Alexander77 | 12.11.2013 14:11 | FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2013 01
Ran by Alexander (administrator) on ALEXANDER-PC on 12-11-2013 13:55:44
Running from C:\Users\Alexander\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(SANDBOXIE L.T.D) E:\Programme\Sandboxie\SbieSvc.exe
(AVAST Software) E:\Programme\Avast\AvastSvc.exe
(SANDBOXIE L.T.D) E:\Programme\Sandboxie\SbieCtrl.exe
(Dropbox, Inc.) C:\Users\Alexander\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(AVAST Software) E:\Programme\Avast\AvastUI.exe
(Apple Inc.) E:\Programme\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\HelperService.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(pdfforge GbR) C:\Program Files (x86)\PDF Architect\ConversionService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKCU\...\Run: [ASRockXTU] - [x]
HKCU\...\Run: [SandboxieControl] - E:\Programme\Sandboxie\SbieCtrl.exe [765200 2012-12-16] (SANDBOXIE L.T.D)
HKCU\...\Run: [LiveSupport] - "C:\Program Files (x86)\LiveSupport\LiveSupport.exe" /noshow /log
MountPoints2: F - F:\setup.exe
MountPoints2: {36f85145-2ff0-11e2-874c-bc5ff45a7436} - F:\setup.exe
MountPoints2: {f159a2da-2b69-11e2-af36-bc5ff45a7436} - F:\setup.exe
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-21] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avast] - E:\Programme\Avast\AvastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - E:\Programme\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642808 2012-12-19] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [BrStsMon00] - C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
AppInit_DLLs: [0 ] ()
Startup: C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Alexander\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3E279A7CE924CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587&type=default&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587&type=default&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587&type=default&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587&type=default&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.dosearches.com/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=sc&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587&type=default&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.dosearches.com/web/?utm_source=b&utm_medium=cor&utm_campaign=rg&utm_content=ds&from=cor&uid=SAMSUNGXSSDX830XSeries_S0Z3NSAC819197&ts=1384201587&type=default&q={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - E:\Programme\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Programme\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - E:\Programme\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Programme\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GbR)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.17.1
FireFox:
========
FF ProfilePath: C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default
FF user.js: detected! => C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\user.js
FF Homepage: https://www.google.de/
FF NetworkProxy: "backup.ftp", "178.33.105.59"
FF NetworkProxy: "backup.ftp_port", 3128
FF NetworkProxy: "backup.socks", "178.33.105.59"
FF NetworkProxy: "backup.socks_port", 3128
FF NetworkProxy: "backup.ssl", "178.33.105.59"
FF NetworkProxy: "backup.ssl_port", 3128
FF NetworkProxy: "ftp", "87.98.216.22"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "www-proxy.t-online.de"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "no_proxies_on", "localhost, 127.0.0.1, stealthy.co"
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "87.98.216.22"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "87.98.216.22"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.17.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - E:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @phonostar.de/phonostar-Player - E:\Programme\Phonostar\phonostar-Player\npphonostarDetectNP.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - E:\Spiele\Uplay\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: GreenWebPlayer - C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\Extensions\greenwebplayer@greentube.com
FF Extension: FireShot - C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}
