Malwarebytes findet Viren Ich mbam hat nach einem vollständigen Scan einiges gefunden.....
mbam Code:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version: v2014.02.09.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16750
Michi :: MICHI-PC [administrator]
09.02.2014 13:42:52
mbam-log-2014-02-09 (13-42-52).txt
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 566420
Time elapsed: 1 hour(s), 8 minute(s), 17 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 12
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} (PUP.Optional.Incredibar) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} (PUP.Optional.Incredibar) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77} (PUP.Optional.Incredibar) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77} (PUP.Optional.Incredibar) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\DataMngr_Toolbar (PUP.Optional.DataMngr.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\WNLT (PUP.Optional.InstallBrain.A) -> Quarantined and deleted successfully.
HKCU\Software\1ClickDownload (PUP.Optional.1ClickDownload.A) -> Quarantined and deleted successfully.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Quarantined and deleted successfully.
HKCU\Software\Iminent (PUP.Optional.Iminent.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Quarantined and deleted successfully.
Registry Values Detected: 4
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Data: -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{84FF7BD6-B47F-46F8-9130-01B2696B36CB} (PUP.Optional.Iminent.A) -> Data: -> Quarantined and deleted successfully.
HKCU\SOFTWARE\WNLT|URL (PUP.Optional.InstallBrain.A) -> Data: -> Quarantined and deleted successfully.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {70E65DA2-4C16-11E2-BEB0-24BE0506DD56} -> Quarantined and deleted successfully.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end) Frst Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-02-2014
Ran by Ale x (administrator) on MICHI-PC on 09-02-2014 15:41:54
Running from C:\Users\Ale x\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Mirics Semiconductor Ltd) C:\windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-03-30] (IDT, Inc.)
HKLM\...\Run: [HPSYSDRV] - C:\Program Files (x86)\Hewlett-Packard\HP Odometer\HPSYSDRV.EXE [62768 2008-11-20] (Hewlett-Packard)
HKLM\...\Run: [BeatsOSDApp] - C:\Program Files\IDT\WDM\beats64.exe [37888 2012-03-30] (Hewlett-Packard )
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM-x32\...\Run: [Norton Online Backup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [HP Remote Solution] - C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe [789504 2012-01-13] (Hewlett-Packard)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2012-02-21] (EasyBits Software AS)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-2266554003-3024528923-3831301696-1001\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\S-1-5-21-2266554003-3024528923-3831301696-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-2266554003-3024528923-3831301696-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {7ABD02B2-A30A-4298-979A-5718F93D506B} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-2/4?mpre=hxxp://www.ebay.de/sch/i.html?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-2/4?mpre=hxxp://www.ebay.de/sch/i.html?_nkw={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-2/4?mpre=hxxp://www.ebay.de/sch/i.html?_nkw={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2012-08-23] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 217.0.43.145 217.0.43.129
FireFox:
========
FF ProfilePath: C:\Users\Ale x\AppData\Roaming\Mozilla\Firefox\Profiles\rw0wfund.default
FF Homepage: google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: NoScript - C:\Users\Ale x\AppData\Roaming\Mozilla\Firefox\Profiles\rw0wfund.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-12-14]
FF Extension: Adblock Plus - C:\Users\Ale x\AppData\Roaming\Mozilla\Firefox\Profiles\rw0wfund.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-08-06]
