| |
| |||||||
Log-Analyse und Auswertung: Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normalWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
23.09.2013, 18:23
| #16 |
| /// the machine /// TB-Ausbilder    |  Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Mach das mit dem Router.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
23.09.2013, 20:54
| #17 |
 | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Router wieder eingeschaltet, keine Verbesserung. Generell wird auch das System zusehens langsamer.
__________________Der ESET Scanner findet immer was und danach ist es kurze Zeit besser, aber relativ schnell wieder der alte Trott... So, nach kurzem Warten doch deutlich besser, mal sehen obs nach dem Neustart auch noch so ist. Code:
ATTFilter Farbar Service Scanner Version: 13-09-2013
Ran by Johannes (administrator) on 23-09-2013 at 21:48:28
Running from "C:\Users\Johannes\Desktop"
Microsoft Windows 7 Professional Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
System Restore Disabled Policy:
========================
Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2013-08-14 14:41] - [2013-07-06 07:05] - 1293760 ____A (Microsoft Corporation) 4E8B9BE71B807B3BAEDB7F4243F85E3C
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll
[2013-08-14 14:42] - [2013-07-09 06:46] - 0140288 ____A (Microsoft Corporation) 7CA1BECEA5DE2643ADDAD32670E7A4C9
C:\Program Files\Windows Defender\MpSvc.dll
[2013-07-10 16:19] - [2013-05-27 06:57] - 0680960 ____A (Microsoft Corporation) 082CF481F659FAE0DE51AD060881EB47
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
**** End of log ****
Geändert von Boerger1 (23.09.2013 um 20:47 Uhr) |
|
24.09.2013, 11:21
| #18 |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal ESET findet doch nur was in den Temps und im Cache. Poste bitte noch ein frisches FRST logfile.
__________________
__________________ |
|
24.09.2013, 14:55
| #19 |
| | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normalFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-09-2013
Ran by Johannes (administrator) on JOHANNES-PC on 24-09-2013 15:53:07
Running from C:\Users\Johannes\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) D:\Programme\iTunes\iTunes.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
MountPoints2: G - G:\setup_vmb_lite.exe /checkApplicationPresence
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x13ADC343A397CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{58A2917A-9E54-4083-9509-30698A25B9AD}: [NameServer]83.224.70.54 83.224.70.77
FireFox:
========
FF ProfilePath: C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\b0cdfkte.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.web.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - D:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - D:\Programme\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\b0cdfkte.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\pdf.dll ()
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (iTunes Application Detector) - D:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Extension: (Google Docs) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-09-08] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 ACEDRV07; C:\Windows\system32\drivers\ACEDRV07.sys [101376 2013-01-31] (Protect Software GmbH)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] ()
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 SSHDRV82; C:\Windows\system32\drivers\SSHDRV82.sys [76288 2011-11-01] ()
R1 SSHDRV86; C:\Windows\system32\drivers\SSHDRV86.sys [81408 2011-11-01] ()
S3 vodafone_K3805-z_cdc_acm; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cdc_acm.sys [67584 2010-09-01] (Vodafone)
S3 vodafone_K3805-z_cdc_ecm; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cdc_ecm.sys [79360 2010-09-01] (Vodafone)
S3 vodafone_K3805-z_cpo; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cpo.sys [9728 2010-09-01] (Vodafone)
R3 vodafone_K3805-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K3805-z_dc_enum.sys [61952 2010-09-01] (Vodafone)
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-23 21:48 - 2013-09-23 21:48 - 00002388 _____ C:\Users\Johannes\Desktop\FSS.txt
2013-09-23 18:54 - 2013-09-23 18:55 - 00358923 _____ (Farbar) C:\Users\Johannes\Desktop\FSS.exe
2013-09-23 13:04 - 2013-09-23 22:36 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\vlc
2013-09-23 13:03 - 2013-09-23 13:03 - 00000610 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-09-23 13:01 - 2013-09-23 13:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-23 12:51 - 2013-09-23 12:51 - 00050938 _____ C:\Users\Johannes\Desktop\bookmarks-2013-09-23.json
2013-09-23 12:35 - 2013-09-23 12:35 - 00000000 ____D C:\Windows\Sun
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 12:32 - 2013-09-23 12:31 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 11:53 - 2013-09-23 11:53 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-09-23 11:53 - 2013-08-30 09:48 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-09-23 11:53 - 2013-08-30 09:47 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-09-23 11:52 - 2013-09-23 11:52 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-23 11:52 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-09-23 11:49 - 2013-09-23 11:52 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-23 11:14 - 2013-09-23 11:44 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-23 11:10 - 2013-09-23 11:10 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JOHANNES-PC-Microsoft-Windows-7-Professional-(32-bit).dat
2013-09-23 11:09 - 2013-09-23 11:09 - 00000000 ____D C:\RegBackup
2013-09-23 10:54 - 2013-09-23 10:54 - 00003304 ____N C:\bootsqm.dat
2013-09-23 10:48 - 2013-09-23 10:48 - 00002121 _____ C:\Users\Johannes\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-09-23 10:48 - 2013-09-23 10:48 - 00000000 ____D C:\Program Files\Tweaking.com
2013-09-23 10:47 - 2013-09-23 10:47 - 05369204 _____ C:\Users\Johannes\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-09-23 09:21 - 2013-09-23 09:21 - 01042066 _____ C:\Users\Johannes\Desktop\adwcleaner.exe
2013-09-22 21:35 - 2013-09-23 11:51 - 00070728 _____ C:\Users\Johannes\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-22 21:35 - 2013-09-22 21:35 - 00000000 ____D C:\ProgramData\GFI Software
2013-09-22 20:43 - 2013-09-22 20:43 - 01089757 _____ (Farbar) C:\Users\Johannes\Desktop\FRST.exe
2013-09-22 18:12 - 2013-09-24 15:16 - 00000672 _____ C:\Windows\setupact.log
2013-09-22 18:12 - 2013-09-23 21:50 - 00003416 _____ C:\Windows\PFRO.log
2013-09-22 18:12 - 2013-09-23 11:46 - 00325448 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-22 18:12 - 2013-09-22 18:12 - 00000000 _____ C:\Windows\setuperr.log
2013-09-22 14:16 - 2013-09-22 09:38 - 01030038 _____ (Thisisu) C:\Users\Johannes\Desktop\JRT_NEW.exe
2013-09-21 19:30 - 2013-09-21 19:30 - 00891144 _____ C:\Users\Johannes\Desktop\SecurityCheck.exe
2013-09-21 19:28 - 2013-09-21 19:28 - 02347384 _____ (ESET) C:\Users\Johannes\Desktop\esetsmartinstaller_enu.exe
2013-09-20 23:52 - 2013-09-20 23:52 - 00001297 _____ C:\Users\Johannes\Desktop\JRT.txt
2013-09-20 23:48 - 2013-09-20 23:48 - 00000000 ____D C:\Windows\ERUNT
2013-09-20 23:39 - 2013-09-23 09:24 - 00000000 ____D C:\AdwCleaner
2013-09-20 23:26 - 2013-09-20 23:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-20 23:25 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-20 23:22 - 2013-09-20 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Johannes\Desktop\mbam-setup-1.75.0.1300.exe
2013-09-20 20:01 - 2013-09-20 20:01 - 00000000 ____D C:\Users\Johannes\AppData\Local\{22117584-3C6E-453F-BBC7-7092731FEE73}
2013-09-20 16:46 - 2013-09-20 16:46 - 00015080 _____ C:\Users\Johannes\Desktop\Addition.txt
2013-09-20 16:44 - 2013-09-20 16:44 - 00000000 ____D C:\FRST
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\sg_backup_2013-09-20-1530.spg
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\FirstBackup.spg
2013-09-20 13:45 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Local\Macromedia
2013-09-20 13:31 - 2013-09-20 13:31 - 00070728 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-20 13:29 - 2013-09-20 13:30 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Mozilla
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Local\Mozilla
2013-09-20 13:27 - 2013-09-22 22:26 - 00000000 ____D C:\Users\Gast
2013-09-20 13:27 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-09-20 13:27 - 2013-09-20 13:27 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 13:27 - 2013-09-20 13:27 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Startmenü
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-09-20 13:27 - 2009-07-14 06:42 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-20 13:27 - 2009-07-14 06:37 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-09-19 16:36 - 2013-09-19 16:36 - 00001538 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\Program Files\iPod
2013-09-18 22:04 - 2013-09-20 16:01 - 00000000 ____D C:\Users\Johannes\Desktop\backups
2013-09-17 15:49 - 2013-09-20 15:37 - 00004945 _____ C:\Users\Johannes\Desktop\hijackthis.log
2013-09-17 15:43 - 2013-08-03 16:09 - 00451617 _____ C:\Windows\system32\Drivers\etc\hosts.20130917-154319.backup
2013-09-17 14:47 - 2013-09-19 16:37 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-17 14:45 - 2013-09-19 16:15 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-17 14:45 - 2013-09-19 16:15 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-17 14:45 - 2013-09-17 14:46 - 00000000 ____D C:\Program Files\Google
2013-09-17 14:44 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Johannes\AppData\Local\Google
2013-09-16 18:11 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.006
2013-09-16 17:48 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.005
2013-09-16 17:44 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.004
2013-09-16 17:39 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.003
2013-09-16 17:35 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.002
2013-09-16 17:30 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.001