FF Extension: info - C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\Extensions\info@maltegoetz.de.xpi
FF Extension: stealthyextension - C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\Extensions\stealthyextension@gmail.com.xpi
FF Extension: prefs - C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
FF Extension: Adblock Plus - C:\Users\Alexander\AppData\Roaming\Mozilla\Firefox\Profiles\ogdmoh11.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - E:\Programme\Avast\WebRep\FF
FF Extension: avast! Online Security - E:\Programme\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U17) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (iTunes Application Detector) - E:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Uplay PC) - E:\Spiele\Uplay\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
CHR Extension: (Google Docs) - C:\Users\ALEXAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\ALEXAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\ALEXAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\ALEXAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\ALEXAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\ALEXAN~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 avast! Antivirus; E:\Programme\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-08-31] ()
R2 SbieSvc; E:\Programme\Sandboxie\SbieSvc.exe [123664 2012-12-16] (SANDBOXIE L.T.D)
==================== Drivers (Whitelisted) ====================
R0 AsrRamDisk; C:\Windows\System32\DRIVERS\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2012-12-29] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2012-12-29] ()
R3 SbieDrv; E:\Programme\Sandboxie\SbieDrv.sys [202632 2012-12-16] (SANDBOXIE L.T.D)
R3 AxtuDrv; \??\C:\Windows\SysWOW64\Drivers\AxtuDrv.sys [x]
S3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-12 13:55 - 2013-11-12 13:55 - 00000000 ____D C:\FRST
2013-11-12 13:54 - 2013-11-12 13:55 - 01957590 _____ (Farbar) C:\Users\Alexander\Desktop\FRST64.exe
2013-11-12 13:34 - 2013-11-12 13:34 - 00003042 _____ C:\Windows\System32\Tasks\asrRd
2013-11-11 21:32 - 2013-11-11 21:50 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\Skype
2013-11-11 21:32 - 2013-11-11 21:32 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-11-11 21:32 - 2013-11-11 21:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-11 21:32 - 2013-11-11 21:32 - 00000000 ____D C:\ProgramData\Skype
2013-11-11 21:26 - 2013-11-11 21:30 - 00000000 ____D C:\ProgramData\eSafe
2013-11-11 21:24 - 2013-11-12 00:27 - 00000306 _____ C:\Windows\Tasks\UpdaterEX.job
2013-11-11 21:24 - 2013-11-12 00:24 - 00000302 _____ C:\Windows\Tasks\FoxTab.job
2013-11-11 21:24 - 2013-11-11 21:26 - 20586496 _____ C:\Users\Alexander\Downloads\SkypeSetup [1].exe
2013-11-11 21:24 - 2013-11-11 21:26 - 00003262 _____ C:\Windows\System32\Tasks\UpdaterEX
2013-11-11 21:24 - 2013-11-11 21:24 - 00003258 _____ C:\Windows\System32\Tasks\FoxTab
2013-11-11 21:24 - 2013-11-11 21:24 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\UpdaterEX
2013-11-11 21:24 - 2013-11-11 21:24 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\FoxTab
2013-11-06 16:51 - 2013-11-06 16:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 21:45 - 2013-10-31 21:45 - 00080929 _____ C:\Users\Alexander\AppData\Local\recently-used.xbel
2013-10-21 16:00 - 2013-10-21 16:09 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-15 20:53 - 2013-10-15 21:00 - 00000000 ____D C:\Users\Alexander\AppData\Local\WebPlayer
==================== One Month Modified Files and Folders =======
2013-11-12 13:55 - 2013-11-12 13:55 - 00000000 ____D C:\FRST
2013-11-12 13:55 - 2013-11-12 13:54 - 01957590 _____ (Farbar) C:\Users\Alexander\Desktop\FRST64.exe
2013-11-12 13:41 - 2009-07-14 05:45 - 00017728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-12 13:41 - 2009-07-14 05:45 - 00017728 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-12 13:39 - 2012-10-16 14:44 - 01902795 _____ C:\Windows\WindowsUpdate.log
2013-11-12 13:39 - 2009-07-14 18:58 - 00698964 _____ C:\Windows\system32\perfh007.dat
2013-11-12 13:39 - 2009-07-14 18:58 - 00149104 _____ C:\Windows\system32\perfc007.dat