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 hcwD3bda_dvbt; C:\windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe [2686464 2011-05-17] (Mirics Semiconductor Ltd)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
S2 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [625728 2011-08-19] ()
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-06] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-06] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-08-06] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-05-16] ()
R3 hcwD3bda; C:\Windows\System32\DRIVERS\hcwD3bda64.sys [121344 2011-05-17] (Mirics)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-05-16] ()
R1 vmm; C:\Windows\system32\Treiber\vmm.sys [294248 2012-12-31] (Microsoft Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-09 15:41 - 2014-02-09 15:42 - 00012414 _____ () C:\Users\Ale x\Desktop\FRST.txt
2014-02-09 15:41 - 2014-02-09 15:41 - 00000000 ____D () C:\FRST
2014-02-09 15:40 - 2014-02-09 15:40 - 00000472 _____ () C:\Users\Ale x\Desktop\defogger_disable.log
2014-02-09 15:40 - 2014-02-09 15:40 - 00000000 _____ () C:\Users\Ale x\defogger_reenable
2014-02-09 15:39 - 2014-02-09 15:39 - 00050477 _____ () C:\Users\Ale x\Desktop\Defogger.exe
2014-02-09 15:38 - 2014-02-09 15:39 - 02170368 _____ (Farbar) C:\Users\Ale x\Desktop\FRST64.exe
2014-02-09 15:38 - 2014-02-09 15:38 - 00380416 _____ () C:\Users\Ale x\Desktop\Gmer-19357.exe
2014-02-09 15:21 - 2014-02-09 15:21 - 00032724 _____ () C:\Users\Ale x\Desktop\Unbenannt 1.odt
2014-02-09 12:19 - 2014-02-09 12:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-02-09 04:46 - 2014-02-09 04:47 - 03466248 _____ (TrueCrypt Foundation) C:\Users\Ale x\Downloads\TrueCrypt_Setup_7.1a.exe
2014-02-07 23:39 - 2014-02-07 23:39 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\steamvr
2014-02-07 22:57 - 2013-02-12 14:32 - 02152720 _____ (Blizzard Entertainment) C:\Users\Ale x\Desktop\StarcraftII.exe
2014-02-07 15:59 - 2014-02-07 15:59 - 00019843 _____ () C:\Users\Michi\Desktop\Aufgabe kurz.odt
2014-02-06 18:00 - 2014-02-06 20:48 - 00000659 _____ () C:\Users\Ale x\Desktop\computer.txt
2014-02-05 20:48 - 2014-02-05 20:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-05 15:23 - 2014-02-05 15:23 - 00068368 _____ () C:\Users\Ale x\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-05 14:30 - 2014-02-05 14:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-03 17:06 - 2014-02-09 00:20 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\.minecraft
2014-02-03 16:33 - 2014-02-03 16:56 - 50249936 _____ (Microsoft Corporation) C:\Users\Ale x\Downloads\MouseKeyboardCenterx64_DEU_2.3.145.exe
2014-02-03 15:21 - 2014-02-03 17:06 - 00000000 ____D () C:\Users\Ale x\Desktop\mod 1
2014-02-02 22:48 - 2014-02-03 16:27 - 00009476 _____ () C:\Users\Ale x\Desktop\Referat.odt
2014-02-02 18:54 - 2014-02-02 18:54 - 00000000 ____D () C:\Users\Michi\Desktop\Diablo The Awakening
2014-02-02 18:40 - 2014-02-02 18:48 - 00000000 ____D () C:\Users\Michi\Desktop\TheHell
2014-02-02 18:39 - 2014-02-02 18:39 - 00000000 ____D () C:\Users\Michi\iStar
2014-02-01 23:56 - 2014-02-04 15:11 - 00000266 _____ () C:\Users\Ale x\Desktop\kniffel.cmd
2014-02-01 20:58 - 2014-02-02 18:45 - 00025727 _____ () C:\Users\Michi\Desktop\Aufgabe 7.2.14.odt
2014-02-01 01:18 - 2014-02-01 01:18 - 05971128 _____ (Blizzard Entertainment) C:\Users\Ale x\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-30 16:37 - 2014-01-30 16:37 - 00000000 ____D () C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-30 16:36 - 2014-01-30 16:36 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\hpqLog
2014-01-29 19:11 - 2014-01-29 19:24 - 131557792 _____ (Oracle Corporation) C:\Users\Ale x\Downloads\jdk-7u51-windows-x64.exe
2014-01-28 20:50 - 2014-01-29 18:49 - 00000000 ____D () C:\Users\Ale x\Desktop\Neuer Ordner
2014-01-28 19:37 - 2014-01-28 19:37 - 00000000 ____D () C:\Users\Ale x\Desktop\Launcher
2014-01-28 19:36 - 2013-07-01 22:03 - 00484992 _____ () C:\Users\Ale x\Desktop\Minecraft.exe
2014-01-27 13:24 - 2014-02-05 14:30 - 00000888 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-01-26 23:13 - 2014-01-26 23:13 - 00000000 ____D () C:\Users\Ale x\AppData\Local\Blizzard Entertainment