2013-09-11 18:31 - 2013-09-11 18:31 - 00000000 ___RD C:\Users\Johannes\Podcasts
2013-09-11 18:24 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 18:24 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 18:24 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 18:24 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 18:23 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 18:23 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 18:16 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 18:16 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 18:16 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 18:16 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 18:16 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 18:16 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 18:16 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 18:16 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-08 22:47 - 2013-09-17 14:08 - 00000000 ____D C:\KabelBW
2013-09-08 21:24 - 2013-09-08 21:24 - 00000647 _____ C:\Users\Johannes\Desktop\GFII - Verknüpfung.lnk
2013-09-08 20:18 - 2013-09-23 22:36 - 00678188 _____ C:\Windows\WindowsUpdate.log
2013-09-08 20:03 - 2013-09-08 20:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johannes\Desktop\HiJackThis204.exe
2013-09-05 08:25 - 2013-09-05 08:25 - 00000000 ____D C:\Users\Public\Documents\sun
2013-09-04 22:38 - 2013-09-24 15:37 - 00000000 ____D C:\GFII
2013-09-04 21:26 - 2013-09-04 21:26 - 00001054 _____ C:\Users\Public\Desktop\LibreOffice 4.0.lnk
==================== One Month Modified Files and Folders =======
2013-09-24 15:54 - 2012-06-29 08:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-24 15:37 - 2013-09-04 22:38 - 00000000 ____D C:\GFII
2013-09-24 15:23 - 2013-09-08 20:18 - 00678188 _____ C:\Windows\WindowsUpdate.log
2013-09-24 15:22 - 2009-07-14 06:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-24 15:22 - 2009-07-14 06:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-24 15:16 - 2013-09-22 18:12 - 00000672 _____ C:\Windows\setupact.log
2013-09-24 15:16 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-23 22:36 - 2013-09-23 13:04 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\vlc
2013-09-23 21:54 - 2011-10-31 10:04 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-23 21:50 - 2013-09-22 18:12 - 00003416 _____ C:\Windows\PFRO.log
2013-09-23 21:48 - 2013-09-23 21:48 - 00002388 _____ C:\Users\Johannes\Desktop\FSS.txt
2013-09-23 18:55 - 2013-09-23 18:54 - 00358923 _____ (Farbar) C:\Users\Johannes\Desktop\FSS.exe
2013-09-23 13:03 - 2013-09-23 13:03 - 00000610 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-09-23 13:01 - 2013-09-23 13:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-23 12:51 - 2013-09-23 12:51 - 00050938 _____ C:\Users\Johannes\Desktop\bookmarks-2013-09-23.json
2013-09-23 12:47 - 2011-10-31 17:39 - 00000000 ____D C:\Program Files\Java
2013-09-23 12:35 - 2013-09-23 12:35 - 00000000 ____D C:\Windows\Sun
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 12:31 - 2013-09-23 12:32 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 12:31 - 2012-06-19 08:18 - 00868264 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-09-23 12:31 - 2011-10-31 17:39 - 00790440 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-09-23 11:53 - 2013-09-23 11:53 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-09-23 11:53 - 2009-07-14 04:04 - 00002577 _____ C:\Windows\system32\config.nt
2013-09-23 11:52 - 2013-09-23 11:52 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-23 11:52 - 2013-09-23 11:49 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-23 11:51 - 2013-09-22 21:35 - 00070728 _____ C:\Users\Johannes\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-23 11:46 - 2013-09-22 18:12 - 00325448 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-23 11:46 - 2009-07-14 10:56 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-09-23 11:44 - 2013-09-23 11:14 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-23 11:10 - 2013-09-23 11:10 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JOHANNES-PC-Microsoft-Windows-7-Professional-(32-bit).dat
2013-09-23 11:09 - 2013-09-23 11:09 - 00000000 ____D C:\RegBackup
2013-09-23 10:54 - 2013-09-23 10:54 - 00003304 ____N C:\bootsqm.dat
2013-09-23 10:48 - 2013-09-23 10:48 - 00002121 _____ C:\Users\Johannes\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-09-23 10:48 - 2013-09-23 10:48 - 00000000 ____D C:\Program Files\Tweaking.com
2013-09-23 10:47 - 2013-09-23 10:47 - 05369204 _____ C:\Users\Johannes\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-09-23 10:46 - 2011-11-02 12:52 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Skype
2013-09-23 09:39 - 2011-10-31 10:22 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-23 09:24 - 2013-09-20 23:39 - 00000000 ____D C:\AdwCleaner
2013-09-23 09:21 - 2013-09-23 09:21 - 01042066 _____ C:\Users\Johannes\Desktop\adwcleaner.exe
2013-09-23 09:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 22:26 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast
2013-09-22 22:26 - 2012-11-04 17:45 - 00000000 ____D C:\Program Files\Avira
2013-09-22 22:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\wfp
2013-09-22 22:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2013-09-22 21:55 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Default
2013-09-22 21:36 - 2012-05-14 15:14 - 00000000 ____D C:\Program Files\Ad-Aware Antivirus
2013-09-22 21:35 - 2013-09-22 21:35 - 00000000 ____D C:\ProgramData\GFI Software
2013-09-22 21:30 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2013-09-22 21:28 - 2011-10-30 22:30 - 00000000 ____D C:\Users\Johannes
2013-09-22 21:28 - 2009-07-14 06:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-22 21:21 - 2012-02-26 17:26 - 00000000 ____D C:\Windows\Minidump
2013-09-22 20:43 - 2013-09-22 20:43 - 01089757 _____ (Farbar) C:\Users\Johannes\Desktop\FRST.exe
2013-09-22 18:12 - 2013-09-22 18:12 - 00000000 _____ C:\Windows\setuperr.log
2013-09-22 09:38 - 2013-09-22 14:16 - 01030038 _____ (Thisisu) C:\Users\Johannes\Desktop\JRT_NEW.exe
2013-09-21 19:30 - 2013-09-21 19:30 - 00891144 _____ C:\Users\Johannes\Desktop\SecurityCheck.exe
2013-09-21 19:28 - 2013-09-21 19:28 - 02347384 _____ (ESET) C:\Users\Johannes\Desktop\esetsmartinstaller_enu.exe
2013-09-20 23:52 - 2013-09-20 23:52 - 00001297 _____ C:\Users\Johannes\Desktop\JRT.txt
2013-09-20 23:48 - 2013-09-20 23:48 - 00000000 ____D C:\Windows\ERUNT
2013-09-20 23:40 - 2013-06-22 20:50 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Common
2013-09-20 23:26 - 2013-09-20 23:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-20 23:22 - 2013-09-20 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Johannes\Desktop\mbam-setup-1.75.0.1300.exe
2013-09-20 20:14 - 2013-08-23 13:14 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-09-20 20:01 - 2013-09-20 20:01 - 00000000 ____D C:\Users\Johannes\AppData\Local\{22117584-3C6E-453F-BBC7-7092731FEE73}
2013-09-20 18:56 - 2012-04-01 22:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-20 18:56 - 2011-11-07 16:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-20 16:46 - 2013-09-20 16:46 - 00015080 _____ C:\Users\Johannes\Desktop\Addition.txt
2013-09-20 16:44 - 2013-09-20 16:44 - 00000000 ____D C:\FRST
2013-09-20 16:01 - 2013-09-18 22:04 - 00000000 ____D C:\Users\Johannes\Desktop\backups
2013-09-20 15:37 - 2013-09-17 15:49 - 00004945 _____ C:\Users\Johannes\Desktop\hijackthis.log
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\sg_backup_2013-09-20-1530.spg
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\FirstBackup.spg
2013-09-20 13:45 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-09-20 13:45 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Local\Macromedia
2013-09-20 13:31 - 2013-09-20 13:31 - 00070728 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-20 13:30 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Mozilla
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Local\Mozilla
2013-09-20 13:27 - 2013-09-20 13:27 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 13:27 - 2013-09-20 13:27 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Startmenü
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-09-19 16:37 - 2013-09-17 14:47 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-19 16:36 - 2013-09-19 16:36 - 00001538 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\Program Files\iPod
2013-09-19 16:35 - 2011-10-31 11:24 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-09-19 16:15 - 2013-09-17 14:45 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-19 16:15 - 2013-09-17 14:45 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-18 21:55 - 2011-10-31 10:04 - 00000000 ____D C:\Users\Johannes\AppData\Local\Mozilla
2013-09-17 15:43 - 2009-07-14 04:04 - 00451617 ____R C:\Windows\system32\Drivers\etc\hosts.20130923-094815.backup
2013-09-17 14:53 - 2011-11-01 07:35 - 00000000 ____D C:\Users\Johannes\AppData\Local\Adobe
2013-09-17 14:47 - 2013-09-17 14:44 - 00000000 ____D C:\Users\Johannes\AppData\Local\Google
2013-09-17 14:46 - 2013-09-17 14:45 - 00000000 ____D C:\Program Files\Google
2013-09-17 14:23 - 2011-10-31 15:34 - 00000432 _____ C:\Windows\BRWMARK.INI
2013-09-17 14:08 - 2013-09-08 22:47 - 00000000 ____D C:\KabelBW
2013-09-16 18:11 - 2011-11-28 00:11 - 00000654 _____ C:\Users\Public\Desktop\Service-CD Lambacher Schweizer.lnk
2013-09-16 10:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-09-15 22:56 - 2013-05-24 21:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\inkscape
2013-09-15 22:55 - 2011-11-02 14:06 - 00018710 _____ C:\Users\Johannes\Documents\cc_20111102_130551.reg
2013-09-15 22:50 - 2011-10-31 11:07 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-15 22:50 - 2011-10-31 11:07 - 00000000 ____D C:\Program Files\CCleaner
2013-09-12 18:08 - 2012-09-21 19:34 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\DVDVideoSoft
2013-09-11 21:20 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-11 19:08 - 2011-10-30 22:18 - 00000000 ____D C:\Windows\Panther
2013-09-11 18:45 - 2013-04-30 18:54 - 00008532 _____ C:\Users\Johannes\Documents\cc_20130430_185441.reg