2013-11-12 13:39 - 2009-07-14 06:13 - 01618760 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-12 13:34 - 2013-11-12 13:34 - 00003042 _____ C:\Windows\System32\Tasks\asrRd
2013-11-12 13:34 - 2013-06-25 14:04 - 00000000 ___RD C:\Users\Alexander\Dropbox
2013-11-12 13:34 - 2013-06-25 14:02 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\Dropbox
2013-11-12 13:34 - 2013-04-20 19:16 - 00001510 _____ C:\Windows\Sandboxie.ini
2013-11-12 13:34 - 2012-11-21 16:01 - 00002976 _____ C:\Windows\System32\Tasks\AsrXTU
2013-11-12 13:33 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-12 13:33 - 2009-07-14 05:51 - 00078590 _____ C:\Windows\setupact.log
2013-11-12 00:27 - 2013-11-11 21:24 - 00000306 _____ C:\Windows\Tasks\UpdaterEX.job
2013-11-12 00:24 - 2013-11-11 21:24 - 00000302 _____ C:\Windows\Tasks\FoxTab.job
2013-11-12 00:05 - 2012-10-16 18:42 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-11 22:04 - 2012-10-16 15:47 - 00025400 _____ C:\Windows\PFRO.log
2013-11-11 21:50 - 2013-11-11 21:32 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\Skype
2013-11-11 21:32 - 2013-11-11 21:32 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-11-11 21:32 - 2013-11-11 21:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-11 21:32 - 2013-11-11 21:32 - 00000000 ____D C:\ProgramData\Skype
2013-11-11 21:31 - 2012-10-16 20:29 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-11 21:31 - 2012-10-16 14:45 - 00001425 _____ C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-11 21:30 - 2013-11-11 21:26 - 00000000 ____D C:\ProgramData\eSafe
2013-11-11 21:26 - 2013-11-11 21:24 - 20586496 _____ C:\Users\Alexander\Downloads\SkypeSetup [1].exe
2013-11-11 21:26 - 2013-11-11 21:24 - 00003262 _____ C:\Windows\System32\Tasks\UpdaterEX
2013-11-11 21:24 - 2013-11-11 21:24 - 00003258 _____ C:\Windows\System32\Tasks\FoxTab
2013-11-11 21:24 - 2013-11-11 21:24 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\UpdaterEX
2013-11-11 21:24 - 2013-11-11 21:24 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\FoxTab
2013-11-11 15:20 - 2013-09-26 16:59 - 00000000 ____D C:\Users\Alexander\Documents\FIFA 14
2013-11-11 14:42 - 2012-10-16 15:29 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-09 17:38 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-08 09:43 - 2012-11-02 18:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-06 20:57 - 2013-04-11 16:47 - 00000333 _____ C:\Windows\BRCALIB.INI
2013-11-06 19:41 - 2012-12-13 21:47 - 00043008 ____H C:\Users\Alexander\Desktop\photothumb.db
2013-11-06 16:51 - 2013-11-06 16:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-03 12:12 - 2013-06-25 14:03 - 00000000 ____D C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-11-03 12:12 - 2012-10-16 14:44 - 00000000 ___RD C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-31 21:46 - 2012-11-03 10:04 - 00000000 ____D C:\Users\Alexander\.gimp-2.8
2013-10-31 21:45 - 2013-10-31 21:45 - 00080929 _____ C:\Users\Alexander\AppData\Local\recently-used.xbel
2013-10-21 16:09 - 2013-10-21 16:00 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-21 16:01 - 2012-10-16 20:31 - 00000000 ____D C:\Users\Alexander\AppData\Local\Google
2013-10-21 16:00 - 2012-10-16 20:32 - 00000000 ____D C:\Users\Alexander\AppData\Local\Adobe
2013-10-21 15:59 - 2012-10-16 18:42 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-21 15:59 - 2012-10-16 18:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-21 15:59 - 2012-10-16 18:42 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-18 19:04 - 2013-06-26 18:34 - 00000000 ____D C:\Users\Alexander\Desktop\Originals
2013-10-18 17:53 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-15 21:00 - 2013-10-15 20:53 - 00000000 ____D C:\Users\Alexander\AppData\Local\WebPlayer
2013-10-15 20:53 - 2012-10-16 14:44 - 00000000 ____D C:\Users\Alexander
Some content of TEMP:
====================
C:\Users\Alexander\AppData\Local\Temp\33143uninstall.exe
C:\Users\Alexander\AppData\Local\Temp\7z920.exe
C:\Users\Alexander\AppData\Local\Temp\AskSLib.dll
C:\Users\Alexander\AppData\Local\Temp\AutoRun.exe
C:\Users\Alexander\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Alexander\AppData\Local\Temp\CmdLineExt01.dll
C:\Users\Alexander\AppData\Local\Temp\firefoxjre_exe-1.exe
C:\Users\Alexander\AppData\Local\Temp\firefoxjre_exe.exe