2014-01-26 00:55 - 2014-01-26 00:55 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\openvr
2014-01-25 22:48 - 2014-01-25 22:51 - 00000000 ____D () C:\Users\Ale x\Desktop\mods
2014-01-25 21:41 - 2014-01-25 21:41 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\minecraft
2014-01-25 17:35 - 2014-01-25 17:35 - 00000000 ____D () C:\Users\Ale x\Desktop\saves
2014-01-25 17:17 - 2013-11-27 15:47 - 00000000 ___HD () C:\Users\Ale x\Desktop\DragonDropProcessFolder
2014-01-25 17:16 - 2013-11-27 15:47 - 00000000 ___HD () C:\Users\Ale x\DragonDropProcessFolder
2014-01-25 16:58 - 2014-01-25 16:59 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Ale x\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-25 12:07 - 2014-01-25 12:07 - 00000000 ____D () C:\Program Files\Java
2014-01-25 12:05 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-25 12:05 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-25 12:05 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-25 12:05 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-25 12:04 - 2014-01-25 12:05 - 00005298 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-25 11:56 - 2014-01-25 11:59 - 30796712 _____ (Oracle Corporation) C:\Users\Ale x\Downloads\jre-7u51-windows-x64.exe
2014-01-17 22:31 - 2014-01-17 22:31 - 00000000 ___RD () C:\Users\Michi\Desktop\Spiele
2014-01-15 19:54 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 19:54 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 19:54 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 19:54 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 19:54 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 19:54 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 19:54 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 19:54 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 19:54 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-14 22:17 - 2014-01-15 18:20 - 00000000 ____D () C:\Users\Michi\AppData\Roaming\.minecraft
2014-01-12 12:04 - 2014-02-03 16:29 - 00001981 _____ () C:\Users\Ale x\Desktop\Malwarebytes Anti-Malware.lnk
==================== One Month Modified Files and Folders =======
2014-02-09 15:42 - 2014-02-09 15:41 - 00012414 _____ () C:\Users\Ale x\Desktop\FRST.txt
2014-02-09 15:41 - 2014-02-09 15:41 - 00000000 ____D () C:\FRST
2014-02-09 15:40 - 2014-02-09 15:40 - 00000472 _____ () C:\Users\Ale x\Desktop\defogger_disable.log
2014-02-09 15:40 - 2014-02-09 15:40 - 00000000 _____ () C:\Users\Ale x\defogger_reenable
2014-02-09 15:40 - 2012-10-17 18:37 - 00000000 ____D () C:\Users\Ale x
2014-02-09 15:39 - 2014-02-09 15:39 - 00050477 _____ () C:\Users\Ale x\Desktop\Defogger.exe
2014-02-09 15:39 - 2014-02-09 15:38 - 02170368 _____ (Farbar) C:\Users\Ale x\Desktop\FRST64.exe
2014-02-09 15:38 - 2014-02-09 15:38 - 00380416 _____ () C:\Users\Ale x\Desktop\Gmer-19357.exe
2014-02-09 15:22 - 2013-10-25 20:00 - 00000000 ____D () C:\Users\Ale x\AppData\Local\LogMeIn Hamachi
2014-02-09 15:22 - 2012-12-01 12:28 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-02-09 15:21 - 2014-02-09 15:21 - 00032724 _____ () C:\Users\Ale x\Desktop\Unbenannt 1.odt
2014-02-09 15:10 - 2012-08-23 15:42 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-09 14:43 - 2012-10-09 18:19 - 01929235 _____ () C:\Windows\WindowsUpdate.log
2014-02-09 13:47 - 2009-07-14 05:45 - 00024400 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:47 - 2009-07-14 05:45 - 00024400 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:40 - 2013-04-19 20:18 - 00000000 ____D () C:\Users\Michi\AppData\Local\LogMeIn Hamachi
2014-02-09 13:40 - 2012-11-03 21:20 - 00000496 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-02-09 13:39 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-09 13:39 - 2009-07-14 05:51 - 00136737 _____ () C:\Windows\setupact.log
2014-02-09 12:20 - 2012-10-14 11:45 - 00068368 _____ () C:\Users\Michi\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-09 12:20 - 2012-10-09 18:28 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DCE04F5E-C4DE-4E9C-BB15-571709D607DD}
2014-02-09 12:20 - 2012-10-09 18:22 - 00000000 ____D () C:\Users\Michi
2014-02-09 12:19 - 2014-02-09 12:19 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_09_00.Wdf
