alialcali | 19.02.2014 12:55 | FRST.txt :
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-02-2014
Running from D:\Downloads
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(DT Soft Ltd) D:\Programme\DAEMON Tools Lite\DTLite.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9394792 2010-07-06] (Realtek Semiconductor)
HKLM\...\Run: [BrMfcWnd] - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [663552 2007-03-12] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] - C:\Program Files\Brother\ControlCenter3\brctrcen.exe [65536 2007-01-26] (Brother Industries, Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2014-02-18] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKU\S-1-5-21-1195377982-609645131-459284087-1000\...\Run: [Steam] - D:\Programme\Steam\Steam.exe [1815976 2014-01-27] (Valve Corporation)
HKU\S-1-5-21-1195377982-609645131-459284087-1000\...\Run: [DAEMON Tools Lite] - D:\Programme\DAEMON Tools Lite\DTLite.exe [3481408 2012-02-13] (DT Soft Ltd)
HKU\S-1-5-21-1195377982-609645131-459284087-1000\...\Run: [ICQ] - "D:\Programme\ICQ7.2\ICQ.exe" silent loginmode=4
HKU\S-1-5-21-1195377982-609645131-459284087-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-1195377982-609645131-459284087-1000\...\MountPoints2: {2c7f3246-7ca1-11e1-8046-001d925678f3} - G:\setup.exe
Startup: C:\Users\Alexander Ahrens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x7715FBDB4BBBCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: SwissAcademic.Citavi.Picker.IEPicker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [257608] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{F73F7802-4DF3-43D6-B628-E90ED725E694}: [NameServer]192.168.1.20
FireFox:
========
FF ProfilePath: C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default
FF Homepage: hxxp://www.spiegel.de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 - D:\Programme\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - D:\Programme\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npvsharetvplg.dll (vShare.tv )
FF SearchPlugin: C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: loadtbs - C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\Extensions\software@loadtubes.com [2012-03-05]
FF Extension: DownloadHelper - C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-10-03]
FF Extension: WEB.DE MailCheck - C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\Extensions\toolbar@web.de.xpi [2011-12-19]
FF Extension: Adblock Plus - C:\Users\Alexander Ahrens\AppData\Roaming\Mozilla\Firefox\Profiles\e6zf0ame.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-04-18]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-02-18]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-18]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-18]
FF HKLM\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2012-12-06]
========================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2014-02-18] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 ezGOSvc; C:\Windows\system32\ezGOSvc.dll [73600 2011-05-29] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe [235696 2014-01-16] (McAfee, Inc.)
==================== Drivers (Whitelisted) ====================
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [483200 2010-08-20] (ITETech )
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [281760 2010-11-25] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-21] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-21] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-11-27] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2012-02-15] (DT Soft Ltd)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2010-11-25] ()
R0 Si3531; C:\Windows\System32\DRIVERS\Si3531.sys [212520 2009-02-05] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\DRIVERS\SiWinAcc.sys [17064 2009-02-05] (Silicon Image, Inc.)
R0 SiRemFil; C:\Windows\System32\DRIVERS\SiRemFil.sys [12200 2009-02-05] (Silicon Image, Inc.)
R1 SSHDRV79; C:\Windows\system32\drivers\SSHDRV79.sys [75264 2011-11-29] ()
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-10-01] (Avira GmbH)
S3 cpuz134; \??\C:\Users\ALEXAN~1\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]
==================== NetSvcs (Whitelisted) ===================
NETSVC: ezGOSvc -> C:\Windows\system32\ezGOSvc.dll ()
==================== One Month Created Files and Folders ========
2014-02-19 12:43 - 2014-02-19 12:44 - 00000000 ____D () C:\FRST
2014-02-18 14:43 - 2014-02-18 14:43 - 00000736 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 14:43 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-18 14:38 - 2014-02-18 14:38 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-17 17:57 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-17 17:57 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-17 17:57 - 2014-02-06 11:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-17 17:57 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-17 17:57 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-17 17:57 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-17 17:57 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-17 17:57 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-17 17:57 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-17 17:57 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-17 17:57 - 2014-02-06 10:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-17 17:57 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-17 17:57 - 2014-02-06 10:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-17 17:57 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-17 17:57 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-17 17:57 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-17 17:57 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-17 17:57 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-17 17:57 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-17 17:57 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-17 17:57 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-17 17:48 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-17 12:52 - 2014-02-17 12:52 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-02-17 12:26 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-17 12:26 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-17 12:26 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-17 12:26 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-17 12:26 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-17 12:26 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-17 12:26 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-17 12:26 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-17 12:26 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-17 12:26 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-17 12:26 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-17 12:26 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-17 12:26 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-17 12:26 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-02 13:26 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-02 13:25 - 2014-02-02 13:25 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-02-02 13:25 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-02 13:25 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-02 13:25 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-21 22:30 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-21 22:30 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-21 22:30 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-21 22:30 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-21 22:30 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-21 22:30 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-21 22:30 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-21 22:30 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-21 22:30 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