C:\Users\Alexander\AppData\Local\Temp\iv_uninstall.exe
C:\Users\Alexander\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\Alexander\AppData\Local\Temp\LiveSupport_setup.exe
C:\Users\Alexander\AppData\Local\Temp\LiveSupport_update.exe
C:\Users\Alexander\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Alexander\AppData\Local\Temp\sfextra.dll
C:\Users\Alexander\AppData\Local\Temp\sonarinst.exe
C:\Users\Alexander\AppData\Local\Temp\Sqlite3.dll
C:\Users\Alexander\AppData\Local\Temp\tmp76C4.exe
C:\Users\Alexander\AppData\Local\Temp\tmpC051.exe
C:\Users\Alexander\AppData\Local\Temp\tmpDB74.exe
C:\Users\Alexander\AppData\Local\Temp\ubiAC57.tmp.exe
C:\Users\Alexander\AppData\Local\Temp\_isAC49.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-10 11:37
==================== End Of Log ============================ --- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-11-2013 01
Ran by Alexander at 2013-11-12 13:56:09
Running from C:\Users\Alexander\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe AIR (x32 Version: 3.7.0.2090)
Adobe Community Help (x32 Version: 3.0.0)
Adobe Community Help (x32 Version: 3.0.0.400)
Adobe Download Assistant (x32 Version: 1.2.5)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Media Player (x32 Version: 1.8)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
Anno 1404 (x32 Version: 1.00.0000)
ANNO 1404 (x32 Version: 1.02.0000)
Apple Application Support (x32 Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (x32 Version: 2.1.3.127)
ASRock eXtreme Tuner v0.1.191 (x32)
ASRock XFast RAM v2.0.9
avast! Free Antivirus (x32 Version: 8.0.1497.0)
Battlefield 1942™ (x32 Version: 1.6.20.0)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
Burnout Paradise: The Ultimate Box (x32)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.1219.1521.27485)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.1219.1521.27485)
Catalyst Control Center InstallProxy (x32 Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (x32 Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (x32 Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (x32 Version: 2012.1219.1520.27485)
CCC Help Czech (x32 Version: 2012.1219.1520.27485)
CCC Help Danish (x32 Version: 2012.1219.1520.27485)
CCC Help Dutch (x32 Version: 2012.1219.1520.27485)
CCC Help English (x32 Version: 2012.1219.1520.27485)
CCC Help Finnish (x32 Version: 2012.1219.1520.27485)
CCC Help French (x32 Version: 2012.1219.1520.27485)
CCC Help German (x32 Version: 2012.1219.1520.27485)
CCC Help Greek (x32 Version: 2012.1219.1520.27485)
CCC Help Hungarian (x32 Version: 2012.1219.1520.27485)
CCC Help Italian (x32 Version: 2012.1219.1520.27485)
CCC Help Japanese (x32 Version: 2012.1219.1520.27485)
CCC Help Korean (x32 Version: 2012.1219.1520.27485)
CCC Help Norwegian (x32 Version: 2012.1219.1520.27485)
CCC Help Polish (x32 Version: 2012.1219.1520.27485)
CCC Help Portuguese (x32 Version: 2012.1219.1520.27485)
CCC Help Russian (x32 Version: 2012.1219.1520.27485)
CCC Help Spanish (x32 Version: 2012.1219.1520.27485)
CCC Help Swedish (x32 Version: 2012.1219.1520.27485)
CCC Help Thai (x32 Version: 2012.1219.1520.27485)
CCC Help Turkish (x32 Version: 2012.1219.1520.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
Command and Conquer: Red Alert 3 - Uprising (x32)
Crysis 2 Maximum Edition (x32)
Dead Space (x32)
Dev-C++ 5 beta 9 release (4.9.9.2) (x32)
Dropbox (HKCU Version: 2.4.6)
ESN Sonar (x32 Version: 0.70.4)
Extended Update (HKCU)
F1 2011 (x32 Version: 1.0.0002.129)
F1 2012 (x32)
FIFA 13 (x32 Version: 1.0.0.0)
FIFA 14 (x32 Version: 1.0.0.3)
FIFA 14 Demo (x32 Version: 1.0.0.0)
FUSSBALL MANAGER 13 (x32 Version: 1.0.3.0)
GIMP 2.8.4 (Version: 2.8.4)
Hitman: Absolution (x32)
HL-4140CN (x32 Version: 1.0.6.0)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.5.235)
iTunes (Version: 11.0.1.12)
Java 7 Update 17 (64-bit) (Version: 7.0.170)
Java 7 Update 17 (x32 Version: 7.0.170)
Java Auto Updater (x32 Version: 2.1.9.0)
Java SE Development Kit 7 Update 7 (64-bit) (Version: 1.7.0.70)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Medal of Honor(TM) Multiplayer (x32)
Medal of Honor(TM) Single Player (x32)
Metro 2033 (x32)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Mirror's Edge (x32)
Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0)