2014-02-09 06:14 - 2013-04-06 06:44 - 00000000 ___RD () C:\Users\Ale x\Desktop\Spiele
2014-02-09 05:48 - 2013-05-01 18:12 - 00000000 ____D () C:\Users\Ale x\AppData\Local\DOSBox
2014-02-09 04:47 - 2014-02-09 04:46 - 03466248 _____ (TrueCrypt Foundation) C:\Users\Ale x\Downloads\TrueCrypt_Setup_7.1a.exe
2014-02-09 00:20 - 2014-02-03 17:06 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\.minecraft
2014-02-08 13:33 - 2012-10-17 18:37 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{CC39038B-C2C4-4507-B2B5-60F31416CF4C}
2014-02-07 23:39 - 2014-02-07 23:39 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\steamvr
2014-02-07 21:52 - 2013-02-08 13:32 - 00000000 ____D () C:\Users\Ale x\Documents\StarCraft II
2014-02-07 15:59 - 2014-02-07 15:59 - 00019843 _____ () C:\Users\Michi\Desktop\Aufgabe kurz.odt
2014-02-07 14:42 - 2012-10-24 10:34 - 00000000 ___RD () C:\Users\Ale x\Spiele
2014-02-07 14:22 - 2013-08-06 20:47 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-06 20:48 - 2014-02-06 18:00 - 00000659 _____ () C:\Users\Ale x\Desktop\computer.txt
2014-02-06 15:20 - 2013-04-09 17:02 - 00000000 ____D () C:\Users\Ale x\Icons
2014-02-06 14:22 - 2013-10-27 10:47 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-02-06 14:10 - 2013-05-24 17:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-05 20:48 - 2014-02-05 20:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-05 20:32 - 2013-04-24 22:34 - 00000000 ____D () C:\Program Files (x86)\DOSBox-0.74
2014-02-05 19:09 - 2013-02-11 13:57 - 00000000 ____D () C:\Users\Ale x\AppData\Local\CrashDumps
2014-02-05 15:23 - 2014-02-05 15:23 - 00068368 _____ () C:\Users\Ale x\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-05 14:30 - 2014-02-05 14:30 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-05 14:30 - 2014-01-27 13:24 - 00000888 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-02-05 01:52 - 2012-08-23 15:47 - 00281977 _____ () C:\Windows\DirectX.log
2014-02-04 22:10 - 2013-11-27 13:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-04 22:10 - 2012-08-23 15:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-04 22:10 - 2012-08-23 15:42 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-04 15:11 - 2014-02-01 23:56 - 00000266 _____ () C:\Users\Ale x\Desktop\kniffel.cmd
2014-02-03 18:20 - 2013-10-31 13:01 - 00003118 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe
2014-02-03 18:19 - 2013-10-31 13:00 - 00003092 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe
2014-02-03 18:19 - 2013-10-31 13:00 - 00003090 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe
2014-02-03 17:06 - 2014-02-03 15:21 - 00000000 ____D () C:\Users\Ale x\Desktop\mod 1
2014-02-03 16:56 - 2014-02-03 16:33 - 50249936 _____ (Microsoft Corporation) C:\Users\Ale x\Downloads\MouseKeyboardCenterx64_DEU_2.3.145.exe
2014-02-03 16:29 - 2014-01-12 12:04 - 00001981 _____ () C:\Users\Ale x\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-03 16:27 - 2014-02-02 22:48 - 00009476 _____ () C:\Users\Ale x\Desktop\Referat.odt
2014-02-02 22:57 - 2013-09-13 23:37 - 00000000 ____D () C:\Users\Ale x\Desktop\.minecraft
2014-02-02 18:54 - 2014-02-02 18:54 - 00000000 ____D () C:\Users\Michi\Desktop\Diablo The Awakening
2014-02-02 18:48 - 2014-02-02 18:40 - 00000000 ____D () C:\Users\Michi\Desktop\TheHell
2014-02-02 18:45 - 2014-02-01 20:58 - 00025727 _____ () C:\Users\Michi\Desktop\Aufgabe 7.2.14.odt
2014-02-02 18:39 - 2014-02-02 18:39 - 00000000 ____D () C:\Users\Michi\iStar
2014-02-01 22:28 - 2013-03-21 15:22 - 00000000 ____D () C:\Users\Ale x\Desktop\hidden maps
2014-02-01 19:52 - 2012-12-01 19:16 - 00000000 ____D () C:\Users\Michi\Musik
2014-02-01 01:18 - 2014-02-01 01:18 - 05971128 _____ (Blizzard Entertainment) C:\Users\Ale x\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-31 21:33 - 2013-07-27 17:58 - 00257796 _____ () C:\Windows\DPINST.LOG
2014-01-31 15:42 - 2012-10-30 18:12 - 00000000 ____D () C:\Users\Ale x\AppData\Local\Microsoft Games
2014-01-31 14:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-01-31 14:06 - 2013-02-27 13:22 - 00000332 _____ () C:\Windows\Tasks\HPCeeScheduleForAle x.job
