 05:35 - 2014-06-15 05:35 - 00000000 ____D () C:\Program Files (x86)\FreshDevices
2014-06-15 05:33 - 2014-06-15 05:33 - 00000000 ____D () C:\Users\ogogog\Downloads\Driver Manager
2014-06-15 05:32 - 2014-06-15 06:01 - 00003794 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMUpdater
2014-06-15 05:32 - 2014-06-15 06:01 - 00003794 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMScan
2014-06-15 05:32 - 2014-06-15 06:01 - 00003782 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMRules
2014-06-15 05:32 - 2014-06-15 06:01 - 00003482 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMScanRunOnce
2014-06-15 05:32 - 2014-06-15 05:33 - 00000000 ____D () C:\ProgramData\UAB
2014-06-15 05:32 - 2014-06-15 05:32 - 00002323 _____ () C:\Users\Public\Desktop\Driver Manager.lnk
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\Users\ogogog\AppData\Local\PC_Drivers_Headquarters
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Manager
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\ProgramData\Driver Manager
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\Program Files (x86)\Driver Manager
2014-06-15 05:18 - 2014-06-15 05:18 - 00000000 ____D () C:\Users\ogogog\Downloads\Autoruns
2014-06-15 05:17 - 2014-06-15 05:17 - 00659456 _____ (Speed Guide Inc.) C:\Users\ogogog\Desktop\TCPOptimizer.exe
2014-06-15 05:16 - 2014-06-15 05:16 - 01633847 _____ ( ) C:\Users\ogogog\Downloads\frui.exe
2014-06-15 05:14 - 2014-06-15 05:14 - 02016040 _____ (Driver Manager) C:\Users\ogogog\Downloads\DriverManager.exe
2014-06-15 05:13 - 2014-06-15 05:13 - 00511782 _____ () C:\Users\ogogog\Downloads\Autoruns.zip
2014-06-15 04:55 - 2014-06-15 04:55 - 00380416 _____ () C:\Users\ogogog\Downloads\Gmer-19357.exe
2014-06-15 04:13 - 2014-06-15 04:13 - 00000310 _____ () C:\Windows\PFRO.log
2014-06-15 03:48 - 2014-06-15 03:48 - 00097656 _____ () C:\Users\ogogog\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-15 03:40 - 2014-06-15 17:18 - 00000280 _____ () C:\Windows\setupact.log
2014-06-15 03:40 - 2014-06-15 03:40 - 00339656 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-15 03:40 - 2014-06-15 03:40 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-14 23:09 - 2014-06-14 23:13 - 00000866 __RSH () C:\ProgramData\ntuser.pol
2014-06-14 23:08 - 2014-06-14 23:12 - 00000866 __RSH () C:\Users\ogogog\ntuser.pol
2014-06-14 22:38 - 2014-06-14 22:38 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-06-14 22:28 - 2014-06-15 17:31 - 00000000 ____D () C:\Users\ogogog\Desktop\Neuer Ordner (3)
2014-06-14 21:54 - 2014-06-14 21:54 - 00001264 _____ () C:\Users\ogogog\Desktop\Revo Uninstaller.lnk
2014-06-14 21:54 - 2014-06-14 21:54 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-06-14 21:40 - 2014-06-15 17:21 - 00203895 _____ () C:\Windows\WindowsUpdate.log
2014-06-14 18:39 - 2014-06-14 18:39 - 00000000 ____D () C:\Users\ogogog\AppData\Local\Microsoft Corporation
2014-06-14 18:37 - 2014-06-14 18:37 - 08676128 _____ (Microsoft Corporation) C:\Users\ogogog\Downloads\Windows7UpgradeAdvisorSetup.exe
2014-06-14 17:08 - 2014-06-14 17:08 - 00671232 _____ () C:\Users\ogogog\Downloads\MicrosoftFixit50688.msi
2014-06-14 11:37 - 2014-06-14 12:08 - 3141261841 _____ () C:\Users\ogogog\Downloads\VanHelsingICompletePack_Demo_Offline.zip
2014-06-14 06:40 - 2014-06-14 06:40 - 00000000 ____D () C:\Users\Public\Documents\BitRaider
2014-06-14 06:40 - 2014-06-14 06:40 - 00000000 ____D () C:\ProgramData\BitRaider
2014-06-14 06:39 - 2014-06-14 06:39 - 00000000 ____D () C:\Users\ogogog\AppData\Local\SWTORPerf
2014-06-14 03:38 - 2014-06-14 03:38 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\AVAST Software
2014-06-14 03:36 - 2014-06-14 03:36 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-14 03:36 - 2014-06-14 03:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-14 03:35 - 2014-06-14 21:14 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-14 03:35 - 2014-06-14 03:36 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-14 03:35 - 2014-06-14 03:36 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-14 03:35 - 2014-06-14 03:36 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1402709764953
2014-06-14 03:35 - 2014-06-14 03:35 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1402709764953
2014-06-14 03:35 - 2014-06-14 03:35 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-14 03:35 - 2014-06-14 03:35 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-14 03:35 - 2014-06-14 03:35 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-12 00:11 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 00:11 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-12 00:11 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 00:11 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-12 00:11 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 00:11 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-12 00:11 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-12 00:11 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-12 00:11 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-12 00:11 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 00:11 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-12 00:11 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-11 17:01 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-11 17:01 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-10 14:46 - 2014-06-14 11:47 - 00000000 ____D () C:\Program Files (x86)\ShotOnline