==================== One Month Modified Files and Folders =======
2014-02-19 12:44 - 2014-02-19 12:43 - 00000000 ____D () C:\FRST
2014-02-19 12:29 - 2010-07-28 16:37 - 01235399 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 03:07 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-18 21:15 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-18 20:58 - 2009-07-14 05:34 - 00014976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-18 20:58 - 2009-07-14 05:34 - 00014976 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-18 20:56 - 2012-05-04 11:35 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-18 20:56 - 2010-08-14 11:18 - 00000000 ____D () C:\Users\Alexander Ahrens\AppData\Roaming\Skype
2014-02-18 20:50 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-18 20:50 - 2009-07-14 05:39 - 00147370 _____ () C:\Windows\setupact.log
2014-02-18 20:49 - 2010-07-28 18:25 - 00113180 _____ () C:\Windows\PFRO.log
2014-02-18 20:49 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\L2Schemas
2014-02-18 20:45 - 2011-11-26 16:47 - 00000000 ____D () C:\Program Files\vShare.tv plugin
2014-02-18 20:18 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-18 14:43 - 2014-02-18 14:43 - 00000736 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-18 14:38 - 2014-02-18 14:38 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-18 14:30 - 2010-07-28 16:54 - 01498742 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-17 17:53 - 2013-09-25 13:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-17 17:52 - 2010-08-07 22:35 - 85946576 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-17 12:52 - 2014-02-17 12:52 - 00000000 ____D () C:\Program Files\McAfee Security Scan
2014-02-17 12:52 - 2010-10-20 20:50 - 00002012 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2014-02-11 15:46 - 2011-09-20 20:19 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-02-06 11:38 - 2014-02-17 17:57 - 17103872 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 11:20 - 2014-02-17 17:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 11:19 - 2014-02-17 17:57 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 11:01 - 2014-02-17 17:57 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 11:00 - 2014-02-17 17:57 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-17 17:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 10:52 - 2014-02-17 17:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 10:52 - 2014-02-17 17:57 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 10:49 - 2014-02-17 17:57 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 10:47 - 2014-02-17 17:57 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 10:47 - 2014-02-17 17:57 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 10:46 - 2014-02-17 17:57 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 10:34 - 2014-02-17 17:57 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 10:25 - 2014-02-17 17:57 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 10:25 - 2014-02-17 17:57 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 10:13 - 2014-02-17 17:57 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:09 - 2014-02-17 17:57 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:03 - 2014-02-17 17:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 09:41 - 2014-02-17 17:57 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 09:36 - 2014-02-17 17:57 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:34 - 2014-02-17 17:57 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-02 13:26 - 2013-12-04 18:14 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-02 13:25 - 2014-02-02 13:25 - 00005315 _____ () C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-02-02 13:25 - 2013-12-04 18:13 - 00000000 ____D () C:\Program Files\Java
2014-01-22 09:28 - 2010-07-28 22:05 - 00070840 _____ () C:\Users\Alexander Ahrens\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-22 09:20 - 2009-07-14 05:33 - 00314488 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-22 03:06 - 2010-08-23 11:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
Some content of TEMP:
====================
C:\Users\Alexander Ahrens\AppData\Local\Temp\0a50e25a83046228c11dcaa7eeed09bb.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\abd2bca3e572e998a09f73c81b93454a.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\AskSLib.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\avgnt.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\chutil.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\CmdLineExt02.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\contentDATs.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\DevSetup32.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\DevSetup64.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\DivXSetup.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\DriverInstall32.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\DriverInstall64.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\drm_dyndata_7340014.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\drm_dyndata_7400009.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\DWPUpgradeInstaller.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\IcqUpdater.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\Nv3DVStreaming.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\nvStInst.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\ose00000.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\SecurityScan_Release.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\SIntf16.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\SIntf32.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\SIntfNT.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\sqlite3.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Alexander Ahrens\AppData\Local\Temp\ubi86D0.tmp.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\war3_Install.exe
C:\Users\Alexander Ahrens\AppData\Local\Temp\_is18FA.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-19 03:00
==================== End Of Log ============================ --- --- ---
Addition.txt: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-02-2014
Ran by Alexander Ahrens at 2014-02-19 12:44:53
Running from D:\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (Version: - Microsoft)
7-Zip 9.20 (Version: - )
Adobe Digital Editions 2.0 (Version: 2.0 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (Version: 10.1.82.76 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (Version: 11.0.06 - Adobe Systems Incorporated)
Age of Empires II - The Conquerors - 1.0e Patch FINAL (Version: 1.0e - tOrMeNtIuM/m0d)
Assassin's Creed II (Version: 1.01 - Ubisoft)
AutoHotkey 1.1.09.04 (Version: 1.1.09.04 - Lexikos)
Avira Free Antivirus (Version: 14.0.2.344 - Avira)
Big Pizza Ski Challenge 11 (HKCU Version: - )
Brother MFL-Pro Suite (Version: 1.00 - Brother Industries, Ltd.)
