Martinek | 06.01.2014 16:34 | OK hier sind die Textdateien.
Im Übrigen hat McAfee nix gefunden :/
FRST - Editor.txt
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-01-2014
Ran by *** (administrator) on THESEUS on 06-01-2014 16:23:35
Running from C:\Users\***\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Saitek) C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(McAfee, Inc.) C:\Program Files\McAfee Online Backup\MOBKstat.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\McUICnt.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(McAfee, Inc.) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
(McAfee, Inc.) C:\Program Files\McAfee Online Backup\MOBKbackup.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\Core\mchost.exe
(Mozilla Corporation) C:\Program Files\Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Firefox\plugin-container.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [343168 2011-10-25] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [718688 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [ProfilerU] - C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [227840 2010-07-07] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [123392 2010-07-07] (Saitek)
HKLM\...\Run: [mcui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [516912 2013-09-24] (McAfee, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [mcpltui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [516912 2013-09-24] (McAfee, Inc.)
HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [NextLive] - C:\Windows\system32\rundll32.exe "C:\Users\***\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
Startup: C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=irmsd1202&cd=2XzuyEtN2Y1L1QzutDyCtByEtB0B0E0DyD0A0Fzz0FyDzytAtN0D0Tzu0SyBtCzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=155161195&ir=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x92A35CFEC0F0CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=irmsd1202&cd=2XzuyEtN2Y1L1QzutDyCtByEtB0B0E0DyD0A0Fzz0FyDzytAtN0D0Tzu0SyBtCzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=155161195&ir=
SearchScopes: HKLM - DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1202&cd=2XzuyEtN2Y1L1QzutDyCtByEtB0B0E0DyD0A0Fzz0FyDzytAtN0D0Tzu0SyBtCzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=155161195&ir=
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1202&cd=2XzuyEtN2Y1L1QzutDyCtByEtB0B0E0DyD0A0Fzz0FyDzytAtN0D0Tzu0SyBtCzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=155161195&ir=
SearchScopes: HKCU - DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1202&cd=2XzuyEtN2Y1L1QzutDyCtByEtB0B0E0DyD0A0Fzz0FyDzytAtN0D0Tzu0SyBtCzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=155161195&ir=
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1202&cd=2XzuyEtN2Y1L1QzutDyCtByEtB0B0E0DyD0A0Fzz0FyDzytAtN0D0Tzu0SyBtCzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=155161195&ir=
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: mysearchdial Helper Object - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files\Mysearchdial\1.8.21.0\bh\mysearchdial.dll (Ironsource Israel (2011) LTD)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - mysearchdial Toolbar - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files\Mysearchdial\1.8.21.0\mysearchdialTlbr.dll (Ironsource Israel (2011) LTD)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\bjdczq3s.default-1371331233517
FF user.js: detected! => C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\bjdczq3s.default-1371331233517\user.js
FF Homepage: www.t-online.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.21.2 - C:\Windows\system32\npdeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @mcafee.com/SAFFPlugin - C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\***\AppData\Roaming\Mozilla\Firefox\Profiles\bjdczq3s.default-1371331233517\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK
========================== Services (Whitelisted) =================
R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [167784 2012-08-31] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [145088 2013-09-24] (McAfee, Inc.)
S3 McAWFwk; C:\Program Files\Common Files\Mcafee\ActWiz\McAWFwk.exe [287728 2013-04-09] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [471592 2013-08-02] (McAfee, Inc.)
S4 McOobeSv2; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [638976 2013-09-20] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169320 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [172416 2013-11-04] (McAfee, Inc.)
R2 MOBKbackup; C:\Program Files\McAfee Online Backup\MOBKbackup.exe [229688 2010-04-13] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1020976 2013-08-01] (Sony Corporation)
S2 Update BrowseSmart; "C:\Program Files\BrowseSmart\updateBrowseSmart.exe" [x]
S2 Util BrowseSmart; "C:\Program Files\BrowseSmart\bin\utilBrowseSmart.exe" [x]
==================== Drivers (Whitelisted) ====================
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [60920 2013-11-04] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [147912 2013-09-23] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [133992 2013-11-04] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [236000 2013-11-04] (McAfee, Inc.)
S3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [65928 2013-11-04] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [365416 2013-11-04] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [572528 2013-11-04] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [301248 2013-09-20] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [80656 2013-09-20] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [213392 2013-11-04] (McAfee, Inc.)