2014-06-10 14:46 - 2014-06-10 14:46 - 00001031 _____ () C:\Users\ogogog\Desktop\ShotOnline.lnk
2014-06-10 14:46 - 2014-06-10 14:46 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ShotOnline
2014-06-10 14:46 - 2014-06-10 14:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShotOnline
2014-06-03 08:09 - 2014-06-11 18:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-03 08:09 - 2014-06-03 08:09 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-03 08:09 - 2014-06-03 08:09 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\Mozilla
2014-06-03 08:07 - 2014-06-03 06:03 - 28852416 _____ (Mozilla) C:\Users\ogogog\Desktop\Firefox_Setup_de29_0_1.exe
2014-06-02 18:34 - 2014-06-02 18:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-06-02 18:34 - 2014-06-02 18:34 - 00000000 ____D () C:\Program Files\7-Zip
2014-06-02 14:22 - 2014-06-02 14:22 - 00000000 ____D () C:\Windows\ERUNT
2014-06-02 14:12 - 2014-06-15 17:31 - 00000000 ____D () C:\FRST
2014-06-02 14:12 - 2014-06-15 04:12 - 00000000 ____D () C:\AdwCleaner
2014-06-02 13:05 - 2014-06-02 14:32 - 00000000 ____D () C:\Program Files (x86)\Trojan Remover
2014-06-02 13:05 - 2014-06-02 13:05 - 00000000 ____D () C:\ProgramData\Simply Super Software
2014-06-02 10:49 - 2014-06-02 11:22 - 00000000 ____D () C:\Users\ogogog\.zenmap
2014-06-02 10:47 - 2014-06-02 14:32 - 00000000 ____D () C:\Program Files (x86)\Nmap
2014-06-02 08:49 - 2014-06-02 08:49 - 00159200 _____ () C:\Users\ogogog\AppData\Roaming\CrashRpt1402.dll
2014-06-02 08:49 - 2014-06-02 08:49 - 00000000 ____D () C:\Users\ogogog\AppData\Local\CrashRpt
2014-06-02 07:06 - 2014-06-02 07:06 - 00000004 _____ () C:\Users\ogogog\Desktop\advanced_ip_scanner_MAC.bin
2014-06-02 06:54 - 2014-06-02 06:54 - 00000000 ____D () C:\Users\ogogog\Desktop\TcpView-3.05
2014-06-02 06:53 - 2014-06-02 06:41 - 02723180 _____ () C:\Users\ogogog\Desktop\ipscan-3.3-setup.exe
2014-06-02 06:53 - 2014-06-02 06:40 - 06596600 _____ ( ) C:\Users\ogogog\Desktop\ipscan_2.3.2161.exe
2014-06-02 06:36 - 2014-06-02 06:36 - 00000358 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (5).txt
2014-06-02 05:39 - 2010-10-22 02:00 - 00480632 ____N (AVM Berlin) C:\Windows\instwcli.dex
2014-06-02 04:45 - 2014-06-02 04:45 - 04353106 _____ () C:\Users\ogogog\Documents\SCHWESTA EWA FEAT SARI HALT DIE FRESSE 05 NR. 250 (OFFICIAL 3D VERSION AGGROTV)[1].mp4
2014-06-02 04:45 - 2014-06-02 04:45 - 03550062 _____ () C:\Users\ogogog\Documents\SCHWESTA EWA FEAT SARI HALT DIE FRESSE 05 NR. 250 (OFFICIAL HD VERSION AGGROTV).mp4
2014-06-02 03:32 - 2014-06-02 04:12 - 00000000 ____D () C:\Users\ogogog\Desktop\shok
2014-06-01 07:57 - 2014-06-01 07:57 - 00161177 _____ () C:\Users\ogogog\Documents\InstallLogs.zip
2014-06-01 07:53 - 2014-06-01 07:53 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\MAGIX
2014-06-01 07:46 - 2014-06-01 22:49 - 00000000 ____D () C:\Users\Public\Documents\MAGIX
2014-06-01 07:31 - 2014-06-01 07:31 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\X-Setup Pro
2014-06-01 07:31 - 2014-06-01 07:31 - 00000000 ____D () C:\ProgramData\X-Setup Pro
2014-06-01 05:50 - 2014-06-01 05:50 - 00001885 _____ () C:\Users\Public\Desktop\PrivaZer.lnk
2014-06-01 05:49 - 2014-06-01 05:49 - 07204488 _____ (Goversoft LLC) C:\Users\ogogog\Downloads\privazer_free(1).exe
2014-06-01 03:31 - 2014-06-02 13:06 - 00000000 ____D () C:\ProgramData\Licenses
2014-06-01 03:31 - 2014-06-01 22:41 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-01 03:31 - 2014-06-01 03:31 - 00000000 ____D () C:\usr
2014-06-01 03:31 - 2014-06-01 03:31 - 00000000 ____D () C:\ProgramData\Paessler
2014-06-01 03:30 - 2014-06-01 22:41 - 00000000 ____D () C:\Program Files (x86)\PRTG Network Monitor
2014-06-01 01:46 - 2014-06-01 01:46 - 00000218 _____ () C:\Users\ogogog\AppData\Local\recently-used.xbel
2014-06-01 01:23 - 2014-06-01 01:24 - 00000000 ____D () C:\Users\ogogog\AppData\Local\gtk-2.0
2014-05-31 22:41 - 2014-06-02 14:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
2014-05-31 21:37 - 2014-05-31 21:37 - 00001388 _____ () C:\Users\ogogog\Documents\131wifi.txt
2014-05-31 17:44 - 2014-05-31 20:22 - 00000852 _____ () C:\Users\ogogog\Documents\mac neu.txt
2014-05-31 15:58 - 2014-06-01 02:34 - 00000077 _____ () C:\wepkeys.txt
2014-05-31 15:46 - 2014-05-31 17:03 - 00000000 ____D () C:\Users\ogogog\AppData\Local\MetaGeek,_LLC
2014-05-31 15:38 - 2014-06-02 05:22 - 00000000 ____D () C:\Users\ogogog\Desktop\Neuer Ordner (2)
2014-05-31 15:36 - 2014-05-31 15:36 - 00000000 ____D () C:\Program Files (x86)\AVM_update
2014-05-31 15:28 - 2014-05-31 15:28 - 00000000 ____D () C:\Users\ogogog\AVM_Driver
2014-05-25 18:02 - 2014-05-25 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pflanzen gegen Zombies