Citavi (Version: 3.3.0.0 - Swiss Academic Software)
Command & Conquer(TM) Generäle (Version: 0.50.0000 - Electronic Arts)
Command & Conquer(TM) Generäle (Version: 0.50.0000 - Electronic Arts) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (Version: 4.45.3.0297 - DT Soft Ltd)
Diablo II (Version: - )
Diablo III (Version: - Blizzard Entertainment)
DivX-Setup (Version: 2.6.1.90 - DivX, LLC)
Dota 2 (Version: - Valve )
Driving Speed 2.0 (Version: - WheelSpin Studios)
EasyBits GO (HKCU Version: - EasyBits Media)
ElsterFormular (Version: 13.2.0.8623k - Landesfinanzdirektion Thüringen)
Gothic II - Die Nacht des Raben (Version: - JoWooD Productions Software AG)
Gothic II (Version: - JoWooD Productions Software AG)
Gothic III (Version: 1.0.0 - JoWooD Productions Software AG)
Heroes Chronicles: Conquest of the Underworld (Version: - )
Heroes of Might and Magic® III (Version: - )
ImgBurn (Version: 2.5.7.0 - LIGHTNING UK!)
Jagged Alliance 2 (Version: - )
Jagged Alliance 2 Wildfire (Version: - )
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
League of Legends (Version: 3.0.1 - Riot Games )
League of Legends (Version: 3.0.1 - Riot Games ) Hidden
Magic: The Gathering — Duels of the Planeswalkers 2012 (Version: - )
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee Security Scan Plus (Version: 3.8.141.11 - McAfee, Inc.)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Age of Empires II (Version: - )
Microsoft Age of Empires II: The Conquerors Expansion (Version: - )
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (Version: 27.0.1 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA Display Control Panel (Version: 6.14.12.6776 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.46.235 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.11.0621 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.11.0621 (Version: 9.11.0621 - NVIDIA Corporation)
Oblivion - Horse Armor Pack (Version: 1.00.0000 - Bethesda Softworks)
Oblivion - Knights of the Nine (Version: 1.00.0000 - Bethesda Softworks)
Oblivion - Mehrunes Razor (Version: 1.00.0000 - Bethesda Softworks)
Oblivion - Orrery (Version: 1.00.0000 - Bethesda Softworks)
Oblivion - Wizard's Tower (Version: 1.00.0000 - Bethesda Softworks)
Oblivion (Version: 1.00.0000 - Bethesda Softworks)
Pando Media Booster (Version: 2.6.0.7 - Pando Networks Inc.)
PC Inspector File Recovery (Version: 4.0 - )
Questpaket 4 Update 2 Deinstallation (Version: 4.2.0.0 - Humanforce)
Realtek High Definition Audio Driver (Version: 6.0.1.6151 - Realtek Semiconductor Corp.)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02 (Version: 3.52.02 - )
Risen (Version: 1.00.0000 - Deep Silver)
Rungs "Verbesserte Magiergilde" 2.3a (Version: 2.3a - Rung)
Skype Click to Call (Version: 5.9.9216 - Skype Technologies S.A.)
Skype™ 6.11 (Version: 6.11.102 - Skype Technologies S.A.)
SpeechRedist (Version: 1.0.0 - Epic Games Inc.)