2013-09-11 18:31 - 2013-09-11 18:31 - 00000000 ___RD C:\Users\Johannes\Podcasts
2013-09-11 18:25 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-11 18:20 - 2013-08-15 07:09 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 18:17 - 2011-11-02 12:49 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-08 21:24 - 2013-09-08 21:24 - 00000647 _____ C:\Users\Johannes\Desktop\GFII - Verknüpfung.lnk
2013-09-08 20:03 - 2013-09-08 20:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johannes\Desktop\HiJackThis204.exe
2013-09-05 08:51 - 2012-08-01 16:29 - 00000000 ____D C:\Telefon
2013-09-05 08:25 - 2013-09-05 08:25 - 00000000 ____D C:\Users\Public\Documents\sun
2013-09-04 21:26 - 2013-09-04 21:26 - 00001054 _____ C:\Users\Public\Desktop\LibreOffice 4.0.lnk
2013-09-04 21:25 - 2013-04-30 19:17 - 00000000 ____D C:\Program Files\LibreOffice 4.0
2013-08-30 09:48 - 2013-09-23 11:53 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-08-30 09:47 - 2013-09-23 11:53 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-08-30 09:47 - 2013-09-23 11:52 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-22 20:23
==================== End Of Log ============================
|
|
24.09.2013, 19:08
| #20 |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Öffne bitte FRST, setz nen Haken bei Additional und scanne, poste bitte die additional.txt. Nur das Internet ist lahm? In allen Browsern?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
25.09.2013, 07:27
| #21 |
| | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-09-2013
Ran by Johannes (administrator) on JOHANNES-PC on 24-09-2013 20:29:34
Running from C:\Users\Johannes\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
MountPoints2: G - G:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {6fda4703-0334-11e1-b523-806e6f6e6963} - E:\Autorun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x13ADC343A397CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{58A2917A-9E54-4083-9509-30698A25B9AD}: [NameServer]83.224.70.54 83.224.70.77
FireFox:
========
FF ProfilePath: C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\b0cdfkte.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.web.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - D:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - D:\Programme\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\b0cdfkte.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\pdf.dll ()
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (iTunes Application Detector) - D:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Extension: (Google Docs) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-09-08] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 ACEDRV07; C:\Windows\system32\drivers\ACEDRV07.sys [101376 2013-01-31] (Protect Software GmbH)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] ()
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 SSHDRV82; C:\Windows\system32\drivers\SSHDRV82.sys [76288 2011-11-01] ()
R1 SSHDRV86; C:\Windows\system32\drivers\SSHDRV86.sys [81408 2011-11-01] ()
S3 vodafone_K3805-z_cdc_acm; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cdc_acm.sys [67584 2010-09-01] (Vodafone)
S3 vodafone_K3805-z_cdc_ecm; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cdc_ecm.sys [79360 2010-09-01] (Vodafone)
S3 vodafone_K3805-z_cpo; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cpo.sys [9728 2010-09-01] (Vodafone)
R3 vodafone_K3805-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K3805-z_dc_enum.sys [61952 2010-09-01] (Vodafone)
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-23 21:48 - 2013-09-23 21:48 - 00002388 _____ C:\Users\Johannes\Desktop\FSS.txt
2013-09-23 18:54 - 2013-09-23 18:55 - 00358923 _____ (Farbar) C:\Users\Johannes\Desktop\FSS.exe
2013-09-23 13:04 - 2013-09-23 22:36 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\vlc
2013-09-23 13:03 - 2013-09-23 13:03 - 00000610 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-09-23 13:01 - 2013-09-23 13:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-23 12:51 - 2013-09-23 12:51 - 00050938 _____ C:\Users\Johannes\Desktop\bookmarks-2013-09-23.json
2013-09-23 12:35 - 2013-09-23 12:35 - 00000000 ____D C:\Windows\Sun
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 12:32 - 2013-09-23 12:31 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 11:53 - 2013-09-23 11:53 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-09-23 11:53 - 2013-08-30 09:48 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-09-23 11:53 - 2013-08-30 09:47 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-09-23 11:52 - 2013-09-23 11:52 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-23 11:52 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-09-23 11:49 - 2013-09-23 11:52 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-23 11:14 - 2013-09-23 11:44 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-23 11:10 - 2013-09-23 11:10 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JOHANNES-PC-Microsoft-Windows-7-Professional-(32-bit).dat
2013-09-23 11:09 - 2013-09-23 11:09 - 00000000 ____D C:\RegBackup
2013-09-23 10:54 - 2013-09-23 10:54 - 00003304 ____N C:\bootsqm.dat
2013-09-23 10:48 - 2013-09-23 10:48 - 00002121 _____ C:\Users\Johannes\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-09-23 10:48 - 2013-09-23 10:48 - 00000000 ____D C:\Program Files\Tweaking.com
2013-09-23 10:47 - 2013-09-23 10:47 - 05369204 _____ C:\Users\Johannes\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-09-23 09:21 - 2013-09-23 09:21 - 01042066 _____ C:\Users\Johannes\Desktop\adwcleaner.exe
2013-09-22 21:35 - 2013-09-23 11:51 - 00070728 _____ C:\Users\Johannes\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-22 21:35 - 2013-09-22 21:35 - 00000000 ____D C:\ProgramData\GFI Software
2013-09-22 20:43 - 2013-09-22 20:43 - 01089757 _____ (Farbar) C:\Users\Johannes\Desktop\FRST.exe
2013-09-22 18:12 - 2013-09-24 15:16 - 00000672 _____ C:\Windows\setupact.log
2013-09-22 18:12 - 2013-09-23 21:50 - 00003416 _____ C:\Windows\PFRO.log
2013-09-22 18:12 - 2013-09-23 11:46 - 00325448 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-22 18:12 - 2013-09-22 18:12 - 00000000 _____ C:\Windows\setuperr.log
2013-09-22 14:16 - 2013-09-22 09:38 - 01030038 _____ (Thisisu) C:\Users\Johannes\Desktop\JRT_NEW.exe
2013-09-21 19:30 - 2013-09-21 19:30 - 00891144 _____ C:\Users\Johannes\Desktop\SecurityCheck.exe
2013-09-21 19:28 - 2013-09-21 19:28 - 02347384 _____ (ESET) C:\Users\Johannes\Desktop\esetsmartinstaller_enu.exe
2013-09-20 23:52 - 2013-09-20 23:52 - 00001297 _____ C:\Users\Johannes\Desktop\JRT.txt
2013-09-20 23:48 - 2013-09-20 23:48 - 00000000 ____D C:\Windows\ERUNT
2013-09-20 23:39 - 2013-09-23 09:24 - 00000000 ____D C:\AdwCleaner
2013-09-20 23:26 - 2013-09-20 23:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-20 23:25 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-20 20:01 - 2013-09-20 20:01 - 00000000 ____D C:\Users\Johannes\AppData\Local\{22117584-3C6E-453F-BBC7-7092731FEE73}
2013-09-20 16:46 - 2013-09-20 16:46 - 00015080 _____ C:\Users\Johannes\Desktop\Addition.txt
2013-09-20 16:44 - 2013-09-20 16:44 - 00000000 ____D C:\FRST
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\sg_backup_2013-09-20-1530.spg
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\FirstBackup.spg
2013-09-20 13:45 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Local\Macromedia
2013-09-20 13:31 - 2013-09-20 13:31 - 00070728 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-20 13:29 - 2013-09-20 13:30 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Mozilla
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Local\Mozilla
2013-09-20 13:27 - 2013-09-22 22:26 - 00000000 ____D C:\Users\Gast
2013-09-20 13:27 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-09-20 13:27 - 2013-09-20 13:27 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 13:27 - 2013-09-20 13:27 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Startmenü
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-09-20 13:27 - 2009-07-14 06:42 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-20 13:27 - 2009-07-14 06:37 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-09-19 16:36 - 2013-09-19 16:36 - 00001538 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\Program Files\iPod
2013-09-18 22:04 - 2013-09-20 16:01 - 00000000 ____D C:\Users\Johannes\Desktop\backups
2013-09-17 15:49 - 2013-09-20 15:37 - 00004945 _____ C:\Users\Johannes\Desktop\hijackthis.log
2013-09-17 15:43 - 2013-08-03 16:09 - 00451617 _____ C:\Windows\system32\Drivers\etc\hosts.20130917-154319.backup
2013-09-17 14:47 - 2013-09-19 16:37 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-17 14:45 - 2013-09-19 16:15 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-17 14:45 - 2013-09-19 16:15 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-17 14:45 - 2013-09-17 14:46 - 00000000 ____D C:\Program Files\Google
2013-09-17 14:44 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Johannes\AppData\Local\Google
2013-09-16 18:11 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.006
2013-09-16 17:48 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.005
2013-09-16 17:44 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.004
2013-09-16 17:39 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.003
2013-09-16 17:35 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.002
2013-09-16 17:30 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.001
2013-09-11 18:31 - 2013-09-11 18:31 - 00000000 ___RD C:\Users\Johannes\Podcasts
2013-09-11 18:24 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 18:24 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 18:24 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 18:24 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 18:23 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 18:23 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 18:16 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 18:16 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 18:16 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 18:16 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 18:16 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 18:16 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 18:16 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 18:16 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-08 22:47 - 2013-09-17 14:08 - 00000000 ____D C:\KabelBW