2014-05-21 22:34 - 2014-05-31 09:27 - 00003166 _____ () C:\Windows\System32\Tasks\{AAFBE4D2-5C85-470F-9C6E-6918F642A00B}
2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-05-20 21:03 - 2014-06-02 18:12 - 00000104 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (4).txt
2014-05-20 05:21 - 2014-05-20 05:21 - 00000416 _____ () C:\Windows\BRWMARK.INI
2014-05-20 05:21 - 2014-05-20 05:21 - 00000034 _____ () C:\Windows\SysWOW64\BD2030.DAT
2014-05-20 05:11 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-20 05:11 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-20 04:33 - 2014-05-20 19:33 - 00000672 _____ () C:\NSI_DriverInstall.log
2014-05-20 04:33 - 2014-05-20 04:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-05-20 04:33 - 2014-05-20 04:33 - 00000000 ____D () C:\Program Files (x86)\Handset WinDriver
2014-05-20 04:33 - 2011-10-24 06:04 - 00223232 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_quusbmdm.sys
2014-05-20 04:33 - 2011-10-24 05:51 - 00116864 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\hw_usbdev.sys
2014-05-20 04:33 - 2010-02-19 01:00 - 01533512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01007.dll
2014-05-20 04:33 - 2010-02-19 01:00 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll
2014-05-20 04:33 - 2010-02-19 01:00 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WinUSBCoInstaller.dll
2014-05-20 04:30 - 2010-02-19 01:00 - 01533512 _____ (Microsoft Corporation) C:\Windows\system32\wudfupdate_01007.dll
2014-05-20 04:30 - 2010-02-19 01:00 - 01490656 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01007.dll
2014-05-20 04:30 - 2010-02-19 01:00 - 00708168 _____ (Microsoft Corporation) C:\Windows\system32\winusbcoinstaller.dll
2014-05-19 23:50 - 2014-05-20 23:39 - 00000000 ____D () C:\Users\ogogog\Desktop\UnlockTools
2014-05-19 23:04 - 2014-05-19 23:04 - 00000000 ____D () C:\Program Files\Java
2014-05-19 23:03 - 2014-06-02 14:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2014-05-19 20:50 - 2014-05-19 23:26 - 00000000 ____D () C:\Users\ogogog\.android
2014-05-19 20:40 - 2014-06-02 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-19 20:40 - 2014-05-19 20:44 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-19 20:18 - 2014-05-19 20:18 - 00000000 ____D () C:\ProgramData\Sun
2014-05-19 20:17 - 2014-05-19 20:42 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-19 20:15 - 2014-05-19 20:15 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-19 20:02 - 2014-05-19 20:03 - 00000000 ____D () C:\Users\ogogog\Desktop\adt-bundle-windows-x86_64-20140321
2014-05-19 03:23 - 2014-05-19 03:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_smhwadb_01005.Wdf
2014-05-19 02:53 - 2014-05-19 02:53 - 00000000 ____D () C:\Users\ogogog\Desktop\adb-toolkit
2014-05-19 02:51 - 2014-05-19 02:51 - 00000000 ____D () C:\adbtk
2014-05-19 01:59 - 2009-12-24 03:00 - 01919968 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01005.dll
2014-05-19 01:21 - 2014-05-19 01:21 - 00000000 ____D () C:\Users\ogogog\AppData\Local\worstenbrood
2014-05-19 01:19 - 2014-05-19 01:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-19 00:25 - 2014-05-19 00:25 - 00000000 ____D () C:\Users\ogogog\AppData\Local\Downloaded Installations
2014-05-19 00:22 - 2014-05-19 00:22 - 02344129 _____ () C:\Users\ogogog\Desktop\HuaweiUpdateExtractor_0.9.7.9_Setup.zip
2014-05-18 11:55 - 2014-05-18 11:55 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\LolClient
2014-05-18 11:06 - 2014-05-18 11:06 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk
2014-05-18 11:06 - 2014-05-18 11:06 - 00000000 ____D () C:\Riot Games
2014-05-18 11:06 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-05-18 11:06 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-05-18 10:59 - 2014-05-19 23:27 - 00000000 ____D () C:\Users\ogogog\AppData\Local\PMB Files
2014-05-18 10:58 - 2014-05-18 10:58 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\Riot Games
2014-05-18 10:58 - 2014-05-18 10:58 - 00000000 ____D () C:\ProgramData\PMB Files
2014-05-18 10:58 - 2014-05-18 10:58 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-18 00:40 - 2014-05-18 20:44 - 00000061 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (3).txt
2014-05-17 23:58 - 2014-05-17 23:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tt eSPORTS
2014-05-17 23:58 - 2014-05-17 23:58 - 00000000 ____D () C:\Program Files (x86)\Tt eSPORTS
2014-05-17 23:58 - 2011-08-01 13:42 - 00057200 _____ (Thermaltake) C:\Windows\system32\Drivers\MS6Filter.sys
2014-05-17 23:58 - 2011-08-01 13:40 - 00031488 _____ (Thermaltake) C:\Windows\SysWOW64\Drivers\MS6Filter.sys
2014-05-16 16:04 - 2014-05-16 16:21 - 00000000 ____D () C:\Users\ogogog\Documents\THERON
==================== One Month Modified Files and Folders =======
2014-06-15 17:31 - 2014-06-14 22:28 - 00000000 ____D () C:\Users\ogogog\Desktop\Neuer Ordner (3)
2014-06-15 17:31 - 2014-06-02 14:12 - 00000000 ____D () C:\FRST
2014-06-15 17:31 - 2014-04-05 04:54 - 00000000 ____D () C:\Users\ogogog\AppData\Local\Temp