Mozilla Maintenance Service (x32 Version: 25.0)
MSI Afterburner 2.2.5 (x32 Version: 2.2.5)
Need for Speed™ Most Wanted (x32)
NVIDIA PhysX (x32 Version: 9.10.0222)
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
Origin (x32 Version: 9.0.10.69)
Paint.NET v3.5.10 (Version: 3.60.0)
PDF Architect (x32 Version: 1.0.52.8917)
PDF Settings CS5 (x32 Version: 10.0)
PDFCreator (x32 Version: 1.6.2)
PhotoScape (x32)
PunkBuster Services (x32 Version: 0.991)
Realtek Ethernet Controller Driver (x32 Version: 7.48.823.2011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6690)
RollerCoaster Tycoon 2 (x32)
Sandboxie 3.76 (64-bit) (Version: 3.76)
Skype™ 6.10 (x32 Version: 6.10.104)
Sleeping Dogs™ (x32)
Steam (x32 Version: 1.0.0.0)
TL-WN822N/TL-WN821N Driver (x32 Version: 1.0.0)
TP-LINK Wireless Configuration Utility (x32 Version: 1.0.0)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Uplay (x32 Version: 2.0)
Visual C++ 9.0 CRT (x86) WinSXS MSM (x32 Version: 9.0)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
==================== Restore Points =========================
18-10-2013 11:46:53 Windows Update
22-10-2013 13:44:17 Windows Update
29-10-2013 14:16:06 Windows Update
05-11-2013 14:55:37 Windows Update
12-11-2013 12:38:32 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {40358E5D-F9BD-420E-881B-7BBC8D82AC9A} - System32\Tasks\avast! Emergency Update => E:\Programme\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: {5664C7F9-5E5F-449C-B7A5-35643F4FF552} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-21] (Adobe Systems Incorporated)
Task: {6646C0D4-F05C-4506-99EC-1FE71797621C} - System32\Tasks\AsrXTU => C:\Program Files (x86)\ASRock Utility\AXTU\Bin\AsrXTU.exe [2012-03-12] ()
Task: {85BC9EF6-5A64-452B-9004-EEFFDFF84FCA} - System32\Tasks\asrRd => C:\Program Files\ASRock Utility\XFast RAM\asrRd.exe [2012-01-13] ()
Task: {8AE104AC-C557-417D-8E86-3D638DA1912B} - System32\Tasks\UpdaterEX => C:\Users\Alexander\AppData\Roaming\UpdaterEX\UpdateProc\UpdateTask.exe [2013-04-12] ()
Task: {955E6566-D23C-4E24-9553-358F700EE4B9} - System32\Tasks\FoxTab => C:\Users\ALEXAN~1\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE
Task: {EFEA6738-E60A-460B-AEE0-D3F9AC550A6F} - System32\Tasks\AdobeAAMUpdater-1.0-Alexander-PC-Alexander => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FoxTab.job => C:\Users\ALEXAN~1\AppData\Roaming\FoxTab\UPDATE~1\UPDATE~1.EXE
Task: C:\Windows\Tasks\UpdaterEX.job => C:\Users\ALEXAN~1\AppData\Roaming\UPDATE~1\UPDATE~1\UPDATE~1.EXE
==================== Loaded Modules (whitelisted) =============
2013-11-12 13:34 - 2013-11-12 08:36 - 02233344 _____ () E:\Programme\Avast\defs\13111200\algo.dll
2013-08-23 20:01 - 2013-08-23 20:01 - 25100288 _____ () C:\Users\Alexander\AppData\Roaming\Dropbox\bin\libcef.dll
2012-08-10 16:51 - 2012-08-10 16:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-11-17 20:08 - 2012-02-24 10:53 - 00094208 _____ () C:\Program Files (x86)\ASRock Utility\AXTU\Bin\IccLibDll.DLL
2013-04-11 16:45 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2013-11-06 16:51 - 2013-11-06 16:51 - 03368048 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-10-09 10:06 - 2013-10-09 10:06 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:373E1720
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/12/2013 01:34:06 PM) (Source: ESENT) (User: )
Description: taskhost (1896) Versuch, Datei "C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/11/2013 09:32:34 PM) (Source: MsiInstaller) (User: Alexander-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/11/2013 09:32:33 PM) (Source: MsiInstaller) (User: Alexander-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/11/2013 09:32:33 PM) (Source: MsiInstaller) (User: Alexander-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/11/2013 09:18:36 PM) (Source: ESENT) (User: )
Description: taskhost (1872) Versuch, Datei "C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/10/2013 07:22:35 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 25.0.0.5046, Zeitstempel: 0x526b1daa
Name des fehlerhaften Moduls: mozalloc.dll, Version: 25.0.0.5046, Zeitstempel: 0x526af0bc
Ausnahmecode: 0x80000003
Fehleroffset: 0x0000119c
ID des fehlerhaften Prozesses: 0x4c0