2013-09-08 21:24 - 2013-09-08 21:24 - 00000647 _____ C:\Users\Johannes\Desktop\GFII - Verknüpfung.lnk
2013-09-08 20:18 - 2013-09-24 20:05 - 00678283 _____ C:\Windows\WindowsUpdate.log
2013-09-08 20:03 - 2013-09-08 20:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johannes\Desktop\HiJackThis204.exe
2013-09-05 08:25 - 2013-09-05 08:25 - 00000000 ____D C:\Users\Public\Documents\sun
2013-09-04 22:38 - 2013-09-24 15:37 - 00000000 ____D C:\GFII
2013-09-04 21:26 - 2013-09-04 21:26 - 00001054 _____ C:\Users\Public\Desktop\LibreOffice 4.0.lnk
==================== One Month Modified Files and Folders =======
2013-09-24 20:05 - 2013-09-08 20:18 - 00678283 _____ C:\Windows\WindowsUpdate.log
2013-09-24 19:54 - 2012-06-29 08:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-24 16:39 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2013-09-24 15:37 - 2013-09-04 22:38 - 00000000 ____D C:\GFII
2013-09-24 15:22 - 2009-07-14 06:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-24 15:22 - 2009-07-14 06:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-24 15:16 - 2013-09-22 18:12 - 00000672 _____ C:\Windows\setupact.log
2013-09-24 15:16 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-23 22:36 - 2013-09-23 13:04 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\vlc
2013-09-23 21:54 - 2011-10-31 10:04 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-23 21:50 - 2013-09-22 18:12 - 00003416 _____ C:\Windows\PFRO.log
2013-09-23 21:48 - 2013-09-23 21:48 - 00002388 _____ C:\Users\Johannes\Desktop\FSS.txt
2013-09-23 18:55 - 2013-09-23 18:54 - 00358923 _____ (Farbar) C:\Users\Johannes\Desktop\FSS.exe
2013-09-23 13:03 - 2013-09-23 13:03 - 00000610 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-09-23 13:01 - 2013-09-23 13:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-23 12:51 - 2013-09-23 12:51 - 00050938 _____ C:\Users\Johannes\Desktop\bookmarks-2013-09-23.json
2013-09-23 12:47 - 2011-10-31 17:39 - 00000000 ____D C:\Program Files\Java
2013-09-23 12:35 - 2013-09-23 12:35 - 00000000 ____D C:\Windows\Sun
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 12:31 - 2013-09-23 12:32 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 12:31 - 2012-06-19 08:18 - 00868264 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-09-23 12:31 - 2011-10-31 17:39 - 00790440 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-09-23 11:53 - 2013-09-23 11:53 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-09-23 11:53 - 2009-07-14 04:04 - 00002577 _____ C:\Windows\system32\config.nt
2013-09-23 11:52 - 2013-09-23 11:52 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-23 11:52 - 2013-09-23 11:49 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-23 11:51 - 2013-09-22 21:35 - 00070728 _____ C:\Users\Johannes\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-23 11:46 - 2013-09-22 18:12 - 00325448 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-23 11:46 - 2009-07-14 10:56 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-09-23 11:44 - 2013-09-23 11:14 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-23 11:10 - 2013-09-23 11:10 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JOHANNES-PC-Microsoft-Windows-7-Professional-(32-bit).dat
2013-09-23 11:09 - 2013-09-23 11:09 - 00000000 ____D C:\RegBackup
2013-09-23 10:54 - 2013-09-23 10:54 - 00003304 ____N C:\bootsqm.dat
2013-09-23 10:48 - 2013-09-23 10:48 - 00002121 _____ C:\Users\Johannes\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-09-23 10:48 - 2013-09-23 10:48 - 00000000 ____D C:\Program Files\Tweaking.com
2013-09-23 10:47 - 2013-09-23 10:47 - 05369204 _____ C:\Users\Johannes\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-09-23 10:46 - 2011-11-02 12:52 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Skype
2013-09-23 09:39 - 2011-10-31 10:22 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-23 09:24 - 2013-09-20 23:39 - 00000000 ____D C:\AdwCleaner
2013-09-23 09:21 - 2013-09-23 09:21 - 01042066 _____ C:\Users\Johannes\Desktop\adwcleaner.exe
2013-09-23 09:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-22 22:26 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast
2013-09-22 22:26 - 2012-11-04 17:45 - 00000000 ____D C:\Program Files\Avira
2013-09-22 22:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\wfp
2013-09-22 22:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2013-09-22 21:55 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Default
2013-09-22 21:36 - 2012-05-14 15:14 - 00000000 ____D C:\Program Files\Ad-Aware Antivirus
2013-09-22 21:35 - 2013-09-22 21:35 - 00000000 ____D C:\ProgramData\GFI Software
2013-09-22 21:28 - 2011-10-30 22:30 - 00000000 ____D C:\Users\Johannes
2013-09-22 21:28 - 2009-07-14 06:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-22 21:21 - 2012-02-26 17:26 - 00000000 ____D C:\Windows\Minidump
2013-09-22 20:43 - 2013-09-22 20:43 - 01089757 _____ (Farbar) C:\Users\Johannes\Desktop\FRST.exe
2013-09-22 18:12 - 2013-09-22 18:12 - 00000000 _____ C:\Windows\setuperr.log
2013-09-22 09:38 - 2013-09-22 14:16 - 01030038 _____ (Thisisu) C:\Users\Johannes\Desktop\JRT_NEW.exe
2013-09-21 19:30 - 2013-09-21 19:30 - 00891144 _____ C:\Users\Johannes\Desktop\SecurityCheck.exe
2013-09-21 19:28 - 2013-09-21 19:28 - 02347384 _____ (ESET) C:\Users\Johannes\Desktop\esetsmartinstaller_enu.exe
2013-09-20 23:52 - 2013-09-20 23:52 - 00001297 _____ C:\Users\Johannes\Desktop\JRT.txt
2013-09-20 23:48 - 2013-09-20 23:48 - 00000000 ____D C:\Windows\ERUNT
2013-09-20 23:40 - 2013-06-22 20:50 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Common
2013-09-20 23:26 - 2013-09-20 23:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-20 20:14 - 2013-08-23 13:14 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-09-20 20:01 - 2013-09-20 20:01 - 00000000 ____D C:\Users\Johannes\AppData\Local\{22117584-3C6E-453F-BBC7-7092731FEE73}
2013-09-20 18:56 - 2012-04-01 22:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-20 18:56 - 2011-11-07 16:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-20 16:46 - 2013-09-20 16:46 - 00015080 _____ C:\Users\Johannes\Desktop\Addition.txt
2013-09-20 16:44 - 2013-09-20 16:44 - 00000000 ____D C:\FRST
2013-09-20 16:01 - 2013-09-18 22:04 - 00000000 ____D C:\Users\Johannes\Desktop\backups
2013-09-20 15:37 - 2013-09-17 15:49 - 00004945 _____ C:\Users\Johannes\Desktop\hijackthis.log
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\sg_backup_2013-09-20-1530.spg
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\FirstBackup.spg
2013-09-20 13:45 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-09-20 13:45 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Local\Macromedia
2013-09-20 13:31 - 2013-09-20 13:31 - 00070728 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-20 13:30 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Mozilla
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Local\Mozilla
2013-09-20 13:27 - 2013-09-20 13:27 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 13:27 - 2013-09-20 13:27 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Startmenü
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-09-19 16:37 - 2013-09-17 14:47 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-19 16:36 - 2013-09-19 16:36 - 00001538 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\Program Files\iPod
2013-09-19 16:35 - 2011-10-31 11:24 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-09-19 16:15 - 2013-09-17 14:45 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-19 16:15 - 2013-09-17 14:45 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-18 21:55 - 2011-10-31 10:04 - 00000000 ____D C:\Users\Johannes\AppData\Local\Mozilla
2013-09-17 15:43 - 2009-07-14 04:04 - 00451617 ____R C:\Windows\system32\Drivers\etc\hosts.20130923-094815.backup
2013-09-17 14:53 - 2011-11-01 07:35 - 00000000 ____D C:\Users\Johannes\AppData\Local\Adobe
2013-09-17 14:47 - 2013-09-17 14:44 - 00000000 ____D C:\Users\Johannes\AppData\Local\Google
2013-09-17 14:46 - 2013-09-17 14:45 - 00000000 ____D C:\Program Files\Google
2013-09-17 14:23 - 2011-10-31 15:34 - 00000432 _____ C:\Windows\BRWMARK.INI
2013-09-17 14:08 - 2013-09-08 22:47 - 00000000 ____D C:\KabelBW
2013-09-16 18:11 - 2011-11-28 00:11 - 00000654 _____ C:\Users\Public\Desktop\Service-CD Lambacher Schweizer.lnk
2013-09-16 10:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-09-15 22:56 - 2013-05-24 21:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\inkscape
2013-09-15 22:55 - 2011-11-02 14:06 - 00018710 _____ C:\Users\Johannes\Documents\cc_20111102_130551.reg
2013-09-15 22:50 - 2011-10-31 11:07 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-15 22:50 - 2011-10-31 11:07 - 00000000 ____D C:\Program Files\CCleaner
2013-09-12 18:08 - 2012-09-21 19:34 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\DVDVideoSoft
2013-09-11 21:20 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-11 19:08 - 2011-10-30 22:18 - 00000000 ____D C:\Windows\Panther
2013-09-11 18:45 - 2013-04-30 18:54 - 00008532 _____ C:\Users\Johannes\Documents\cc_20130430_185441.reg
2013-09-11 18:31 - 2013-09-11 18:31 - 00000000 ___RD C:\Users\Johannes\Podcasts
2013-09-11 18:25 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-11 18:20 - 2013-08-15 07:09 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 18:17 - 2011-11-02 12:49 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-08 21:24 - 2013-09-08 21:24 - 00000647 _____ C:\Users\Johannes\Desktop\GFII - Verknüpfung.lnk
2013-09-08 20:03 - 2013-09-08 20:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johannes\Desktop\HiJackThis204.exe
2013-09-05 08:51 - 2012-08-01 16:29 - 00000000 ____D C:\Telefon
2013-09-05 08:25 - 2013-09-05 08:25 - 00000000 ____D C:\Users\Public\Documents\sun
2013-09-04 21:26 - 2013-09-04 21:26 - 00001054 _____ C:\Users\Public\Desktop\LibreOffice 4.0.lnk