2014-06-15 17:25 - 2009-07-14 06:45 - 00031680 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-15 17:25 - 2009-07-14 06:45 - 00031680 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-15 17:21 - 2014-06-14 21:40 - 00203895 _____ () C:\Windows\WindowsUpdate.log
2014-06-15 17:18 - 2014-06-15 03:40 - 00000280 _____ () C:\Windows\setupact.log
2014-06-15 17:18 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-15 06:01 - 2014-06-15 05:32 - 00003794 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMUpdater
2014-06-15 06:01 - 2014-06-15 05:32 - 00003794 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMScan
2014-06-15 06:01 - 2014-06-15 05:32 - 00003782 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMRules
2014-06-15 06:01 - 2014-06-15 05:32 - 00003482 _____ () C:\Windows\System32\Tasks\Driver Manager-RTMScanRunOnce
2014-06-15 05:57 - 2014-06-15 05:57 - 00002029 _____ () C:\Users\ogogog\Desktop\sg_backup_2014-06-15-0557.spg
2014-06-15 05:46 - 2014-06-15 05:46 - 00002048 _____ () C:\Users\ogogog\Desktop\sg_backup_2014-06-15-0546.spg
2014-06-15 05:46 - 2014-06-15 05:46 - 00002048 _____ () C:\Users\ogogog\Desktop\FirstBackup.spg
2014-06-15 05:35 - 2014-06-15 05:35 - 00001150 _____ () C:\Users\ogogog\Desktop\FreshUI.lnk
2014-06-15 05:35 - 2014-06-15 05:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreshDevices
2014-06-15 05:35 - 2014-06-15 05:35 - 00000000 ____D () C:\Program Files (x86)\FreshDevices
2014-06-15 05:33 - 2014-06-15 05:33 - 00000000 ____D () C:\Users\ogogog\Downloads\Driver Manager
2014-06-15 05:33 - 2014-06-15 05:32 - 00000000 ____D () C:\ProgramData\UAB
2014-06-15 05:32 - 2014-06-15 05:32 - 00002323 _____ () C:\Users\Public\Desktop\Driver Manager.lnk
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\Users\ogogog\AppData\Local\PC_Drivers_Headquarters
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Manager
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\ProgramData\Driver Manager
2014-06-15 05:32 - 2014-06-15 05:32 - 00000000 ____D () C:\Program Files (x86)\Driver Manager
2014-06-15 05:21 - 2014-04-05 04:54 - 00000000 ___RD () C:\Users\ogogog\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-15 05:18 - 2014-06-15 05:18 - 00000000 ____D () C:\Users\ogogog\Downloads\Autoruns
2014-06-15 05:17 - 2014-06-15 05:17 - 00659456 _____ (Speed Guide Inc.) C:\Users\ogogog\Desktop\TCPOptimizer.exe
2014-06-15 05:16 - 2014-06-15 05:16 - 01633847 _____ ( ) C:\Users\ogogog\Downloads\frui.exe
2014-06-15 05:14 - 2014-06-15 05:14 - 02016040 _____ (Driver Manager) C:\Users\ogogog\Downloads\DriverManager.exe
2014-06-15 05:13 - 2014-06-15 05:13 - 00511782 _____ () C:\Users\ogogog\Downloads\Autoruns.zip
2014-06-15 04:55 - 2014-06-15 04:55 - 00380416 _____ () C:\Users\ogogog\Downloads\Gmer-19357.exe
2014-06-15 04:13 - 2014-06-15 04:13 - 00000310 _____ () C:\Windows\PFRO.log
2014-06-15 04:12 - 2014-06-02 14:12 - 00000000 ____D () C:\AdwCleaner
2014-06-15 03:48 - 2014-06-15 03:48 - 00097656 _____ () C:\Users\ogogog\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-15 03:40 - 2014-06-15 03:40 - 00339656 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-15 03:40 - 2014-06-15 03:40 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-15 03:36 - 2014-04-30 08:15 - 00000000 ____D () C:\Users\ogogog\AppData\Local\PrivaZer
2014-06-15 03:23 - 2014-04-30 21:57 - 00007610 _____ () C:\Users\ogogog\AppData\Local\Resmon.ResmonCfg
2014-06-14 23:13 - 2014-06-14 23:09 - 00000866 __RSH () C:\ProgramData\ntuser.pol
2014-06-14 23:12 - 2014-06-14 23:08 - 00000866 __RSH () C:\Users\ogogog\ntuser.pol
2014-06-14 23:12 - 2014-04-05 04:54 - 00000000 ____D () C:\Users\ogogog
2014-06-14 23:00 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-14 22:38 - 2014-06-14 22:38 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-06-14 21:54 - 2014-06-14 21:54 - 00001264 _____ () C:\Users\ogogog\Desktop\Revo Uninstaller.lnk
2014-06-14 21:54 - 2014-06-14 21:54 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-06-14 21:14 - 2014-06-14 03:35 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-06-14 18:39 - 2014-06-14 18:39 - 00000000 ____D () C:\Users\ogogog\AppData\Local\Microsoft Corporation
2014-06-14 18:37 - 2014-06-14 18:37 - 08676128 _____ (Microsoft Corporation) C:\Users\ogogog\Downloads\Windows7UpgradeAdvisorSetup.exe
2014-06-14 17:08 - 2014-06-14 17:08 - 00671232 _____ () C:\Users\ogogog\Downloads\MicrosoftFixit50688.msi
2014-06-14 12:08 - 2014-06-14 11:37 - 3141261841 _____ () C:\Users\ogogog\Downloads\VanHelsingICompletePack_Demo_Offline.zip
2014-06-14 11:47 - 2014-06-10 14:46 - 00000000 ____D () C:\Program Files (x86)\ShotOnline
2014-06-14 11:17 - 2014-04-30 03:12 - 00000000 ____D () C:\Program Files (x86)\Full Tilt Poker.Eu
2014-06-14 09:25 - 2014-04-29 03:48 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\vlc
2014-06-14 08:00 - 2014-04-30 03:12 - 00000000 ____D () C:\Users\ogogog\AppData\Local\PokerStars.EU
2014-06-14 07:47 - 2011-04-12 09:43 - 00673882 _____ () C:\Windows\system32\perfh007.dat
2014-06-14 07:47 - 2011-04-12 09:43 - 00139022 _____ () C:\Windows\system32\perfc007.dat