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Error: (11/10/2013 07:22:35 PM) (Source: Application Hang) (User: )
Description: Programm firefox.exe, Version 25.0.0.5046 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 102c
Startzeit: 01ceddf69e8dbd0b
Endzeit: 34
Anwendungspfad: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Berichts-ID: 10503fe8-4a35-11e3-838c-bc5ff45a7436
Error: (11/10/2013 10:24:23 AM) (Source: ESENT) (User: )
Description: taskhost (1924) WebCacheLocal: Versuch, Datei "C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/10/2013 10:24:13 AM) (Source: ESENT) (User: )
Description: taskhost (1924) WebCacheLocal: Versuch, Datei "C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\V01.log" für den Lese-/Schreibzugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
Error: (11/09/2013 05:38:38 PM) (Source: ESENT) (User: )
Description: taskhost (1972) Versuch, Datei "C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.
System errors:
=============
Error: (10/13/2013 11:32:48 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (10/13/2013 11:32:48 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (10/09/2013 06:05:26 PM) (Source: volmgr) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Error: (10/09/2013 02:24:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (10/09/2013 02:24:02 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/31/2013 01:39:49 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 31.08.2013 um 14:33:10 unerwartet heruntergefahren.
Error: (08/30/2013 03:09:54 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/30/2013 03:09:54 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Error: (08/17/2013 08:01:50 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Steam Client Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (08/17/2013 08:01:50 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Steam Client Service erreicht.
Microsoft Office Sessions:
=========================
Error: (11/12/2013 01:34:06 PM) (Source: ESENT)(User: )
Description: taskhost1896C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Error: (11/11/2013 09:32:34 PM) (Source: MsiInstaller)(User: Alexander-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/11/2013 09:32:33 PM) (Source: MsiInstaller)(User: Alexander-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/11/2013 09:32:33 PM) (Source: MsiInstaller)(User: Alexander-PC)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/11/2013 09:18:36 PM) (Source: ESENT)(User: )
Description: taskhost1872C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Error: (11/10/2013 07:22:35 PM) (Source: Application Error)(User: )
Description: plugin-container.exe25.0.0.5046526b1daamozalloc.dll25.0.0.5046526af0bc800000030000119c4c001cede29379c9823C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll11aaa4b8-4a35-11e3-838c-bc5ff45a7436
Error: (11/10/2013 07:22:35 PM) (Source: Application Hang)(User: )
Description: firefox.exe25.0.0.5046102c01ceddf69e8dbd0b34C:\Program Files (x86)\Mozilla Firefox\firefox.exe10503fe8-4a35-11e3-838c-bc5ff45a7436
Error: (11/10/2013 10:24:23 AM) (Source: ESENT)(User: )
Description: taskhost1924WebCacheLocal: C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\V01.log-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Error: (11/10/2013 10:24:13 AM) (Source: ESENT)(User: )
Description: taskhost1924WebCacheLocal: C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\V01.log-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
Error: (11/09/2013 05:38:38 PM) (Source: ESENT)(User: )
Description: taskhost1972C:\Users\Alexander\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.
==================== Memory info ===========================
Percentage of memory in use: 29%
Total physical RAM: 8140.64 MB
Available physical RAM: 5759.46 MB
Total Pagefile: 16279.47 MB
Available Pagefile: 13661.97 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:48.23 GB) NTFS
Drive e: (Festplatte) (Fixed) (Total:931.51 GB) (Free:657.41 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 889291D7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 1B753092)
Partition 1: (Not Active) - (Size=932 GB) - (Type=07 NTFS)
==================== End Of Log ============================ Danke! |