R1 MOBKFilter; C:\Windows\System32\DRIVERS\MOBK.sys [54776 2010-04-13] (Mozy, Inc.)
S3 SaiK0836; C:\Windows\System32\DRIVERS\SaiK0836.sys [139272 2010-07-08] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [20744 2010-07-08] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [43656 2010-07-08] (Saitek)
R1 SSHDRV76; C:\Windows\system32\drivers\SSHDRV76.sys [53760 2012-06-14] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\MARTIN~1\AppData\Local\Temp\catchme.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-06 16:23 - 2014-01-06 16:24 - 00013878 _____ C:\Users\***\Desktop\FRST.txt
2014-01-06 16:22 - 2014-01-06 16:22 - 00000000 ____D C:\FRST
2014-01-06 16:20 - 2014-01-06 16:20 - 01064805 _____ (Farbar) C:\Users\***\Desktop\FRST.exe
2014-01-05 23:04 - 2014-01-05 23:11 - 00008657 _____ C:\Users\***\Desktop\Wasserwerte.xlsx
2013-12-26 22:06 - 2013-12-26 22:06 - 00000924 _____ C:\Users\***\Desktop\PanzerCorps Pazifik.lnk
2013-12-26 22:05 - 2013-12-26 22:06 - 00000889 _____ C:\Users\***\Desktop\PanzerCorps Ostfront.lnk
2013-12-26 22:04 - 2013-12-26 22:05 - 00000917 _____ C:\Users\***\Desktop\PanzerCorps Afrikakorps.lnk
2013-12-26 21:28 - 2013-12-26 21:28 - 00000738 _____ C:\Users\***\Desktop\Pz Corps DLC Beta.lnk
2013-12-26 21:28 - 2013-12-26 21:28 - 00000000 ____D C:\Windows\Panzer Corps
2013-12-23 22:35 - 2013-12-23 22:35 - 00000000 ____D C:\Program Files\Firefox
2013-12-23 00:57 - 2013-12-23 00:57 - 00000000 ____D C:\Users\***\AppData\Roaming\MPC-HC
2013-12-23 00:55 - 2013-10-24 18:44 - 00137216 _____ (Tabibito Technology) C:\klcp_iph_term5w3sbeietn83w0m4kj0cdbtov49x5phkgj77yi4w73p41x0.tmp
2013-12-23 00:55 - 2013-08-22 18:09 - 00217176 _____ C:\Windows\system32\unrar.dll
2013-12-23 00:54 - 2013-12-23 00:54 - 31830242 _____ ( ) C:\Users\***\Downloads\K-Lite_Codec_Pack_1010_Mega.exe
2013-12-19 20:29 - 2013-12-19 20:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-19 20:15 - 2013-12-19 20:15 - 00000000 ____D C:\Users\***\.android
2013-12-19 20:14 - 2014-01-06 15:19 - 00000000 ____D C:\Users\***\AppData\Roaming\newnext.me
2013-12-19 20:14 - 2013-12-19 20:16 - 00000000 ____D C:\Users\***\AppData\Local\Mobogenie
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\Documents\Mobogenie
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\AppData\Local\genienext
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\AppData\Local\cache
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 _____ C:\Users\***\daemonprocess.txt
2013-12-19 20:12 - 2014-01-06 16:12 - 00000314 _____ C:\Windows\Tasks\MySearchDial.job
2013-12-19 20:12 - 2013-12-19 20:16 - 00000000 ____D C:\Program Files\Mobogenie
2013-12-19 20:12 - 2013-12-19 20:12 - 00351124 _____ C:\Users\***\AppData\Local\mysearchdial-speeddial.crx
2013-12-19 20:12 - 2013-12-19 20:12 - 00000000 ____D C:\Program Files\Mysearchdial
2013-12-19 19:39 - 2013-12-19 20:07 - 00000000 ____D C:\Users\***\AppData\Local\JDownloader v2.0
2013-12-19 19:38 - 2013-12-19 19:38 - 00000000 ____D C:\Users\***\AppData\Local\Google
2013-12-16 00:01 - 2013-12-16 00:01 - 00011131 _____ C:\Users\***\Documents\Haushaltsbuch Michi.xlsx
2013-12-14 21:04 - 2013-12-14 21:04 - 00000000 ____D C:\Users\***\AppData\Roaming\MPC
2013-12-14 21:03 - 2013-12-14 21:03 - 00002139 _____ C:\Users\Public\Desktop\KODAK Create@Home Software (für dm).lnk
2013-12-14 21:03 - 2013-12-14 21:03 - 00000000 ____D C:\Users\***\.kodakch
2013-12-14 21:01 - 2013-12-14 23:20 - 00000000 ____D C:\Program Files\KODAK Create@Home Software (für dm)
2013-12-14 20:59 - 2013-12-14 20:59 - 00000000 ____D C:\Users\***\AppData\Roaming\Eastman Kodak Company
2013-12-14 20:57 - 2013-12-14 20:58 - 102239928 _____ (Eastman Kodak Company) C:\Users\***\Downloads\edb1d315-a10d-4988-adef-ebe072a401fa.exe