2013-09-04 21:25 - 2013-04-30 19:17 - 00000000 ____D C:\Program Files\LibreOffice 4.0
2013-08-30 09:48 - 2013-09-23 11:53 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-08-30 09:47 - 2013-09-23 11:53 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-08-30 09:47 - 2013-09-23 11:52 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-22 20:23
==================== End Of Log ============================
--- --- --- --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 20-09-2013 Ran by Johannes at 2013-09-24 20:30:22 Running from C:\Users\Johannes\Desktop Boot Mode: Normal ========================================================== ==================== Installed Programs ====================== Adobe Flash Player 11 ActiveX (Version: 11.8.800.175) Adobe Flash Player 11 Plugin (Version: 11.8.800.168) Adobe Reader X (10.1.8) - Deutsch (Version: 10.1.8) Adobe Shockwave Player 11.6 (Version: 11.6.1.629) AniGra v3.6 Apple Application Support (Version: 2.3.6) Apple Mobile Device Support (Version: 7.0.0.117) Apple Software Update (Version: 2.1.3.127) avast! Free Antivirus (Version: 8.0.1497.0) Basketball Playbook 010 Bonjour (Version: 3.0.0.10) Brother HL-2030 (Version: 1.00) CCleaner (Version: 4.05) Dropbox (HKCU Version: 1.4.7) Geo GeoGebra (Version: 4.0.6.0) GEONExT 1.74 (Version: 1.74) Google Chrome (Version: 29.0.1547.76) iCloud (Version: 3.0.2.163) Inkscape 0.48.4 (Version: 0.48.4) iTunes (Version: 11.1.0.126) Java 7 Update 40 (Version: 7.0.400) Java Auto Updater (Version: 2.1.9.8) Klett Service-CD Lambacher Schweizer LibreOffice 4.0 Help Pack (German) (Version: 4.0.5.2) LibreOffice 4.0.5.2 (Version: 4.0.5.2) Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft Application Error Reporting (Version: 12.0.6012.5000) Microsoft IntelliPoint 8.2 (Version: 8.20.468.0) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1) MiKTeX 2.9 (Version: 2.9) Mozilla Firefox 24.0 (x86 de) (Version: 24.0) MSVC80_x86_v2 (Version: 1.0.3.0) MSVC90_x86 (Version: 1.0.1.2) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) NetSkat (Version: 1.1.6) PDF24 Creator 4.1.2 QuickTime (Version: 7.74.80.86) Skype Click to Call (Version: 6.3.11079) Skype™ 6.3 (Version: 6.3.107) Spybot - Search & Destroy (Version: 1.6.2) swMSM (Version: 12.0.0.1) TeXnicCenter Version 1.0 Stable RC1 (Version: Version 1.0 Stable RC1) TurboPlot v3.7e Tweaking.com - Windows Repair (All in One) (Version: 1.9.18) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1) VLC media player 2.0.8 (Version: 2.0.8) Vodafone Mobile Broadband Lite (Version: 10.1.001.26030) ==================== Restore Points ========================= 11-09-2013 16:16:27 Windows Update 15-09-2013 20:52:58 Nokia Connectivity Cable Driver wird entfernt 15-09-2013 20:54:21 PC Connectivity Solution wird entfernt 22-09-2013 18:55:35 Removed Ad-Aware Antivirus. 22-09-2013 19:19:43 Wiederherstellungsvorgang 22-09-2013 19:33:36 Removed Ad-Aware Antivirus. 23-09-2013 07:34:41 Windows Update 23-09-2013 09:09:11 Tweaking.com - Windows Repair 23-09-2013 09:51:57 avast! Free Antivirus Setup 23-09-2013 10:28:52 Installed Java 7 Update 40 23-09-2013 10:44:43 Removed Java(TM) 6 Update 37 ==================== Hosts content: ========================== 2009-07-14 04:04 - 2013-09-23 09:48 - 00451617 ___RA C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com 127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com 127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com 127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com 127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com 127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com There are 1000 more lines. ==================== Scheduled Tasks (whitelisted) ============= Task: {0D9B5D92-3A22-486D-A887-3AA21597CF27} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started Task: {1945E430-C40C-4803-AE5E-692F691C7263} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {2643654D-6FB7-4C4F-B2C8-3C23B1B077A4} - System32\Tasks\{BBDFA9ED-C2ED-4BC7-8397-5399044403A2} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed) Task: {2BF4029E-B23F-49C8-9E46-93ABEB6D1150} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd) Task: {37365FB1-3162-488F-B4A4-59A2DEC1D671} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.) Task: {38CE8E71-AC11-48D2-A2F0-A66EC2A73C09} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~1\AD-AWA~1\AdAwareLauncher.exe Task: {44E81BB2-B41F-49BB-B8FA-17313CFD2C08} - System32\Tasks\User_Feed_Synchronization-{B9CC54C7-B897-4202-891C-D462CEE6D636} => C:\Windows\system32\msfeedssync.exe [2013-03-22] (Microsoft Corporation) Task: {58DBEDEE-979E-4F51-815A-54916EBEF94A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20] (Adobe Systems Incorporated) Task: {5B3CCBD3-7160-4E64-9422-A4409EE71E3E} - System32\Tasks\{6282F6DB-3AC2-40DD-9389-2A18A888E467} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed) Task: {673ACA70-CB8A-4CA3-9883-DD67AE8F1E96} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation) Task: {69A302A1-66B6-4F3D-9342-6C8C766422FF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software) Task: {705D7BED-FF6B-41C2-95F7-F1851CA8E773} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.) Task: {CAD4C7E6-F4D3-42AF-B86A-636856062D5A} - System32\Tasks\{60739AEC-1DD6-4B45-B37C-21A0E2856B19} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed) Task: {CD0D5AEC-904A-4547-B924-718E8F8168FA} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {DA269197-B2EF-45CD-B141-21202DC66CCA} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation) Task: {F8434707-1AA8-466F-A474-D2B417DA7058} - System32\Tasks\{59851B71-B492-4BF6-852C-D17E19E8AD40} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed) Task: {FE528A3F-CE1D-45B7-92AD-9172F9A684BE} - System32\Tasks\{5B4405DB-FC64-4A8F-B691-F99103513BA8} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2011-12-05 21:17 - 2011-12-05 21:17 - 00094208 _____ (Dropbox, Inc.) C:\Users\Johannes\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll 2011-09-29 02:53 - 2011-09-29 02:53 - 00499712 _____ (Microsoft Corporation) C:\Users\Johannes\AppData\Roaming\Dropbox\bin\MSVCP71.dll 2007-07-18 23:33 - 2007-07-18 23:33 - 00348160 _____ (Microsoft Corporation) C:\Users\Johannes\AppData\Roaming\Dropbox\bin\MSVCR71.dll 2011-02-11 18:44 - 2011-02-11 18:44 - 00086016 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc 2009-07-14 02:07 - 2009-07-14 03:14 - 00064000 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\System32\l3codeca.acm 2011-09-27 08:22 - 2011-09-27 08:22 - 00053608 _____ (Open Source Software community project) C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll 2011-09-27 08:23 - 2011-09-27 08:23 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2011-09-27 08:22 - 2011-09-27 08:22 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2013-09-23 13:01 - 2013-09-11 04:26 - 03279768 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll 2013-09-10 21:55 - 2013-09-10 21:55 - 16177544 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ==================== Alternate Data Streams (whitelisted) ====== ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: SBRE Description: SBRE Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: SBRE Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ========================= Application errors: ================== Error: (09/24/2013 03:17:08 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 09:51:19 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 04:02:35 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 00:43:05 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 00:08:25 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 11:46:41 AM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 10:55:04 AM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 09:26:11 AM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/23/2013 09:14:49 AM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (09/22/2013 09:48:47 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue System errors: ============= Error: (09/24/2013 03:17:53 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: SBRE Error: (09/23/2013 09:52:07 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: SBRE Error: (09/23/2013 09:52:08 PM) (Source: WMPNetworkSvc) (User: ) Description: Dienst "WMPNetworkSvc" konnte nicht ordnungsgemäß gestartet werden, da ein Fehler "0x80070420" in "CoCreateInstance(CLSID_UPnPDeviceFinder)" aufgetreten ist. Überprüfen Sie, ob der Dienst "UPnPHost" ausgeführt wird und ob die Windows-Komponente "UPnPHost" richtig installiert ist. Error: (09/23/2013 07:52:14 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht. Error: (09/23/2013 07:03:40 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht. Error: (09/23/2013 07:03:08 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Dnscache erreicht. Error: (09/23/2013 04:02:50 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: SBRE Error: (09/23/2013 04:02:07 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (09/23/2013 04:02:07 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht. Error: (09/23/2013 00:43:17 PM) (Source: Service Control Manager) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: SBRE Microsoft Office Sessions: ========================= Error: (09/24/2013 03:17:08 PM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 09:51:19 PM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 04:02:35 PM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 00:43:05 PM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 00:08:25 PM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 11:46:41 AM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 10:55:04 AM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 09:26:11 AM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/23/2013 09:14:49 AM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue Error: (09/22/2013 09:48:47 PM) (Source: VmbService)(User: ) Description: conflictManagerTypeValue ==================== Memory info =========================== Percentage of memory in use: 49% Total physical RAM: 3000.9 MB Available physical RAM: 1516.63 MB Total Pagefile: 6000.09 MB Available Pagefile: 4468.48 MB Total Virtual: 2047.88 MB Available Virtual: 1884.9 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:148.44 GB) (Free:78.75 GB) NTFS Drive d: () (Fixed) (Total:149.55 GB) (Free:133.24 GB) NTFS Drive e: (ANSTOSS2005) (CDROM) (Total:0.66 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 240F65D6) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=148 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=150 GB) - (Type=07 NTFS) ==================== End Of Log ============================ Jetzt läufts grad auch annehmbar, allerdings habe ich keinen Neustart gemacht, Laptop war über Nacht auf Standby. |