2014-06-14 07:47 - 2009-07-14 07:13 - 01553918 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-14 07:01 - 2014-04-05 11:55 - 00000000 ____D () C:\ProgramData\Origin
2014-06-14 06:40 - 2014-06-14 06:40 - 00000000 ____D () C:\Users\Public\Documents\BitRaider
2014-06-14 06:40 - 2014-06-14 06:40 - 00000000 ____D () C:\ProgramData\BitRaider
2014-06-14 06:39 - 2014-06-14 06:39 - 00000000 ____D () C:\Users\ogogog\AppData\Local\SWTORPerf
2014-06-14 06:36 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-06-14 06:34 - 2014-04-05 11:57 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2014-06-14 06:32 - 2014-04-05 11:55 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-06-14 03:38 - 2014-06-14 03:38 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\AVAST Software
2014-06-14 03:36 - 2014-06-14 03:36 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-06-14 03:36 - 2014-06-14 03:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-06-14 03:36 - 2014-06-14 03:35 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2014-06-14 03:36 - 2014-06-14 03:35 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-06-14 03:36 - 2014-06-14 03:35 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys.1402709764953
2014-06-14 03:35 - 2014-06-14 03:35 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.1402709764953
2014-06-14 03:35 - 2014-06-14 03:35 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-06-14 03:35 - 2014-06-14 03:35 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-06-14 03:35 - 2014-06-14 03:35 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-06-14 03:35 - 2014-06-14 03:35 - 00000000 ____D () C:\Program Files\AVAST Software
2014-06-14 03:32 - 2014-04-05 10:37 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-06-14 03:15 - 2014-04-25 21:35 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\TS3Client
2014-06-11 18:13 - 2014-04-05 05:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-11 18:12 - 2014-06-03 08:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-11 18:12 - 2014-04-05 05:48 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-10 14:46 - 2014-06-10 14:46 - 00001031 _____ () C:\Users\ogogog\Desktop\ShotOnline.lnk
2014-06-10 14:46 - 2014-06-10 14:46 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ShotOnline
2014-06-10 14:46 - 2014-06-10 14:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ShotOnline
2014-06-05 14:14 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-05 06:38 - 2014-04-30 03:13 - 00000000 ____D () C:\Users\ogogog\AppData\Local\FullTiltPoker.eu
2014-06-03 08:09 - 2014-06-03 08:09 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-06-03 08:09 - 2014-06-03 08:09 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\Mozilla
2014-06-03 07:54 - 2014-04-30 03:12 - 00000000 ____D () C:\Program Files (x86)\PokerStars.EU
2014-06-03 06:03 - 2014-06-03 08:07 - 28852416 _____ (Mozilla) C:\Users\ogogog\Desktop\Firefox_Setup_de29_0_1.exe
2014-06-02 18:34 - 2014-06-02 18:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-06-02 18:34 - 2014-06-02 18:34 - 00000000 ____D () C:\Program Files\7-Zip
2014-06-02 18:29 - 2014-04-06 12:08 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-02 18:29 - 2014-04-06 12:08 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-02 18:12 - 2014-05-20 21:03 - 00000104 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (4).txt
2014-06-02 16:06 - 2014-05-19 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-02 14:35 - 2014-05-19 23:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2014-06-02 14:33 - 2014-05-31 22:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cain
2014-06-02 14:32 - 2014-06-02 13:05 - 00000000 ____D () C:\Program Files (x86)\Trojan Remover
2014-06-02 14:32 - 2014-06-02 10:47 - 00000000 ____D () C:\Program Files (x86)\Nmap
2014-06-02 14:22 - 2014-06-02 14:22 - 00000000 ____D () C:\Windows\ERUNT
2014-06-02 13:06 - 2014-06-01 03:31 - 00000000 ____D () C:\ProgramData\Licenses
2014-06-02 13:05 - 2014-06-02 13:05 - 00000000 ____D () C:\ProgramData\Simply Super Software
2014-06-02 11:22 - 2014-06-02 10:49 - 00000000 ____D () C:\Users\ogogog\.zenmap
2014-06-02 11:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-02 08:49 - 2014-06-02 08:49 - 00159200 _____ () C:\Users\ogogog\AppData\Roaming\CrashRpt1402.dll
2014-06-02 08:49 - 2014-06-02 08:49 - 00000000 ____D () C:\Users\ogogog\AppData\Local\CrashRpt
2014-06-02 07:06 - 2014-06-02 07:06 - 00000004 _____ () C:\Users\ogogog\Desktop\advanced_ip_scanner_MAC.bin
2014-06-02 06:54 - 2014-06-02 06:54 - 00000000 ____D () C:\Users\ogogog\Desktop\TcpView-3.05
2014-06-02 06:41 - 2014-06-02 06:53 - 02723180 _____ () C:\Users\ogogog\Desktop\ipscan-3.3-setup.exe
2014-06-02 06:40 - 2014-06-02 06:53 - 06596600 _____ ( ) C:\Users\ogogog\Desktop\ipscan_2.3.2161.exe
2014-06-02 06:36 - 2014-06-02 06:36 - 00000358 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (5).txt
2014-06-02 05:22 - 2014-05-31 15:38 - 00000000 ____D () C:\Users\ogogog\Desktop\Neuer Ordner (2)