2013-12-12 20:32 - 2013-12-13 21:48 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-12-11 22:42 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-11 22:42 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-11 22:42 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-11 22:42 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-11 22:42 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-11 22:42 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-11 22:42 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-11 22:42 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-11 22:42 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-11 22:42 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-11 22:42 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-11 22:42 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-11 22:42 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-11 22:42 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-11 22:42 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-11 22:42 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-11 22:42 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-11 22:42 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-11 22:42 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-11 22:39 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-11 22:39 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-11 22:38 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-11 22:38 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-11 22:38 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-11 22:38 - 2013-10-30 02:27 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 22:38 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 22:38 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 22:38 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 22:38 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 22:38 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-11 22:38 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 22:38 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
==================== One Month Modified Files and Folders =======
2014-01-06 16:24 - 2014-01-06 16:23 - 00013878 _____ C:\Users\***\Desktop\FRST.txt
2014-01-06 16:22 - 2014-01-06 16:22 - 00000000 ____D C:\FRST
2014-01-06 16:20 - 2014-01-06 16:20 - 01064805 _____ (Farbar) C:\Users\***\Desktop\FRST.exe
2014-01-06 16:14 - 2010-04-13 20:11 - 00002686 _____ C:\Windows\MOBK.blk
2014-01-06 16:14 - 2010-04-13 20:11 - 00000338 _____ C:\Windows\MOBK.flt
2014-01-06 16:12 - 2013-12-19 20:12 - 00000314 _____ C:\Windows\Tasks\MySearchDial.job
2014-01-06 15:39 - 2013-11-16 18:03 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-06 15:19 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\AppData\Roaming\newnext.me
2014-01-06 10:55 - 2011-11-15 00:10 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2014-01-06 10:26 - 2012-12-28 23:54 - 00000000 ____D C:\Program Files\Real
2014-01-06 10:26 - 2012-12-28 23:53 - 00000000 ____D C:\Users\***\AppData\Roaming\Real
2014-01-06 10:26 - 2012-12-28 23:52 - 00000000 ____D C:\ProgramData\Real
2014-01-06 10:21 - 2011-11-14 22:51 - 01434158 _____ C:\Windows\WindowsUpdate.log
2014-01-06 09:25 - 2009-07-14 05:34 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-06 09:25 - 2009-07-14 05:34 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-06 09:22 - 2013-11-16 17:31 - 00001861 _____ C:\Users\Public\Desktop\McAfee Internet Security.lnk
2014-01-06 09:18 - 2013-06-21 21:14 - 00011731 _____ C:\Windows\setupact.log
2014-01-06 09:18 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-05 23:29 - 2012-04-15 09:28 - 00016952 _____ C:\Users\***\Documents\Haushaltsbuch.xlsx
2014-01-05 23:11 - 2014-01-05 23:04 - 00008657 _____ C:\Users\***\Desktop\Wasserwerte.xlsx
2013-12-27 18:32 - 2013-06-21 21:13 - 00142872 _____ C:\Windows\PFRO.log
2013-12-26 22:06 - 2013-12-26 22:06 - 00000924 _____ C:\Users\***\Desktop\PanzerCorps Pazifik.lnk
2013-12-26 22:06 - 2013-12-26 22:05 - 00000889 _____ C:\Users\***\Desktop\PanzerCorps Ostfront.lnk
2013-12-26 22:05 - 2013-12-26 22:04 - 00000917 _____ C:\Users\***\Desktop\PanzerCorps Afrikakorps.lnk
2013-12-26 21:28 - 2013-12-26 21:28 - 00000738 _____ C:\Users\***\Desktop\Pz Corps DLC Beta.lnk
2013-12-26 21:28 - 2013-12-26 21:28 - 00000000 ____D C:\Windows\Panzer Corps
2013-12-24 18:11 - 2012-04-07 16:07 - 00000000 ____D C:\Users\***\AppData\Roaming\Skype
2013-12-24 15:56 - 2012-05-11 20:39 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-12-23 22:35 - 2013-12-23 22:35 - 00000000 ____D C:\Program Files\Firefox