2014-01-31 14:06 - 2012-10-28 02:12 - 00000332 _____ () C:\Windows\Tasks\HPCeeScheduleForMichi.job
2014-01-30 17:50 - 2013-02-27 13:22 - 00003188 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForAle x
2014-01-30 17:50 - 2012-10-28 02:12 - 00003188 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForMichi
2014-01-30 17:34 - 2012-10-17 18:37 - 00000000 ____D () C:\Users\Ale x\AppData\Local\Hewlett-Packard
2014-01-30 16:45 - 2012-08-23 15:36 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-30 16:44 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2014-01-30 16:38 - 2012-08-23 15:35 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-01-30 16:37 - 2014-01-30 16:37 - 00000000 ____D () C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-01-30 16:36 - 2014-01-30 16:36 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\hpqLog
2014-01-30 16:36 - 2012-08-23 15:35 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-01-30 16:35 - 2011-02-11 17:32 - 00000000 ____D () C:\SWSETUP
2014-01-29 19:24 - 2014-01-29 19:11 - 131557792 _____ (Oracle Corporation) C:\Users\Ale x\Downloads\jdk-7u51-windows-x64.exe
2014-01-29 18:49 - 2014-01-28 20:50 - 00000000 ____D () C:\Users\Ale x\Desktop\Neuer Ordner
2014-01-29 16:44 - 2012-10-10 16:59 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-01-29 16:39 - 2012-12-05 18:03 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-01-29 16:27 - 2013-02-20 14:59 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\HpUpdate
2014-01-29 16:27 - 2013-02-20 14:59 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\HP Support Assistant
2014-01-28 19:37 - 2014-01-28 19:37 - 00000000 ____D () C:\Users\Ale x\Desktop\Launcher
2014-01-26 23:13 - 2014-01-26 23:13 - 00000000 ____D () C:\Users\Ale x\AppData\Local\Blizzard Entertainment
2014-01-26 20:53 - 2013-03-08 21:07 - 00000000 ____D () C:\Program Files (x86)\StarCraft
2014-01-26 00:55 - 2014-01-26 00:55 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\openvr
2014-01-25 22:51 - 2014-01-25 22:48 - 00000000 ____D () C:\Users\Ale x\Desktop\mods
2014-01-25 21:41 - 2014-01-25 21:41 - 00000000 ____D () C:\Users\Ale x\AppData\Roaming\minecraft
2014-01-25 17:35 - 2014-01-25 17:35 - 00000000 ____D () C:\Users\Ale x\Desktop\saves
2014-01-25 16:59 - 2014-01-25 16:58 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Ale x\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-25 12:14 - 2013-07-13 00:19 - 00000000 ____D () C:\Users\Ale x\AppData\Local\Adobe
2014-01-25 12:07 - 2014-01-25 12:07 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-25 12:07 - 2014-01-25 12:07 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-25 12:07 - 2014-01-25 12:07 - 00000000 ____D () C:\Program Files\Java
2014-01-25 12:05 - 2014-01-25 12:04 - 00005298 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-25 12:05 - 2013-11-27 22:27 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-25 12:05 - 2013-10-17 20:33 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-25 11:59 - 2014-01-25 11:56 - 30796712 _____ (Oracle Corporation) C:\Users\Ale x\Downloads\jre-7u51-windows-x64.exe
2014-01-25 11:52 - 2012-11-06 15:48 - 00001328 __RSH () C:\Users\Ale x\ntuser.pol
2014-01-24 15:42 - 2013-02-11 13:56 - 00000000 ____D () C:\Program Files (x86)\StarCraft II
2014-01-24 15:26 - 2012-11-05 21:25 - 00000680 __RSH () C:\Users\Michi\ntuser.pol
2014-01-18 00:08 - 2012-11-02 18:01 - 00000000 ____D () C:\Users\Michi\AppData\Local\CrashDumps
2014-01-17 22:31 - 2014-01-17 22:31 - 00000000 ___RD () C:\Users\Michi\Desktop\Spiele
2014-01-16 17:53 - 2009-07-14 05:45 - 00308368 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-15 20:34 - 2013-07-13 00:08 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-15 20:33 - 2012-12-21 16:35 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 18:29 - 2012-11-07 20:34 - 00000000 ____D () C:\Users\Michi\AppData\Roaming\HpUpdate
2014-01-15 18:28 - 2012-11-07 20:34 - 00000000 ____D () C:\Users\Michi\AppData\Roaming\HP Support Assistant
2014-01-15 18:20 - 2014-01-14 22:17 - 00000000 ____D () C:\Users\Michi\AppData\Roaming\.minecraft
2014-01-14 22:16 - 2012-10-14 11:30 - 00000000 ____D () C:\Users\Michi\Desktop\Neuer Ordner