2014-06-02 04:45 - 2014-06-02 04:45 - 04353106 _____ () C:\Users\ogogog\Documents\SCHWESTA EWA FEAT SARI HALT DIE FRESSE 05 NR. 250 (OFFICIAL 3D VERSION AGGROTV)[1].mp4
2014-06-02 04:45 - 2014-06-02 04:45 - 03550062 _____ () C:\Users\ogogog\Documents\SCHWESTA EWA FEAT SARI HALT DIE FRESSE 05 NR. 250 (OFFICIAL HD VERSION AGGROTV).mp4
2014-06-02 04:12 - 2014-06-02 03:32 - 00000000 ____D () C:\Users\ogogog\Desktop\shok
2014-06-01 22:52 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-06-01 22:49 - 2014-06-01 07:46 - 00000000 ____D () C:\Users\Public\Documents\MAGIX
2014-06-01 22:41 - 2014-06-01 03:31 - 00000000 ____D () C:\ProgramData\TEMP
2014-06-01 22:41 - 2014-06-01 03:30 - 00000000 ____D () C:\Program Files (x86)\PRTG Network Monitor
2014-06-01 07:57 - 2014-06-01 07:57 - 00161177 _____ () C:\Users\ogogog\Documents\InstallLogs.zip
2014-06-01 07:53 - 2014-06-01 07:53 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\MAGIX
2014-06-01 07:45 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-06-01 07:31 - 2014-06-01 07:31 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\X-Setup Pro
2014-06-01 07:31 - 2014-06-01 07:31 - 00000000 ____D () C:\ProgramData\X-Setup Pro
2014-06-01 05:50 - 2014-06-01 05:50 - 00001885 _____ () C:\Users\Public\Desktop\PrivaZer.lnk
2014-06-01 05:50 - 2014-04-30 08:15 - 00001897 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk
2014-06-01 05:50 - 2014-04-30 08:15 - 00000000 ____D () C:\Program Files (x86)\PrivaZer
2014-06-01 05:49 - 2014-06-01 05:49 - 07204488 _____ (Goversoft LLC) C:\Users\ogogog\Downloads\privazer_free(1).exe
2014-06-01 03:31 - 2014-06-01 03:31 - 00000000 ____D () C:\usr
2014-06-01 03:31 - 2014-06-01 03:31 - 00000000 ____D () C:\ProgramData\Paessler
2014-06-01 02:34 - 2014-05-31 15:58 - 00000077 _____ () C:\wepkeys.txt
2014-06-01 01:46 - 2014-06-01 01:46 - 00000218 _____ () C:\Users\ogogog\AppData\Local\recently-used.xbel
2014-06-01 01:24 - 2014-06-01 01:23 - 00000000 ____D () C:\Users\ogogog\AppData\Local\gtk-2.0
2014-05-31 21:37 - 2014-05-31 21:37 - 00001388 _____ () C:\Users\ogogog\Documents\131wifi.txt
2014-05-31 20:22 - 2014-05-31 17:44 - 00000852 _____ () C:\Users\ogogog\Documents\mac neu.txt
2014-05-31 17:03 - 2014-05-31 15:46 - 00000000 ____D () C:\Users\ogogog\AppData\Local\MetaGeek,_LLC
2014-05-31 15:36 - 2014-05-31 15:36 - 00000000 ____D () C:\Program Files (x86)\AVM_update
2014-05-31 15:28 - 2014-05-31 15:28 - 00000000 ____D () C:\Users\ogogog\AVM_Driver
2014-05-31 09:27 - 2014-05-21 22:34 - 00003166 _____ () C:\Windows\System32\Tasks\{AAFBE4D2-5C85-470F-9C6E-6918F642A00B}
2014-05-31 08:20 - 2014-04-05 19:00 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-25 18:02 - 2014-05-25 18:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pflanzen gegen Zombies
2014-05-21 20:09 - 2014-05-21 20:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf
2014-05-21 16:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-20 23:39 - 2014-05-19 23:50 - 00000000 ____D () C:\Users\ogogog\Desktop\UnlockTools
2014-05-20 19:33 - 2014-05-20 04:33 - 00000672 _____ () C:\NSI_DriverInstall.log
2014-05-20 05:21 - 2014-05-20 05:21 - 00000416 _____ () C:\Windows\BRWMARK.INI
2014-05-20 05:21 - 2014-05-20 05:21 - 00000034 _____ () C:\Windows\SysWOW64\BD2030.DAT
2014-05-20 05:18 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-05-20 05:11 - 2014-04-30 03:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-20 04:33 - 2014-05-20 04:33 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf
2014-05-20 04:33 - 2014-05-20 04:33 - 00000000 ____D () C:\Program Files (x86)\Handset WinDriver
2014-05-19 23:27 - 2014-05-18 10:59 - 00000000 ____D () C:\Users\ogogog\AppData\Local\PMB Files
2014-05-19 23:26 - 2014-05-19 20:50 - 00000000 ____D () C:\Users\ogogog\.android
2014-05-19 23:04 - 2014-05-19 23:04 - 00000000 ____D () C:\Program Files\Java
2014-05-19 20:44 - 2014-05-19 20:40 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-19 20:42 - 2014-05-19 20:17 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-19 20:25 - 2014-04-19 09:56 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-19 20:23 - 2014-04-06 12:07 - 00000000 ____D () C:\Users\ogogog\AppData\Local\Adobe
2014-05-19 20:18 - 2014-05-19 20:18 - 00000000 ____D () C:\ProgramData\Sun
2014-05-19 20:15 - 2014-05-19 20:15 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-19 20:03 - 2014-05-19 20:02 - 00000000 ____D () C:\Users\ogogog\Desktop\adt-bundle-windows-x86_64-20140321
2014-05-19 04:24 - 2014-04-18 18:24 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-19 03:23 - 2014-05-19 03:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_smhwadb_01005.Wdf
2014-05-19 02:53 - 2014-05-19 02:53 - 00000000 ____D () C:\Users\ogogog\Desktop\adb-toolkit
2014-05-19 02:51 - 2014-05-19 02:51 - 00000000 ____D () C:\adbtk
2014-05-19 02:47 - 2014-04-22 22:45 - 00000103 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (2).txt
2014-05-19 01:21 - 2014-05-19 01:21 - 00000000 ____D () C:\Users\ogogog\AppData\Local\worstenbrood