2013-12-23 00:57 - 2013-12-23 00:57 - 00000000 ____D C:\Users\***\AppData\Roaming\MPC-HC
2013-12-23 00:54 - 2013-12-23 00:54 - 31830242 _____ ( ) C:\Users\***\Downloads\K-Lite_Codec_Pack_1010_Mega.exe
2013-12-19 20:29 - 2013-12-19 20:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-12-19 20:29 - 2013-06-19 22:43 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-12-19 20:29 - 2013-06-19 22:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-12-19 20:29 - 2011-11-14 23:22 - 00001122 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-19 20:16 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\AppData\Local\Mobogenie
2013-12-19 20:16 - 2013-12-19 20:12 - 00000000 ____D C:\Program Files\Mobogenie
2013-12-19 20:15 - 2013-12-19 20:15 - 00000000 ____D C:\Users\***\.android
2013-12-19 20:15 - 2011-11-14 22:59 - 00000000 ____D C:\Users\***
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\Documents\Mobogenie
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\AppData\Local\genienext
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 ____D C:\Users\***\AppData\Local\cache
2013-12-19 20:14 - 2013-12-19 20:14 - 00000000 _____ C:\Users\***\daemonprocess.txt
2013-12-19 20:12 - 2013-12-19 20:12 - 00351124 _____ C:\Users\***\AppData\Local\mysearchdial-speeddial.crx
2013-12-19 20:12 - 2013-12-19 20:12 - 00000000 ____D C:\Program Files\Mysearchdial
2013-12-19 20:07 - 2013-12-19 19:39 - 00000000 ____D C:\Users\***\AppData\Local\JDownloader v2.0
2013-12-19 19:38 - 2013-12-19 19:38 - 00000000 ____D C:\Users\***\AppData\Local\Google
2013-12-19 19:33 - 2010-11-20 22:01 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-16 00:01 - 2013-12-16 00:01 - 00011131 _____ C:\Users\***\Documents\Haushaltsbuch Michi.xlsx
2013-12-15 23:43 - 2013-06-24 20:15 - 00000000 ____D C:\Users\***\AppData\Local\JDownloader 0.9
2013-12-14 23:20 - 2013-12-14 21:01 - 00000000 ____D C:\Program Files\KODAK Create@Home Software (für dm)
2013-12-14 23:04 - 2011-12-19 21:26 - 00000000 ____D C:\Users\***\Desktop\Fotos
2013-12-14 21:04 - 2013-12-14 21:04 - 00000000 ____D C:\Users\***\AppData\Roaming\MPC
2013-12-14 21:03 - 2013-12-14 21:03 - 00002139 _____ C:\Users\Public\Desktop\KODAK Create@Home Software (für dm).lnk
2013-12-14 21:03 - 2013-12-14 21:03 - 00000000 ____D C:\Users\***\.kodakch
2013-12-14 20:59 - 2013-12-14 20:59 - 00000000 ____D C:\Users\***\AppData\Roaming\Eastman Kodak Company
2013-12-14 20:58 - 2013-12-14 20:57 - 102239928 _____ (Eastman Kodak Company) C:\Users\***\Downloads\edb1d315-a10d-4988-adef-ebe072a401fa.exe
2013-12-13 21:48 - 2013-12-12 20:32 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-12-12 22:59 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2013-12-12 20:00 - 2009-07-14 05:33 - 00308704 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-12 01:39 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-12-11 22:42 - 2011-11-15 20:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 22:40 - 2013-07-10 21:09 - 00000000 ____D C:\Windows\system32\MRT
2013-12-11 22:39 - 2011-11-16 20:37 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-09 00:36 - 2011-11-17 23:51 - 00000000 ____D C:\Users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-12-09 00:36 - 2011-11-17 23:51 - 00000000 ____D C:\Program Files\WinRAR
Some content of TEMP:
====================
C:\Users\***\AppData\Local\Temp\54706uninstall.exe
C:\Users\***\AppData\Local\Temp\i4jdel0.exe
C:\Users\***\AppData\Local\Temp\proxy_vole6329890381924039399.dll
C:\Users\***\AppData\Local\Temp\Sqlite3.dll
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-30 17:40
==================== End Of Log ============================ --- --- ---
Addition.txt: Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 05-01-2014
Ran by *** at 2014-01-06 16:24:32
Running from C:\Users\***\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AS: McAfee Anti-Virus und Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (Version: - Microsoft)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (Version: 11.0.05 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 2.5.793.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 3.0.851.0 - Advanced Micro Devices, Inc.)