2014-01-14 20:28 - 2012-11-24 22:52 - 00000000 ____D () C:\Users\Michi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-01-12 18:41 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-12 12:13 - 2013-12-14 14:47 - 00000000 ____D () C:\Users\Ale x\Desktop\Sonstiges
2014-01-12 12:12 - 2013-04-05 19:48 - 00000000 ____D () C:\Users\Ale x\Desktop\Musik
2014-01-12 12:06 - 2013-12-26 05:25 - 00000000 ____D () C:\Users\Ale x\Desktop\sc
2014-01-11 18:34 - 2012-08-23 15:16 - 00698322 _____ () C:\Windows\system32\perfh007.dat
2014-01-11 18:34 - 2012-08-23 15:16 - 00148658 _____ () C:\Windows\system32\perfc007.dat
2014-01-11 18:34 - 2009-07-14 06:13 - 01612484 _____ () C:\Windows\system32\PerfStringBackup.INI
Some content of TEMP:
====================
C:\Users\Ale x\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Ale x\AppData\Local\Temp\sp64126.exe
C:\Users\Ale x\AppData\Local\Temp\UninstallHPSA.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-30 19:02
==================== End Of Log ============================ Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-02-2014
Ran by Ale x at 2014-02-09 15:43:36
Running from C:\Users\Ale x\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.44 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Age of Empires II: HD Edition (x32 Version: - Hidden Path Entertainment, Ensemble Studios)
ANNO 1503 GOLD (x32 Version: 1.05.00 - )
Anno 1701 - Der Fluch des Drachen (x32 Version: 2.03 - Sunflowers)
Anno 1701 (x32 Version: 1.04 - Sunflowers)
ANNO 2070 (x32 Version: 1.0.0.0 - Ubisoft)
avast! Free Antivirus (x32 Version: 8.0.1489.0 - AVAST Software)
Back to the Future The Game (HKCU Version: 2.0.0.0 - Telltale Games)
Command & Conquer™ 3 Tiberium Wars and Kane's Wrath (x32 Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert 2 and Yuri’s Revenge (x32 Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Red Alert, Counterstrike and The Aftermath (x32 Version: 1.0.0.0 - Electronic Arts, Inc.)
Command & Conquer™ Renegade (x32 Version: 1.0.0.0 - Electronic Arts, Inc.)
Cube World version 0.0.1 (x32 Version: 0.0.1 - Picroma)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diablo (x32 Version: - )
Diablo II (x32 Version: - Blizzard Entertainment)
Diablo The Awakening v6.4 (x32 Version: - )
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
Edna Bricht Aus 6.3 (x32 Version: - )
ESET Online Scanner v3 (x32 Version: - )
Half-Life (x32 Version: - Valve)
Half-Life 2 (x32 Version: - Valve)
Half-Life 2: Deathmatch (x32 Version: - Valve)
Half-Life 2: Episode One (x32 Version: - Valve)
Half-Life 2: Episode Two (x32 Version: - Valve)
Half-Life 2: Lost Coast (x32 Version: - Valve)
Half-Life Deathmatch: Source (x32 Version: - Valve)
Half-Life: Blue Shift (x32 Version: - Gearbox Software)
Half-Life: Opposing Force (x32 Version: - Gearbox Software)
Half-Life: Source (x32 Version: - Valve)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Auto (Version: 1.0.12935.3667 - Hewlett-Packard Company) Hidden
HP Calendar (x32 Version: 5.1.4245.23508 - Hewlett-Packard)
HP Clock (x32 Version: 5.1.4281.27332 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP LinkUp (x32 Version: 2.01.029 - Hewlett-Packard)
HP Magic Canvas (x32 Version: 5.1.15.0 - Hewlett-Packard)
HP Magic Canvas Tutorials (x32 Version: 6.0.0.0 - Hewlett-Packard)
HP Notes (x32 Version: 5.1.4274.30382 - Hewlett-Packard)
HP Odometer (x32 Version: 2.10.0000 - Hewlett-Packard)
HP Remote Solution (x32 Version: 1.1.16.0 - Hewlett-Packard)
HP Remote Solution (x32 Version: 1.1.16.0 - Hewlett-Packard) Hidden
HP RSS (x32 Version: 5.1.4289.23799 - Hewlett-Packard)
HP Setup (x32 Version: 9.1.15430.4033 - Hewlett-Packard Company)
HP Support Assistant (x32 Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (x32 Version: 11.00.0001 - Hewlett-Packard)
HP TouchSmart Background - Beats (x32 Version: 1.0.1.0 - Hewlett-Packard)
HP TouchSmart RecipeBox (x32 Version: 3.0.3830.27730 - Hewlett-Packard)
HP Update (x32 Version: 5.003.001.001 - Hewlett-Packard)
Intel(R) Management Engine Components (x32 Version: 8.0.0.1351 - Intel Corporation)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
LabelPrint (x32 Version: 2.5.4507 - CyberLink Corp.)