2014-05-19 01:19 - 2014-05-19 01:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-19 00:25 - 2014-05-19 00:25 - 00000000 ____D () C:\Users\ogogog\AppData\Local\Downloaded Installations
2014-05-19 00:22 - 2014-05-19 00:22 - 02344129 _____ () C:\Users\ogogog\Desktop\HuaweiUpdateExtractor_0.9.7.9_Setup.zip
2014-05-18 20:44 - 2014-05-18 00:40 - 00000061 _____ () C:\Users\ogogog\Desktop\Neues Textdokument (3).txt
2014-05-18 11:55 - 2014-05-18 11:55 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\LolClient
2014-05-18 11:06 - 2014-05-18 11:06 - 00001613 _____ () C:\Users\Public\Desktop\Play League of Legends.lnk
2014-05-18 11:06 - 2014-05-18 11:06 - 00000000 ____D () C:\Riot Games
2014-05-18 10:58 - 2014-05-18 10:58 - 00000000 ____D () C:\Users\ogogog\AppData\Roaming\Riot Games
2014-05-18 10:58 - 2014-05-18 10:58 - 00000000 ____D () C:\ProgramData\PMB Files
2014-05-18 10:58 - 2014-05-18 10:58 - 00000000 ____D () C:\Program Files (x86)\Pando Networks
2014-05-17 23:58 - 2014-05-17 23:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tt eSPORTS
2014-05-17 23:58 - 2014-05-17 23:58 - 00000000 ____D () C:\Program Files (x86)\Tt eSPORTS
2014-05-17 23:58 - 2014-04-05 05:01 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-16 16:21 - 2014-05-16 16:04 - 00000000 ____D () C:\Users\ogogog\Documents\THERON
Some content of TEMP:
====================
C:\Users\ogogog\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-06-10 13:42
==================== End Of Log ============================
--- --- --- --- --- --- FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-06-2014 02
Ran by ogogog at 2014-06-15 17:32:15
Running from C:\Users\ogogog\Desktop\Neuer Ordner (3)
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2018 - Avast Software)
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Driver Manager (HKLM-x32\...\{177CD779-4EEC-43C5-8DEA-4E0EC103624B}) (Version: 8.1 - Driver Manager)
EA Sports FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 5.3.0.40277 - Electronic Arts, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FreshUI (HKLM-x32\...\FreshDevices - FreshUI_is1) (Version: - )
Full Tilt Poker.Eu (HKLM-x32\...\{127BEFB3-24B2-4B44-8E99-AD22C2A5A8ED}) (Version: 5.8.21.WIN.FullTilt.EU - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Need For Speed™ World (HKLM-x32\...\{3AF1B16A-7DC9-4C80-BAEC-70B088A7C5B8}) (Version: 1.0.0.0 - Electronic Arts)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.6.2792 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu)
PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.20.1.0 - Goversoft LLC)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
ShotOnline (HKLM-x32\...\ShotOnline) (Version: 1.0 - OnNet)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.0.0.0 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.0.3 - Electronic Arts)
Tt eSPORTS THERON (HKLM-x32\...\{B50AB875-64A2-4D12-BB48-B15611B48CE0}) (Version: 1.0.0 - Tt eSPORTS)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WildStar (HKLM-x32\...\WildStar) (Version: - NCSOFT)
WTF (HKLM-x32\...\WTF_is1) (Version: WTF - OnNet)
==================== Restore Points =========================
05-06-2014 12:49:09 avast! antivirus system restore point
10-06-2014 10:35:07 Windows Update
11-06-2014 16:11:04 Windows Update
12-06-2014 01:00:12 Windows Update
12-06-2014 02:28:07 Windows Update
14-06-2014 01:35:22 avast! antivirus system restore point
14-06-2014 03:36:24 Windows Modules Installer
14-06-2014 04:35:43 DirectX wurde installiert
14-06-2014 15:08:50 Installed Microsoft Fix it 50688
14-06-2014 16:37:51 Windows 7 Upgrade Advisor wird installiert
14-06-2014 16:43:37 Windows 7 Upgrade Advisor wird entfernt
14-06-2014 19:36:40 Removed Outcome
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {29AAF102-2A21-422C-BB46-3A7BE5157860} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {630008D8-3F64-4B65-962E-D99FD9FB2A30} - System32\Tasks\Driver Manager-RTMUpdater => C:\Program Files (x86)\Driver Manager\Driver Manager\DriverManager.exe [2014-05-07] (PC Drivers Headquarters)
Task: {66494B01-600B-4943-BC0C-FA93B4C96F89} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-06-14] (AVAST Software)
Task: {D7BF7967-7247-483E-A5E3-CD52A1FC9B49} - System32\Tasks\Driver Manager-RTMScanRunOnce => C:\Program Files (x86)\Driver Manager\Driver Manager\DriverManager.exe [2014-05-07] (PC Drivers Headquarters)
Task: {E279B4F4-9C36-41A4-9B63-A80DA9EE3C57} - System32\Tasks\Driver Manager-RTMScan => C:\Program Files (x86)\Driver Manager\Driver Manager\DriverManager.exe [2014-05-07] (PC Drivers Headquarters)
Task: {E5672CD3-661B-4AC6-89F6-73E740B1A431} - System32\Tasks\Driver Manager-RTMRules => C:\Program Files (x86)\Driver Manager\Driver Manager\DriverManager.exe [2014-05-07] (PC Drivers Headquarters)
==================== Loaded Modules (whitelisted) =============
2014-04-05 06:42 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-14 20:26 - 2014-06-14 20:26 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061401\algo.dll
2014-06-15 17:18 - 2014-06-15 17:18 - 02776064 _____ () C:\Program Files\AVAST Software\Avast\defs\14061500\algo.dll