|
25.09.2013, 18:04
| #22 | |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normalZitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
25.09.2013, 20:31
| #23 |
| | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Wenn Du mir sagst, was genau das für Programme sind und wie ich da dran komme, kann ich was deinstallieren. Bin ganz ehrlich etwas überrascht, denn ich habe eigentlich vor einiger Zeit diverse Programme gelöscht, alles was ich verwende ist, mMn Freeware... Aber vielleicht haben die ja noch Spuren hinterlassen, die ich nicht entfernen konnte. Bekomme jetzt immer einen Netzwerkfehler in Form eines IP-Adressenkonflikts gemeldet, nach dem Hochfahren. besser? FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-09-2013
Ran by Johannes (administrator) on JOHANNES-PC on 25-09-2013 21:29:08
Running from C:\Users\Johannes\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
MountPoints2: G - G:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {6fda4703-0334-11e1-b523-806e6f6e6963} - E:\Autorun.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x13ADC343A397CC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {0027DA2D-C9F2-4B0B-AE05-E2CD1BDB6CFF} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0040-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_40-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{58A2917A-9E54-4083-9509-30698A25B9AD}: [NameServer]83.224.70.54 83.224.70.77
FireFox:
========
FF ProfilePath: C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\b0cdfkte.default
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.web.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - D:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - D:\Programme\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Johannes\AppData\Roaming\Mozilla\Firefox\Profiles\b0cdfkte.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.76\pdf.dll ()
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - D:\Programme\Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll No File
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (iTunes Application Detector) - D:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Extension: (Google Docs) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Johannes\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
========================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-09-08] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 ACEDRV07; C:\Windows\system32\drivers\ACEDRV07.sys [101376 2013-01-31] (Protect Software GmbH)
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] ()
R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 SSHDRV82; C:\Windows\system32\drivers\SSHDRV82.sys [76288 2011-11-01] ()
R1 SSHDRV86; C:\Windows\system32\drivers\SSHDRV86.sys [81408 2011-11-01] ()
S3 vodafone_K3805-z_cdc_acm; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cdc_acm.sys [67584 2010-09-01] (Vodafone)
S3 vodafone_K3805-z_cdc_ecm; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cdc_ecm.sys [79360 2010-09-01] (Vodafone)
S3 vodafone_K3805-z_cpo; C:\Windows\System32\DRIVERS\vodafone_K3805-z_cpo.sys [9728 2010-09-01] (Vodafone)
R3 vodafone_K3805-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K3805-z_dc_enum.sys [61952 2010-09-01] (Vodafone)
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-25 21:18 - 2013-09-25 21:23 - 00450636 _____ C:\Windows\system32\Drivers\etc\hosts.txt
2013-09-25 21:06 - 2013-09-25 21:06 - 01088653 _____ (Farbar) C:\Users\Johannes\Desktop\FRST.exe
2013-09-25 20:51 - 2013-09-25 20:51 - 00013294 _____ C:\Users\Johannes\Documents\cc_20130925_205101.reg
2013-09-23 21:48 - 2013-09-23 21:48 - 00002388 _____ C:\Users\Johannes\Desktop\FSS.txt
2013-09-23 18:54 - 2013-09-23 18:55 - 00358923 _____ (Farbar) C:\Users\Johannes\Desktop\FSS.exe
2013-09-23 13:04 - 2013-09-25 08:24 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\vlc
2013-09-23 13:03 - 2013-09-23 13:03 - 00000610 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-09-23 13:01 - 2013-09-25 21:10 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-23 12:51 - 2013-09-23 12:51 - 00050938 _____ C:\Users\Johannes\Desktop\bookmarks-2013-09-23.json
2013-09-23 12:35 - 2013-09-23 12:35 - 00000000 ____D C:\Windows\Sun
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 12:32 - 2013-09-23 12:31 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 12:32 - 2013-09-23 12:31 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 11:53 - 2013-09-23 11:53 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-09-23 11:53 - 2013-08-30 09:48 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-09-23 11:53 - 2013-08-30 09:48 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-09-23 11:53 - 2013-08-30 09:47 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-09-23 11:52 - 2013-09-23 11:52 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-23 11:52 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-09-23 11:49 - 2013-09-23 11:52 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-23 11:14 - 2013-09-23 11:44 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-23 11:10 - 2013-09-23 11:10 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JOHANNES-PC-Microsoft-Windows-7-Professional-(32-bit).dat
2013-09-23 11:09 - 2013-09-23 11:09 - 00000000 ____D C:\RegBackup
2013-09-23 10:54 - 2013-09-23 10:54 - 00003304 ____N C:\bootsqm.dat
2013-09-23 10:48 - 2013-09-23 10:48 - 00002121 _____ C:\Users\Johannes\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-09-23 10:48 - 2013-09-23 10:48 - 00000000 ____D C:\Program Files\Tweaking.com
2013-09-23 10:47 - 2013-09-23 10:47 - 05369204 _____ C:\Users\Johannes\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-09-23 09:21 - 2013-09-23 09:21 - 01042066 _____ C:\Users\Johannes\Desktop\adwcleaner.exe
2013-09-22 21:35 - 2013-09-22 21:35 - 00000000 ____D C:\ProgramData\GFI Software
2013-09-22 14:16 - 2013-09-22 09:38 - 01030038 _____ (Thisisu) C:\Users\Johannes\Desktop\JRT_NEW.exe
2013-09-21 19:30 - 2013-09-21 19:30 - 00891144 _____ C:\Users\Johannes\Desktop\SecurityCheck.exe
2013-09-21 19:28 - 2013-09-21 19:28 - 02347384 _____ (ESET) C:\Users\Johannes\Desktop\esetsmartinstaller_enu.exe
2013-09-20 23:52 - 2013-09-20 23:52 - 00001297 _____ C:\Users\Johannes\Desktop\JRT.txt
2013-09-20 23:48 - 2013-09-20 23:48 - 00000000 ____D C:\Windows\ERUNT
2013-09-20 23:39 - 2013-09-23 09:24 - 00000000 ____D C:\AdwCleaner
2013-09-20 23:26 - 2013-09-20 23:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-20 23:25 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-20 20:01 - 2013-09-20 20:01 - 00000000 ____D C:\Users\Johannes\AppData\Local\{22117584-3C6E-453F-BBC7-7092731FEE73}
2013-09-20 16:46 - 2013-09-25 21:20 - 00011513 _____ C:\Users\Johannes\Desktop\Addition.txt
2013-09-20 16:44 - 2013-09-20 16:44 - 00000000 ____D C:\FRST
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\sg_backup_2013-09-20-1530.spg
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\FirstBackup.spg
2013-09-20 13:45 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Local\Macromedia
2013-09-20 13:31 - 2013-09-20 13:31 - 00070728 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-20 13:29 - 2013-09-20 13:30 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Mozilla
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Local\Mozilla
2013-09-20 13:27 - 2013-09-22 22:26 - 00000000 ____D C:\Users\Gast
2013-09-20 13:27 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-09-20 13:27 - 2013-09-20 13:27 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 13:27 - 2013-09-20 13:27 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Startmenü
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-09-20 13:27 - 2009-07-14 06:42 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-09-20 13:27 - 2009-07-14 06:37 - 00000000 ___RD C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-09-19 16:36 - 2013-09-19 16:36 - 00001538 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\Program Files\iPod
2013-09-18 22:04 - 2013-09-20 16:01 - 00000000 ____D C:\Users\Johannes\Desktop\backups
2013-09-17 15:49 - 2013-09-20 15:37 - 00004945 _____ C:\Users\Johannes\Desktop\hijackthis.log
2013-09-17 15:43 - 2013-08-03 16:09 - 00451617 _____ C:\Windows\system32\Drivers\etc\hosts.20130917-154319.backup
2013-09-17 14:47 - 2013-09-19 16:37 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-17 14:45 - 2013-09-19 16:15 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-17 14:45 - 2013-09-19 16:15 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-17 14:45 - 2013-09-17 14:46 - 00000000 ____D C:\Program Files\Google
2013-09-17 14:44 - 2013-09-17 14:47 - 00000000 ____D C:\Users\Johannes\AppData\Local\Google
2013-09-16 18:11 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.006
2013-09-16 17:48 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.005
2013-09-16 17:44 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.004
2013-09-16 17:39 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.003
2013-09-16 17:35 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.002
2013-09-16 17:30 - 1997-01-22 16:47 - 00018192 _____ (Microsoft Corporation) C:\Windows\system32\temp.001
2013-09-11 18:31 - 2013-09-11 18:31 - 00000000 ___RD C:\Users\Johannes\Podcasts