Application Profiles (Version: 2.0.4331.36041 - Ihr Firmenname)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (Version: 2011.1025.2231.38573 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2011.1025.2230.38573 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2011.1025.2231.38573 - Advanced Micro Devices, Inc.) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DMP Panzercorps Afrika Korps Add-On v.1.20 (Version: - DMP)
DMP Panzercorps Ostfront Add-On v.4.11 (Version: - DMP)
DMP Panzercorps Pazifik Korps Add-On v.2.0 (Version: - DMP)
Europa Universalis IV (Version: - Paradox Development Studio)
GIMP 2.6.11 (Version: 2.6.11 - The GIMP Team)
Java 7 Update 21 (Version: 7.0.210 - Oracle)
Java Auto Updater (Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KODAK Create@Home Software (für dm) (Version: 7.8.1392 - Eastman Kodak Company)
McAfee Internet Security (Version: 12.8.856 - McAfee, Inc.)
McAfee Online Backup (Version: - McAfee, Inc.) Hidden
McAfee Online Backup (Version: 1.16.4.0 - McAfee, Inc.) Hidden
McAfee Security Scan Plus (Version: 3.8.130.10 - McAfee, Inc.)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 (Version: 1.1.40219 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.1 Language Pack - DEU (Version: 1.1.40219 - Microsoft Corporation)
Microsoft Help Viewer 1.1 Language Pack - DEU (Version: 1.1.40219 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Shell (Isolated) - DEU (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40308 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (Version: 10.0.40303 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (Version: 24.2.0 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
Mysearchdial (Version: - Mysearchdial) <==== ATTENTION
Notepad++ (Version: 6.1.2 - )
Panzer Corps (Version: 1.00 - Slitherine)
Panzer_Corps_DMP_Afrika_Korps_Hotfix_1-1 (Version: - DMP)
Shared C Run-time for x86 (Version: 10.0.0 - McAfee) Hidden
Sid Meier's Civilization IV Colonization (Version: 1.01 - Firaxis Games)
Sid Meier's Civilization V (Version: - 2K Games, Inc.)
Sid Meier's Civilization V SDK (Version: - Firaxis Games)
Skype™ 6.11 (Version: 6.11.102 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.1.12 (Version: 7.0.1.12 - Mad Catz)
Steam (Version: 1.0.0.0 - Valve Corporation)
TeamSpeak 3 Client (Version: - TeamSpeak Systems GmbH)
Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft)
VAIO Original Function Settings (Version: 2.0.2.02240 - Sony Corporation) Hidden
VAIO Original Funktion Einstellungen (Version: 2.0.2.02240 - Sony Corporation)
VAIO Update (Version: 6.3.0.08010 - Sony Corporation)
VU5x86 (Version: 1.1.0 - Sony Corporation ) Hidden
Wildlife Park 3 v1.0 (Version: - bitComposer Games)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.01 (32-Bit) (Version: 5.01.0 - win.rar GmbH)
World of Tanks v.0.6.7 (Version: - Wargaming.net)
World of Warplanes (Version: - Wargaming.net)
==================== Restore Points =========================
17-12-2013 21:15:34 Windows Update
19-12-2013 18:57:49 Windows Defender Checkpoint
19-12-2013 19:29:04 McAfee Vulnerability Scanner
22-12-2013 20:51:06 Windows Update
27-12-2013 20:30:00 Windows Update
01-01-2014 20:24:15 Windows Update
05-01-2014 22:12:07 Windows Update
06-01-2014 09:34:12 Entfernt Heroes of Might and Magic V - Tribes of the East
==================== Hosts content: ==========================
2009-07-14 03:04 - 2013-06-15 22:00 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {03D5F0FC-8A9E-4161-91BB-4A4147CD8B3A} - System32\Tasks\{D11A4E50-5F43-41B3-A367-FA8D6E637704} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6586A185-EE2C-412B-ADD7-8F91815B3130} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-379556155-911974017-2871762651-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {85FFCAB2-D19A-411E-82AE-53A36F91EE89} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-379556155-911974017-2871762651-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
Task: {9E2EFE56-5A4F-4E70-955D-B0CE320DD33E} - System32\Tasks\{C46C7327-7912-4C77-908B-A560751E725B} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.114/de/go/help.faq.installer?LastError=1603
Task: {9EB2EF84-4376-4B16-80C8-FB82C586770C} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {B3401DE2-4591-4C4E-95BA-8FC3312AD70D} - System32\Tasks\{C6D27490-9043-4E2A-B8E9-B4166D99A123} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B7E24DCA-626E-4E19-B4C7-6E3A0E237BCF} - System32\Tasks\{17EE0DD5-5A59-4F5B-828D-6ED723D1AD08} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.114/de/go/help.faq.installer?LastError=1603
Task: {C3526488-0B9F-4098-A573-B77CEF9ACF62} - System32\Tasks\{EF73027C-F003-47A8-AA2D-2A5BB4E88B94} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.114/de/go/help.faq.installer?LastError=1603