2014-06-14 03:35 - 2014-06-14 03:35 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-03 08:09 - 2014-06-11 18:12 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-05-19 20:22 - 2014-05-19 20:22 - 16361136 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:9A870F8B
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Tt eSPORTS THERON Gaming Mouse => "C:\Program Files (x86)\Tt eSPORTS\Tt eSPORTS THERON\THERON.exe" /Automation
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/15/2014 06:03:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm autoruns.exe, Version 12.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 74c
Startzeit: 01cf884e545f37de
Endzeit: 15
Anwendungspfad: C:\Users\ogogog\Downloads\Autoruns\autoruns.exe
Berichts-ID: f9444aae-f441-11e3-ab2a-001fd027f76f
Error: (06/15/2014 06:02:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (06/15/2014 06:02:18 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (06/15/2014 06:02:18 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (06/15/2014 06:02:07 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (06/15/2014 04:40:57 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (06/15/2014 04:40:23 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
System errors:
=============
Error: (06/15/2014 05:18:18 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Der Dienst "Net.Msmq-Listeneradapter" ist von folgendem Dienst abhängig: msmq. Dieser Dienst ist eventuell nicht installiert.
Error: (06/15/2014 06:01:21 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "DeleteFlag" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (06/15/2014 05:58:42 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Der Dienst "Net.Msmq-Listeneradapter" ist von folgendem Dienst abhängig: msmq. Dieser Dienst ist eventuell nicht installiert.
Error: (06/15/2014 05:33:09 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (06/15/2014 05:33:08 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.
Error: (06/15/2014 05:26:57 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "DeleteFlag" aufgrund folgenden Fehlers fehlgeschlagen:
%%5
Error: (06/15/2014 04:56:15 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Microsoft Office Sessions:
=========================
Error: (06/15/2014 06:03:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: autoruns.exe12.0.0.074c01cf884e545f37de15C:\Users\ogogog\Downloads\Autoruns\autoruns.exef9444aae-f441-11e3-ab2a-001fd027f76f
Error: (06/15/2014 06:02:21 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\ogogog\Desktop\Neuer Ordner (3)\esetsmartinstaller_deu.exe
Error: (06/15/2014 06:02:18 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\ogogog\Desktop\Neuer Ordner (3)\esetsmartinstaller_deu.exe
Error: (06/15/2014 06:02:18 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\ogogog\Desktop\Neuer Ordner (3)\esetsmartinstaller_deu.exe
Error: (06/15/2014 06:02:07 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\ogogog\Desktop\Neuer Ordner (3)\esetsmartinstaller_deu.exe
Error: (06/15/2014 04:40:57 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\ogogog\Desktop\Neuer Ordner (3)\esetsmartinstaller_deu.exe
Error: (06/15/2014 04:40:23 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\ogogog\Desktop\Neuer Ordner (3)\esetsmartinstaller_deu.exe
==================== Memory info ===========================
Percentage of memory in use: 25%
Total physical RAM: 4094.48 MB
Available physical RAM: 3051.59 MB
Total Pagefile: 8187.15 MB
Available Pagefile: 7084.4 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:777.84 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 4C148DC1)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
==================== End Of Log ============================
hi, wenn nötig hätte ich auch noch logfiles von gestern abend oder so mit allen häkchen an. habe übernacht recht viel deinstalliert. danke soweit |
|
16.06.2014, 09:27
| #4 |
| /// the machine /// TB-Ausbilder | firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung Hi, Malware ist da keine.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
17.06.2014, 05:31
| #5 |
| | firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung thx so weit für deine hilfe. mache wegen der sicherheit einfach mal das system neu, bin nur mal gespannt wegen der erneuten aktivierung, das auch das einzige was bei mir wirklich fragen aufwirft. |
|
17.06.2014, 10:55
| #6 |
| /// the machine /// TB-Ausbilder | firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung Das sollte bei legalem Key gar kein problem sein.
__________________ --> firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung |
|
| Themen zu firefox und avast probleme mysteriöse windows aktivierung. brauche hilfe bei analyse auswertung |
| aktiviert, aktivierung, analyse, auswertung, avast, benachrichtigung, brauche, direkt, erfolgreich, erneut, firefox, funktioniert, langsam, länger, neuinstallation, nichts, probleme, scan, scanne, scannen, seite, seiten, telefon, verantwortung, windows |
Linear-Darstellung