2013-09-11 18:24 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-11 18:24 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-11 18:24 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-11 18:24 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-11 18:24 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-11 18:23 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-11 18:23 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-11 18:23 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-11 18:16 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-11 18:16 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-11 18:16 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-11 18:16 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-11 18:16 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-11 18:16 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-11 18:16 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-11 18:16 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-11 18:16 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-08 22:47 - 2013-09-17 14:08 - 00000000 ____D C:\KabelBW
2013-09-08 21:24 - 2013-09-08 21:24 - 00000647 _____ C:\Users\Johannes\Desktop\GFII - Verknüpfung.lnk
2013-09-08 20:18 - 2013-09-25 20:29 - 00803555 ____N C:\Windows\WindowsUpdate.log
2013-09-08 20:03 - 2013-09-08 20:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johannes\Desktop\HiJackThis204.exe
2013-09-05 08:25 - 2013-09-05 08:25 - 00000000 ____D C:\Users\Public\Documents\sun
2013-09-04 22:38 - 2013-09-24 15:37 - 00000000 ____D C:\GFII
2013-09-04 21:26 - 2013-09-04 21:26 - 00001054 _____ C:\Users\Public\Desktop\LibreOffice 4.0.lnk
==================== One Month Modified Files and Folders =======
2013-09-25 21:23 - 2013-09-25 21:18 - 00450636 _____ C:\Windows\system32\Drivers\etc\hosts.txt
2013-09-25 21:20 - 2013-09-20 16:46 - 00011513 _____ C:\Users\Johannes\Desktop\Addition.txt
2013-09-25 21:10 - 2013-09-23 13:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-25 21:06 - 2013-09-25 21:06 - 01088653 _____ (Farbar) C:\Users\Johannes\Desktop\FRST.exe
2013-09-25 20:54 - 2012-06-29 08:17 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-25 20:53 - 2011-10-31 10:22 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-25 20:53 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\LogFiles
2013-09-25 20:51 - 2013-09-25 20:51 - 00013294 _____ C:\Users\Johannes\Documents\cc_20130925_205101.reg
2013-09-25 20:29 - 2013-09-08 20:18 - 00803555 ____N C:\Windows\WindowsUpdate.log
2013-09-25 11:40 - 2009-07-14 06:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-25 11:40 - 2009-07-14 06:34 - 00014976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-25 11:20 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-25 08:24 - 2013-09-23 13:04 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\vlc
2013-09-24 21:28 - 2011-11-02 12:52 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Skype
2013-09-24 16:39 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2013-09-24 15:37 - 2013-09-04 22:38 - 00000000 ____D C:\GFII
2013-09-23 21:54 - 2011-10-31 10:04 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-23 21:48 - 2013-09-23 21:48 - 00002388 _____ C:\Users\Johannes\Desktop\FSS.txt
2013-09-23 18:55 - 2013-09-23 18:54 - 00358923 _____ (Farbar) C:\Users\Johannes\Desktop\FSS.exe
2013-09-23 13:03 - 2013-09-23 13:03 - 00000610 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-09-23 12:51 - 2013-09-23 12:51 - 00050938 _____ C:\Users\Johannes\Desktop\bookmarks-2013-09-23.json
2013-09-23 12:47 - 2011-10-31 17:39 - 00000000 ____D C:\Program Files\Java
2013-09-23 12:35 - 2013-09-23 12:35 - 00000000 ____D C:\Windows\Sun
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 12:34 - 2013-09-23 12:34 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 12:31 - 2013-09-23 12:32 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 12:31 - 2013-09-23 12:32 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 12:31 - 2012-06-19 08:18 - 00868264 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-09-23 12:31 - 2011-10-31 17:39 - 00790440 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-09-23 11:53 - 2013-09-23 11:53 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-09-23 11:53 - 2009-07-14 04:04 - 00002577 _____ C:\Windows\system32\config.nt
2013-09-23 11:52 - 2013-09-23 11:52 - 00000000 ____D C:\Program Files\AVAST Software
2013-09-23 11:52 - 2013-09-23 11:49 - 00000000 ____D C:\ProgramData\AVAST Software
2013-09-23 11:46 - 2009-07-14 10:56 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-09-23 11:44 - 2013-09-23 11:14 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-09-23 11:10 - 2013-09-23 11:10 - 00000207 _____ C:\Windows\tweaking.com-regbackup-JOHANNES-PC-Microsoft-Windows-7-Professional-(32-bit).dat
2013-09-23 11:09 - 2013-09-23 11:09 - 00000000 ____D C:\RegBackup
2013-09-23 10:54 - 2013-09-23 10:54 - 00003304 ____N C:\bootsqm.dat
2013-09-23 10:48 - 2013-09-23 10:48 - 00002121 _____ C:\Users\Johannes\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-09-23 10:48 - 2013-09-23 10:48 - 00000000 ____D C:\Program Files\Tweaking.com
2013-09-23 10:47 - 2013-09-23 10:47 - 05369204 _____ C:\Users\Johannes\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-09-23 09:24 - 2013-09-20 23:39 - 00000000 ____D C:\AdwCleaner
2013-09-23 09:21 - 2013-09-23 09:21 - 01042066 _____ C:\Users\Johannes\Desktop\adwcleaner.exe
2013-09-22 22:26 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast
2013-09-22 22:26 - 2012-11-04 17:45 - 00000000 ____D C:\Program Files\Avira
2013-09-22 22:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\wfp
2013-09-22 22:26 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2013-09-22 21:55 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Default
2013-09-22 21:36 - 2012-05-14 15:14 - 00000000 ____D C:\Program Files\Ad-Aware Antivirus
2013-09-22 21:35 - 2013-09-22 21:35 - 00000000 ____D C:\ProgramData\GFI Software
2013-09-22 21:28 - 2011-10-30 22:30 - 00000000 ____D C:\Users\Johannes
2013-09-22 21:28 - 2009-07-14 06:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-22 21:21 - 2012-02-26 17:26 - 00000000 ____D C:\Windows\Minidump
2013-09-22 09:38 - 2013-09-22 14:16 - 01030038 _____ (Thisisu) C:\Users\Johannes\Desktop\JRT_NEW.exe
2013-09-21 19:30 - 2013-09-21 19:30 - 00891144 _____ C:\Users\Johannes\Desktop\SecurityCheck.exe
2013-09-21 19:28 - 2013-09-21 19:28 - 02347384 _____ (ESET) C:\Users\Johannes\Desktop\esetsmartinstaller_enu.exe
2013-09-20 23:52 - 2013-09-20 23:52 - 00001297 _____ C:\Users\Johannes\Desktop\JRT.txt
2013-09-20 23:48 - 2013-09-20 23:48 - 00000000 ____D C:\Windows\ERUNT
2013-09-20 23:40 - 2013-06-22 20:50 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Common
2013-09-20 23:26 - 2013-09-20 23:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-20 23:25 - 2013-09-20 23:25 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-09-20 20:14 - 2013-08-23 13:14 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2013-09-20 20:01 - 2013-09-20 20:01 - 00000000 ____D C:\Users\Johannes\AppData\Local\{22117584-3C6E-453F-BBC7-7092731FEE73}
2013-09-20 18:56 - 2012-04-01 22:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-20 18:56 - 2011-11-07 16:20 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-20 16:44 - 2013-09-20 16:44 - 00000000 ____D C:\FRST
2013-09-20 16:01 - 2013-09-18 22:04 - 00000000 ____D C:\Users\Johannes\Desktop\backups
2013-09-20 15:37 - 2013-09-17 15:49 - 00004945 _____ C:\Users\Johannes\Desktop\hijackthis.log
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\sg_backup_2013-09-20-1530.spg
2013-09-20 15:30 - 2013-09-20 15:30 - 00002714 _____ C:\Users\Johannes\Desktop\FirstBackup.spg
2013-09-20 13:45 - 2013-09-20 13:45 - 00000000 ____D C:\Users\Gast\AppData\Local\Adobe
2013-09-20 13:45 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Macromedia
2013-09-20 13:33 - 2013-09-20 13:33 - 00000000 ____D C:\Users\Gast\AppData\Local\Macromedia
2013-09-20 13:31 - 2013-09-20 13:31 - 00070728 _____ C:\Users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
2013-09-20 13:30 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Mozilla
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Apple Computer
2013-09-20 13:29 - 2013-09-20 13:29 - 00000000 ____D C:\Users\Gast\AppData\Local\Mozilla
2013-09-20 13:27 - 2013-09-20 13:27 - 00001421 _____ C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 13:27 - 2013-09-20 13:27 - 00000020 ___SH C:\Users\Gast\ntuser.ini
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Startmenü
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Netzwerkumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Druckumgebung
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Musik
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\Documents\Eigene Bilder
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 _SHDL C:\Users\Gast\AppData\Local\Verlauf
2013-09-20 13:27 - 2013-09-20 13:27 - 00000000 ____D C:\Users\Gast\AppData\Local\VirtualStore
2013-09-19 16:37 - 2013-09-17 14:47 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-19 16:36 - 2013-09-19 16:36 - 00001538 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-09-19 16:35 - 2013-09-19 16:35 - 00000000 ____D C:\Program Files\iPod
2013-09-19 16:35 - 2011-10-31 11:24 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-09-19 16:15 - 2013-09-17 14:45 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-19 16:15 - 2013-09-17 14:45 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-18 21:55 - 2011-10-31 10:04 - 00000000 ____D C:\Users\Johannes\AppData\Local\Mozilla
2013-09-17 15:43 - 2009-07-14 04:04 - 00451617 ____R C:\Windows\system32\Drivers\etc\hosts.20130923-094815.backup
2013-09-17 14:53 - 2011-11-01 07:35 - 00000000 ____D C:\Users\Johannes\AppData\Local\Adobe
2013-09-17 14:47 - 2013-09-17 14:44 - 00000000 ____D C:\Users\Johannes\AppData\Local\Google
2013-09-17 14:46 - 2013-09-17 14:45 - 00000000 ____D C:\Program Files\Google
2013-09-17 14:23 - 2011-10-31 15:34 - 00000432 _____ C:\Windows\BRWMARK.INI
2013-09-17 14:08 - 2013-09-08 22:47 - 00000000 ____D C:\KabelBW
2013-09-16 18:11 - 2011-11-28 00:11 - 00000654 _____ C:\Users\Public\Desktop\Service-CD Lambacher Schweizer.lnk
2013-09-16 10:32 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-09-15 22:56 - 2013-05-24 21:26 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\inkscape