Steam (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (Version: 3.0.13 - TeamSpeak Systems GmbH)
TeamViewer 7 (Version: 7.0.12299 - TeamViewer)
Ubisoft Game Launcher (Version: 1.0.0.0 - UBISOFT)
uMedia uTV (Version: 1.00.000 - uMedia)
Unreal Tournament 2004 (Version: - )
Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft)
VarusBiker Edition (Version: 1.3b - VarusBiker)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Veetle TV 0.9.18 (Version: 0.9.18 - Veetle, Inc)
Velaya - Geschichte einer Kriegerin (Version: 1.1 - Schreiberling und Sektenspinner)
Velaya Sprachausgabe 1.00 (Version: - Schreiberling und Sektenspinner)
VLC media player 1.1.10 (Version: 1.1.10 - VideoLAN)
vShare.tv plugin 1.3 (Version: 1.3 - vShare.tv, Inc.) <==== ATTENTION
Warcraft III (Version: - )
Warcraft III: All Products (HKCU Version: - )
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
WinRAR (Version: - )
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {4C73B547-C281-436A-B29E-5FB6FD6B85DA} - System32\Tasks\{C64DD3E9-3203-48A8-8EE8-9E97B4E3AF4A} => C:\Program Files\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
==================== Loaded Modules (whitelisted) =============
2013-11-15 01:48 - 2013-11-15 01:48 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe
2013-11-15 01:49 - 2013-11-15 01:49 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2014-02-18 14:38 - 2014-02-18 14:38 - 03578992 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2012-12-06 12:41 - 2012-12-06 12:41 - 00122880 _____ () C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox\components\CitaviPickerCommunication.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/18/2014 08:53:07 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/18/2014 00:28:39 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/17/2014 00:18:27 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (02/11/2014 03:46:24 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall
Error: (01/07/2014 00:46:58 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Name des fehlerhaften Moduls: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00377e84
ID des fehlerhaften Prozesses: 0x106c
Startzeit der fehlerhaften Anwendung: 0xja2.exe0
Pfad der fehlerhaften Anwendung: ja2.exe1
Pfad des fehlerhaften Moduls: ja2.exe2
Berichtskennung: ja2.exe3
Error: (01/05/2014 04:06:19 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Name des fehlerhaften Moduls: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Ausnahmecode: 0xc000000d
Fehleroffset: 0x003d06da
ID des fehlerhaften Prozesses: 0x157c
Startzeit der fehlerhaften Anwendung: 0xja2.exe0
Pfad der fehlerhaften Anwendung: ja2.exe1
Pfad des fehlerhaften Moduls: ja2.exe2
Berichtskennung: ja2.exe3
Error: (01/05/2014 00:34:58 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Name des fehlerhaften Moduls: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00377e84
ID des fehlerhaften Prozesses: 0x162c
Startzeit der fehlerhaften Anwendung: 0xja2.exe0
Pfad der fehlerhaften Anwendung: ja2.exe1
Pfad des fehlerhaften Moduls: ja2.exe2
Berichtskennung: ja2.exe3
Error: (01/05/2014 00:29:45 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Name des fehlerhaften Moduls: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00377e84
ID des fehlerhaften Prozesses: 0x15a4
Startzeit der fehlerhaften Anwendung: 0xja2.exe0
Pfad der fehlerhaften Anwendung: ja2.exe1
Pfad des fehlerhaften Moduls: ja2.exe2
Berichtskennung: ja2.exe3
Error: (01/04/2014 07:18:25 PM) (Source: Application Hang) (User: )
Description: Programm ja2.exe, Version 1.0.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1728
Startzeit: 01cf0977a46e747c
Endzeit: 39
Anwendungspfad: D:\Spiele\JA 2\ja2.exe
Berichts-ID:
Error: (01/04/2014 07:06:05 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Name des fehlerhaften Moduls: ja2.exe, Version: 1.0.0.1, Zeitstempel: 0x4efad411
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00377e84
ID des fehlerhaften Prozesses: 0x133c
Startzeit der fehlerhaften Anwendung: 0xja2.exe0
Pfad der fehlerhaften Anwendung: ja2.exe1
Pfad des fehlerhaften Moduls: ja2.exe2
Berichtskennung: ja2.exe3
System errors:
=============
Error: (02/19/2014 09:05:13 AM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (02/18/2014 02:20:30 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{51C523DF-2A39-4EEE-9812-605228D47DD4}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.
Error: (02/18/2014 00:28:29 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Microsoft .NET Framework NGEN v4.0.30319_X86 erreicht.
Error: (02/18/2014 00:27:32 PM) (Source: DCOM) (User: )
Description: 1053WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (02/18/2014 00:27:32 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/18/2014 00:27:32 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht.
Error: (02/17/2014 00:47:57 PM) (Source: BROWSER) (User: )
Description: Das Einlesen der Sicherungsliste durch den Suchdienst schlug auf Transport "\Device\NetBT_Tcpip_{51C523DF-2A39-4EEE-9812-605228D47DD4}" zu oft fehl.
Der Sicherungssuchdienst wird beendet.
Error: (02/11/2014 10:15:50 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (02/11/2014 10:15:50 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (01/21/2014 10:21:54 PM) (Source: volsnap) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 38%
Total physical RAM: 3070.15 MB
Available physical RAM: 1902.65 MB
Total Pagefile: 6138.59 MB
Available Pagefile: 4649.54 MB
Total Virtual: 2047.88 MB
Available Virtual: 1895.88 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:49.9 GB) (Free:13.31 GB) NTFS
Drive d: () (Fixed) (Total:177.02 GB) (Free:17.56 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 75D6D299)
Partition 1: (Not Active) - (Size=6 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=177 GB) - (Type=07 NTFS)
==================== End Of Log ============================ |