Task: {C5C170CA-8D07-43CD-9C6D-1F0A83507AE2} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {C718314F-6F68-4F4C-8176-85CE31644A98} - System32\Tasks\MySearchDial => C:\Users\MARTIN~1\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {EB47A8F0-90D9-44C3-8A9F-87ED37494CBB} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-19] (Adobe Systems Incorporated)
Task: {EE7464A2-B6CA-40B1-B3F0-C560808B2B97} - System32\Tasks\{52839543-D389-4347-A4B9-7A4EBA37C339} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.115/de/go/help.faq.installer?LastError=1603
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\MySearchDial.job => C:\Users\MARTIN~1\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2011-07-18 22:04 - 2011-07-18 22:04 - 00296448 _____ () C:\Program Files\Notepad++\NppShell_04.dll
2011-03-14 14:21 - 2011-03-14 14:21 - 00016384 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-10-25 21:29 - 2011-10-25 21:29 - 00369152 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-12-23 22:35 - 2013-12-23 22:35 - 03559024 _____ () C:\Program Files\Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== Faulty Device Manager Devices =============
Name: Basissystemgerät
Description: Basissystemgerät
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/06/2014 00:13:01 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (01/06/2014 10:34:10 AM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {68202a23-4405-4f19-895e-028935c17e2c}
Error: (01/06/2014 09:19:53 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2014 04:28:37 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (01/05/2014 04:25:15 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (01/05/2014 03:31:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/05/2014 10:20:06 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/02/2014 08:44:16 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert
.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {01470f88-a156-4320-8866-b3811e2054a4}
Error: (01/02/2014 08:35:30 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (01/02/2014 08:31:45 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (01/06/2014 09:18:11 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Util BrowseSmart" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/06/2014 09:18:11 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update BrowseSmart" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/06/2014 09:18:06 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (01/05/2014 04:02:14 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (01/05/2014 04:01:53 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Platform Services" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (01/05/2014 04:01:53 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst McAfee Platform Services erreicht.
Error: (01/05/2014 04:01:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee Platform Services" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (01/05/2014 04:01:52 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst McAfee Platform Services erreicht.
Error: (01/05/2014 04:01:52 PM) (Source: DCOM) (User: )
Description: 1053mcpltsvc{20966775-18A4-4299-B8E3-772C336B52A7}
Error: (01/05/2014 03:29:26 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Util BrowseSmart" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-06-17 00:11:12.090
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\VSCore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-17 00:11:12.090
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\VSCore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-17 00:11:12.090
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\VSCore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-15 22:08:21.974
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\VSCore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2013-06-15 22:08:21.928
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Program Files\Common Files\Mcafee\VSCore\VSCore\mfeelamk.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 58%
Total physical RAM: 3039.04 MB
Available physical RAM: 1264.75 MB
Total Pagefile: 6076.36 MB
Available Pagefile: 4343.55 MB
Total Virtual: 2047.88 MB
Available Virtual: 1888.96 MB
==================== Drives ================================
Drive c: (System-reserviert) (Fixed) (Total:172.79 GB) (Free:132.16 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:292.97 GB) (Free:212.51 GB) NTFS
Drive e: (124366347-1) (CDROM) (Total:0.42 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 1C32EDB0)
Partition 1: (Active) - (Size=173 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=293 GB) - (Type=07 NTFS)
==================== End Of Log ============================ Danke für Eure Hilfe :) |