2013-09-15 22:55 - 2011-11-02 14:06 - 00018710 _____ C:\Users\Johannes\Documents\cc_20111102_130551.reg
2013-09-15 22:50 - 2011-10-31 11:07 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-15 22:50 - 2011-10-31 11:07 - 00000000 ____D C:\Program Files\CCleaner
2013-09-12 18:08 - 2012-09-21 19:34 - 00000000 ____D C:\Users\Johannes\AppData\Roaming\DVDVideoSoft
2013-09-11 21:20 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-11 19:08 - 2011-10-30 22:18 - 00000000 ____D C:\Windows\Panther
2013-09-11 18:45 - 2013-04-30 18:54 - 00008532 _____ C:\Users\Johannes\Documents\cc_20130430_185441.reg
2013-09-11 18:31 - 2013-09-11 18:31 - 00000000 ___RD C:\Users\Johannes\Podcasts
2013-09-11 18:25 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-11 18:20 - 2013-08-15 07:09 - 00000000 ____D C:\Windows\system32\MRT
2013-09-11 18:17 - 2011-11-02 12:49 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-08 21:24 - 2013-09-08 21:24 - 00000647 _____ C:\Users\Johannes\Desktop\GFII - Verknüpfung.lnk
2013-09-08 20:03 - 2013-09-08 20:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Johannes\Desktop\HiJackThis204.exe
2013-09-05 08:51 - 2012-08-01 16:29 - 00000000 ____D C:\Telefon
2013-09-05 08:25 - 2013-09-05 08:25 - 00000000 ____D C:\Users\Public\Documents\sun
2013-09-04 21:26 - 2013-09-04 21:26 - 00001054 _____ C:\Users\Public\Desktop\LibreOffice 4.0.lnk
2013-09-04 21:25 - 2013-04-30 19:17 - 00000000 ____D C:\Program Files\LibreOffice 4.0
2013-08-30 09:48 - 2013-09-23 11:53 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-08-30 09:48 - 2013-09-23 11:53 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-08-30 09:47 - 2013-09-23 11:53 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-08-30 09:47 - 2013-09-23 11:52 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-22 20:23
==================== End Of Log ============================
--- --- --- --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-09-2013
Ran by Johannes at 2013-09-25 21:29:50
Running from C:\Users\Johannes\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 11 ActiveX (Version: 11.8.800.175)
Adobe Flash Player 11 Plugin (Version: 11.8.800.168)
Adobe Reader X (10.1.8) - Deutsch (Version: 10.1.8)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
AniGra v3.6
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 8.0.1497.0)
Basketball Playbook 010
Bonjour (Version: 3.0.0.10)
Brother HL-2030 (Version: 1.00)
CCleaner (Version: 4.05)
Dropbox (HKCU Version: 1.4.7)
Geo
GeoGebra (Version: 4.0.6.0)
GEONExT 1.74 (Version: 1.74)
Google Chrome (Version: 29.0.1547.76)
iCloud (Version: 3.0.2.163)
Inkscape 0.48.4 (Version: 0.48.4)
iTunes (Version: 11.1.0.126)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
Klett Service-CD Lambacher Schweizer
LibreOffice 4.0 Help Pack (German) (Version: 4.0.5.2)
LibreOffice 4.0.5.2 (Version: 4.0.5.2)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
MiKTeX 2.9 (Version: 2.9)
Mozilla Firefox 24.0 (x86 de) (Version: 24.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x86 (Version: 1.0.1.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NetSkat (Version: 1.1.6)
PDF24 Creator 4.1.2
QuickTime (Version: 7.74.80.86)
Skype Click to Call (Version: 6.3.11079)
Skype™ 6.3 (Version: 6.3.107)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
TeXnicCenter Version 1.0 Stable RC1 (Version: Version 1.0 Stable RC1)
TurboPlot v3.7e
Tweaking.com - Windows Repair (All in One) (Version: 1.9.18)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
VLC media player 2.0.8 (Version: 2.0.8)
Vodafone Mobile Broadband Lite (Version: 10.1.001.26030)
==================== Restore Points =========================
11-09-2013 16:16:27 Windows Update
15-09-2013 20:52:58 Nokia Connectivity Cable Driver wird entfernt
15-09-2013 20:54:21 PC Connectivity Solution wird entfernt
22-09-2013 18:55:35 Removed Ad-Aware Antivirus.
22-09-2013 19:19:43 Wiederherstellungsvorgang
22-09-2013 19:33:36 Removed Ad-Aware Antivirus.
23-09-2013 07:34:41 Windows Update
23-09-2013 09:09:11 Tweaking.com - Windows Repair
23-09-2013 09:51:57 avast! Free Antivirus Setup
23-09-2013 10:28:52 Installed Java 7 Update 40
23-09-2013 10:44:43 Removed Java(TM) 6 Update 37
==================== Hosts content: ==========================
2009-07-14 04:04 - 2013-09-25 21:27 - 00450638 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {2643654D-6FB7-4C4F-B2C8-3C23B1B077A4} - System32\Tasks\{BBDFA9ED-C2ED-4BC7-8397-5399044403A2} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed)
Task: {2BF4029E-B23F-49C8-9E46-93ABEB6D1150} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {37365FB1-3162-488F-B4A4-59A2DEC1D671} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.)
Task: {38CE8E71-AC11-48D2-A2F0-A66EC2A73C09} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~1\AD-AWA~1\AdAwareLauncher.exe
Task: {44E81BB2-B41F-49BB-B8FA-17313CFD2C08} - System32\Tasks\User_Feed_Synchronization-{B9CC54C7-B897-4202-891C-D462CEE6D636} => C:\Windows\system32\msfeedssync.exe [2013-03-22] (Microsoft Corporation)
Task: {58DBEDEE-979E-4F51-815A-54916EBEF94A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-20] (Adobe Systems Incorporated)
Task: {5B3CCBD3-7160-4E64-9422-A4409EE71E3E} - System32\Tasks\{6282F6DB-3AC2-40DD-9389-2A18A888E467} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed)
Task: {69A302A1-66B6-4F3D-9342-6C8C766422FF} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: {705D7BED-FF6B-41C2-95F7-F1851CA8E773} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-09-17] (Google Inc.)
Task: {95461C87-4BCE-4FF6-8261-10518FACDCE5} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2012-08-25] (Microsoft Corporation)
Task: {CAD4C7E6-F4D3-42AF-B86A-636856062D5A} - System32\Tasks\{60739AEC-1DD6-4B45-B37C-21A0E2856B19} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed)
Task: {CD0D5AEC-904A-4547-B924-718E8F8168FA} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {DA269197-B2EF-45CD-B141-21202DC66CCA} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2011-08-01] (Microsoft Corporation)
Task: {F8434707-1AA8-466F-A474-D2B417DA7058} - System32\Tasks\{59851B71-B492-4BF6-852C-D17E19E8AD40} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed)
Task: {FE528A3F-CE1D-45B7-92AD-9172F9A684BE} - System32\Tasks\{5B4405DB-FC64-4A8F-B691-F99103513BA8} => D:\Programme\Zgame\Z\CD\SETUP.EXE [1996-07-20] (Transpeed)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-12-05 21:17 - 2011-12-05 21:17 - 00094208 _____ (Dropbox, Inc.) C:\Users\Johannes\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
2011-09-29 02:53 - 2011-09-29 02:53 - 00499712 _____ (Microsoft Corporation) C:\Users\Johannes\AppData\Roaming\Dropbox\bin\MSVCP71.dll
2007-07-18 23:33 - 2007-07-18 23:33 - 00348160 _____ (Microsoft Corporation) C:\Users\Johannes\AppData\Roaming\Dropbox\bin\MSVCR71.dll
2011-02-11 18:44 - 2011-02-11 18:44 - 00086016 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2009-07-14 02:07 - 2009-07-14 03:14 - 00064000 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\System32\l3codeca.acm
2013-09-23 13:01 - 2013-09-11 04:26 - 03279768 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-09-10 21:55 - 2013-09-10 21:55 - 16177544 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 42%
Total physical RAM: 3000.9 MB
Available physical RAM: 1737.66 MB
Total Pagefile: 6000.09 MB
Available Pagefile: 4709.89 MB
Total Virtual: 2047.88 MB
Available Virtual: 1895.23 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.44 GB) (Free:78.29 GB) NTFS
Drive d: () (Fixed) (Total:149.55 GB) (Free:133.24 GB) NTFS
Drive e: (ANSTOSS2005) (CDROM) (Total:0.66 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 240F65D6)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=150 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
26.09.2013, 08:56
| #24 |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Jetzt noch nen konflikt? Das Problem ist nicht der Rechner. Jetzt nochmal kurz zusammen fassen: Wieviele Rechner hängen im Netz? Router vorhanden? Router mal auf Werkseinstellungen zurückgesetzt und mal 30min vom Strom getrennt?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.09.2013, 19:37
| #25 |
| | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Also, es hängt nur mein Laptop am Netz, bzw. Smartphone, da läufst aber normal. Ich habe den Eindruck, dass es besser wird, je länger der Laptop läuft. Könnte das eine Altersschwäche sein? Laptop ist etwa 6 Jahre alt. Router (ist Modem für Inet, Telefon und tv in einem; KabelBW) ist erst seit September installiert und habe aber trotzdem mindestens 30 min abgehängt. Werde etwa gegen 16 Uhr wieder dransitzen. Es sind immer noch die selben Symptome festzustellen. Woran könnte es sonst noch liegen? |
|
27.09.2013, 08:50
| #26 |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Sehr komisch. Ich würd an der Stelle ein Inplace Upgrade versuchen oder einfach mal Daten sichern und sauber neuaufsetzen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.09.2013, 12:13
| #27 |
| | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal "Inplace Upgrate" was ist das? |
|
28.09.2013, 08:32
| #28 |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Schau mal hier: "In Place Upgrade"
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
29.09.2013, 19:33
| #29 |
| | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal Ah ok, dann werd ich das mal probieren... Upgrate wollte er nicht, weil die aktuelle Version neuer ist als die auf der DVD vorhandene... Schweren Herzens hab ich jetzt neu aufgesetzt und jetzt flutscht's wie's das auch soll... Ich danke dir für Deine Geduld! |
|
30.09.2013, 08:54
| #30 |
| /// the machine /// TB-Ausbilder | Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal ok 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Seitenaufbau im Internet extrem langsam, Textprogramme oder Spiele und ähnliche Programme laufen normal |
| acrobat update, ad-aware, adobe, adobe flash player, antivir, antivirus, avg, avira, bho, bonjour, browser, desktop, explorer, firefox, flash player, helper, hijackthis, internet, internet explorer, langsam, object, opera, plug-in, programme, software, system, windows |
Linear-Darstellung