LabelPrint (x32 Version: 2.5.4507 - CyberLink Corp.) Hidden
LogMeIn Hamachi (x32 Version: 2.2.0.130 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.130 - LogMeIn, Inc.) Hidden
Magic Desktop (x32 Version: 3.0 - EasyBits Software AS)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Media Go (x32 Version: 2.5.290 - Sony)
Media Go Video Playback Engine 1.120.103.05010 (x32 Version: 1.120.103.05010 - Sony)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Age of Empires II (x32 Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (x32 Version: - )
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Mathematics (x32 Version: 4.0 - Microsoft Corporation)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Virtual PC 2007 SP1 (Version: 6.0.192.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Mirror's Edge (x32 Version: - DICE)
Mozilla Firefox 27.0 (x86 de) (x32 Version: 27.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Norton Online Backup (x32 Version: 2.1.17869 - Symantec Corporation)
NVIDIA Control Panel 296.28 (Version: 296.28 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 296.28 (Version: 296.28 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.18.0 (Version: 1.3.18.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.109.718 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0213 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213 - NVIDIA Corporation)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593 - Apache Software Foundation)
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
Origin (x32 Version: 9.3.10.4710 - Electronic Arts, Inc.)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
PlayStation(R)Store (x32 Version: 4.14.6.15183 - Sony Computer Entertainment Inc.)
Portal 2 (x32 Version: - Valve)
Power2Go (x32 Version: 6.1.6207 - CyberLink Corp.)
Power2Go (x32 Version: 6.1.6207 - CyberLink Corp.) Hidden
Ralink 802.11n Wireless LAN Card (x32 Version: 3.2.12.0 - Ralink)
Rayman3 (x32 Version: 1.00.0000 - Ubi Soft)
Recovery Manager (x32 Version: 5.5.0.5119 - CyberLink Corp.) Hidden
Remote Graphics Receiver (x32 Version: 5.4.5 - Hewlett-Packard)
Revo Uninstaller 1.95 (x32 Version: 1.95 - VS Revo Group)
Sony Ericsson Update Engine (x32 Version: 2.13.10.201308300830 - Sony Ericsson Communications AB)
Sony PC Companion 2.10.188 (x32 Version: 2.10.188 - Sony)
StarCraft (x32 Version: - Blizzard Entertainment)
StarCraft II (x32 Version: - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve)
Tales of Monkey Island (x32 Version: 3.0.0.0 - Daedalic Entertainment)
Team Fortress 2 (x32 Version: - Valve)
Team Fortress Classic (x32 Version: - Valve)
The Elder Scrolls III: Morrowind (x32 Version: - Bethesda Game Studios®)
The Elder Scrolls V: Skyrim (x32 Version: - Bethesda Game Studios)
The Walking Dead (x32 Version: - )
TI USB 3.0 Host Controller Driver (x32 Version: 1.12.18.0 - Texas Instruments Inc.)
TI USB3 Host Driver (x32 Version: 1.12.18.0 - Texas Instruments Inc.) Hidden
TrackMania Nations Forever (x32 Version: - Nadeo)
TSHostedAppLauncher (x32 Version: 5.1.15.0 - Hewlett-Packard) Hidden
TuxGuitar (x32 Version: 1.2 - Herac)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
USB GamePad (x32 Version: 3.85 - My Company Name)
VirtualCloneDrive (x32 Version: 5.4.7.0 - Elaborate Bytes)
Watchtower Library 2012 - Deutsch (x32 Version: 14.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
WestwoodChat (x32 Version: 1.0.0.0 - WestwoodChat)
WestwoodOnline (x32 Version: 1.0.0.0 - WestwoodOnline)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
==================== Restore Points =========================
31-01-2014 13:12:16 Windows Update
31-01-2014 20:32:44 Sony PC Companion
03-02-2014 17:17:58 DCInstallRestorePoint
04-02-2014 13:22:20 Windows Update
05-02-2014 00:51:35 DirectX wurde installiert
07-02-2014 13:24:56 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:34 - 2013-11-24 15:45 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {00C29653-0376-44B1-AA5C-1E5A7F406562} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-11-22] (Hewlett-Packard)
Task: {093E3E58-0B54-4832-A0BC-DDD9E82DE2B7} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-09] (AVAST Software)
Task: {19B1F869-A639-43E9-847F-98E14C30A229} - System32\Tasks\HPCeeScheduleForAle x => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {3E45D2D5-DE40-4671-AAF0-EE889C08A96A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-12-12] (Hewlett-Packard Company)
Task: {52E5915F-92E1-47AC-97B0-1EC56B78F2E8} - System32\Tasks\RMCreator => C:\Program Files (x86)\Hewlett-Packard\Recovery\Reminder.exe [2012-03-19] (CyberLink)
Task: {57189774-0866-4AF2-B223-37A5008083FA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {9CD8F43F-565B-459B-AA68-E0023C092959} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-11-22] (Hewlett-Packard)
Task: {B32BF7E4-0714-4354-8EDD-4FE17CF2D892} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-04] (Adobe Systems Incorporated)
Task: {B38B2164-E9E0-47E5-9C72-8E87AF8EE118} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
Task: {BA1522F6-9BC5-438F-BD69-2F73EBF44D51} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe
Task: {BD060FF7-18A1-43DF-89BD-A47E0FFEBE74} - System32\Tasks\HPCeeScheduleForMichi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {CF2FAAB6-650A-411E-9032-5EC25D5037F6} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
Task: {F00E0016-124D-4545-8E69-CABB95EAEDD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\HPCeeScheduleForAle x.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\HPCeeScheduleForMichi.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Loaded Modules (whitelisted) =============
2014-02-08 21:30 - 2014-02-08 18:44 - 02264064 _____ () C:\Program Files\AVAST Software\Avast\defs\14020801\algo.dll
2014-01-08 13:13 - 2013-12-12 23:19 - 00142848 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-01-08 13:13 - 2013-11-05 02:12 - 00890592 _____ () C:\Program Files (x86)\Steam\libavutil-52.dll
2013-03-12 17:10 - 2014-01-11 00:33 - 00717312 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2012-12-01 12:30 - 2014-01-27 20:02 - 01138088 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2012-12-01 12:30 - 2014-01-11 00:33 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2012-12-01 12:30 - 2013-06-15 00:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-12-01 12:30 - 2013-06-15 00:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-12-01 12:30 - 2013-06-15 00:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2014-02-05 20:48 - 2014-02-05 20:48 - 03583600 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/09/2014 03:23:00 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/08/2014 01:28:38 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/07/2014 02:20:58 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/06/2014 05:02:53 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/06/2014 02:12:38 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/05/2014 02:29:23 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/04/2014 07:26:15 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/04/2014 02:18:11 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/03/2014 01:57:42 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
System errors:
=============
Error: (02/09/2014 03:38:00 PM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 03:26:51 PM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 01:55:45 PM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 01:40:30 PM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 01:40:14 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
Error: (02/09/2014 00:31:07 PM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 00:16:49 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
Error: (02/09/2014 06:28:30 AM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 03:04:49 AM) (Source: ipnathlp) (User: )
Description: 0
Error: (02/09/2014 03:03:04 AM) (Source: ipnathlp) (User: )
Description: 0
Microsoft Office Sessions:
=========================
Error: (02/09/2014 03:23:00 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/08/2014 01:28:38 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/07/2014 02:20:58 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/06/2014 05:02:53 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/06/2014 02:12:38 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/05/2014 07:09:25 PM) (Source: Application Error)(User: )
Description: Dolphin.exe0.0.0.052990370Dolphin.exe0.0.0.052990370c00004170050d45214f801cf229c958e13f8C:\Program Files (x86)\Dolphin x86\Dolphin.exeC:\Program Files (x86)\Dolphin x86\Dolphin.exea4e2d18f-8e90-11e3-b486-24be0506dd56
Error: (02/05/2014 02:29:23 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/04/2014 07:26:15 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/04/2014 02:18:11 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
Error: (02/03/2014 01:57:42 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall
CodeIntegrity Errors:
===================================
Date: 2013-11-24 15:45:23.274
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-11-24 15:45:23.211
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-11-24 15:45:23.164
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-11-24 15:45:23.102
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-04 13:04:23.045
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-04 13:04:22.998
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-04 13:04:22.952
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-10-04 13:04:22.905
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-08-05 22:12:45.601
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-08-05 22:12:45.570
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 32%
Total physical RAM: 8148.01 MB
Available physical RAM: 5523.92 MB
Total Pagefile: 16294.2 MB
Available Pagefile: 13556.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:914.36 GB) (Free:606.86 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:16.93 GB) (Free:2.11 GB) NTFS
Drive f: (DIABLO) (CDROM) (Total:0.56 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 2FA22668)
Partition: GPT Partition Type
==================== End Of Log ============================ |