Windows 8 ; immer langsamer, hängt und friert ein

schrauber · 18.10.2013, 18:18

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

snoozle_s · 18.10.2013, 21:12

hallo schraube,

habe die Weisungen exakt ausgeführt

es folgen die Log´s

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.18.09

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16384
mein Name :: NAME [Administrator]

18.10.2013 21:02:36
mbam-log-2013-10-18 (21-02-36).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 203131
Laufzeit: 3 Minute(n), 25 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Code:

ATTFilter

# AdwCleaner v3.008 - Bericht erstellt am 18/10/2013 um 21:28:04
# Updated 17/10/2013 von Xplode
# Betriebssystem : Windows 8  (64 bits)
# Benutzername : mein Name - NAME
# Gestartet von : C:\Users\mein Name\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Datei Gelöscht : C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\heoldelcflnigdllmlopiefhkkobendj
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16384


-\\ Mozilla Firefox v24.0 (de)

[ Datei : C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1792 octets] - [07/10/2013 12:50:17]
AdwCleaner[R1].txt - [1852 octets] - [07/10/2013 13:09:05]
AdwCleaner[R2].txt - [1874 octets] - [18/10/2013 21:16:46]
AdwCleaner[S0].txt - [1669 octets] - [07/10/2013 13:09:43]
AdwCleaner[S1].txt - [1795 octets] - [18/10/2013 21:28:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1855 octets] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 8 x64
Ran by mein Name on 18.10.2013 at 21:39:12,27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{94B26480-D04E-468B-85A0-89A447BF8438}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{94B26480-D04E-468B-85A0-89A447BF8438}



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 18.10.2013 at 21:41:37,23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by mein Name (administrator) on NAME on 18-10-2013 21:45:56
Running from C:\Users\mein Name\Desktop
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Intel(R) Corporation) c:\Program Files\Intel\iCLS Client\HeciServer.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [BeatsOSDApp] - C:\Program Files\IDT\WDM\beats64.exe [37888 2012-08-10] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-10] (IDT, Inc.)
HKLM\...\Run: [Trend Micro Client Framework] - C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [221584 2013-07-23] (Trend Micro Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK13/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK13/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK13/4
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM - {94B26480-D04E-468B-85A0-89A447BF8438} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
BHO: TmIEPlugInBHO Class - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg.dll (Trend Micro Inc.)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe64.dll (Trend Micro Inc.)
BHO-x32: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg32.dll (Trend Micro Inc.)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - TrendMicro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg.dll (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} -  No File
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg32.dll (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default
FF Homepage: hxxp://www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll (Trend Micro Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: savedpasswordeditor - C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\Extensions\savedpasswordeditor@daniel.dawson.xpi
FF Extension: No Name - C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\
FF Extension: Trend Micro Osprey Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\chrome_tmbep.crx
CHR HKLM-x32\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\chrome_tmbep.crx
CHR HKLM-x32\...\Chrome\Extension: [fmgckcapmffomaifonnhgkfdgljnkpgi] - C:\Program Files\Trend Micro\AMSP\module\20013\ChromeExt\chromeextension\TmOspreychromeExt.crx

==================== Services (Whitelisted) =================

R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)
S2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [x]

==================== Drivers (Whitelisted) ====================

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [116264 2013-09-04] (Trend Micro Inc.)
R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [282624 2013-09-04] (Trend Micro Inc.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2013-07-01] (Trend Micro Inc.)
R3 tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [100640 2013-06-13] (Trend Micro Inc.)
S0 tmel; C:\Windows\System32\DRIVERS\tmel.sys [37904 2013-07-11] (Trend Micro Inc.)
R1 tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [85424 2013-09-04] (Trend Micro Inc.)
R3 tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [303392 2013-05-15] (Trend Micro Inc.)
R2 tmusa; C:\Windows\system32\DRIVERS\tmusa.sys [103712 2013-07-08] (Trend Micro Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [30208 2012-07-26] (Microsoft Corporation)
U2 TMAgent; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-18 21:41 - 2013-10-18 21:41 - 00000909 _____ C:\Users\mein Name\Desktop\JRT.txt
2013-10-18 21:39 - 2013-10-18 21:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-18 21:36 - 2013-10-18 21:36 - 01033335 _____ (Thisisu) C:\Users\mein Name\Desktop\JRT.exe
2013-10-18 21:30 - 2013-10-18 21:30 - 00001935 _____ C:\Users\mein Name\Desktop\AdwCleaner[S1].txt
2013-10-18 21:12 - 2013-10-18 21:12 - 01050644 _____ C:\Users\mein Name\Desktop\adwcleaner.exe
2013-10-18 21:09 - 2013-10-18 21:10 - 00000000 ____D C:\Users\mein Name\Desktop\erster durchlauf
2013-10-18 20:56 - 2013-10-18 20:56 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-18 20:56 - 2013-10-18 20:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-18 20:56 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-18 20:51 - 2013-10-18 20:51 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\mein Name\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-18 20:04 - 2013-10-18 20:04 - 00000117 _____ C:\Windows\system32\netcfg-82687218.txt
2013-10-18 18:19 - 2013-10-18 18:19 - 00000117 _____ C:\Windows\system32\netcfg-76396171.txt
2013-10-18 17:00 - 2013-10-18 17:00 - 00000117 _____ C:\Windows\system32\netcfg-71628218.txt
2013-10-18 16:33 - 2013-10-18 16:33 - 00000117 _____ C:\Windows\system32\netcfg-70002812.txt
2013-10-18 16:06 - 2013-10-18 16:06 - 00000117 _____ C:\Windows\system32\netcfg-68416562.txt
2013-10-18 16:03 - 2013-10-18 16:03 - 00000117 _____ C:\Windows\system32\netcfg-68218906.txt
2013-10-18 11:52 - 2013-10-18 11:58 - 00000000 ____D C:\Qoobox
2013-10-18 11:52 - 2013-10-18 11:57 - 00000000 ____D C:\Windows\erdnt
2013-10-18 11:52 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-18 11:52 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-18 11:52 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-18 11:48 - 2013-10-18 11:48 - 05134711 ____R (Swearware) C:\Users\mein Name\Desktop\ComboFix.exe
2013-10-18 11:38 - 2013-10-18 11:38 - 00000117 _____ C:\Windows\system32\netcfg-52339421.txt
2013-10-18 02:04 - 2013-10-18 02:04 - 00000117 _____ C:\Windows\system32\netcfg-17904453.txt
2013-10-17 21:08 - 2013-10-17 21:08 - 00000117 _____ C:\Windows\system32\netcfg-139281.txt
2013-10-17 20:45 - 2013-10-17 20:45 - 00000117 _____ C:\Windows\system32\netcfg-15628828.txt
2013-10-17 20:29 - 2013-10-17 20:29 - 00377856 _____ C:\Users\mein Name\Desktop\gmer_2.1.19163.exe
2013-10-17 20:21 - 2013-10-17 20:21 - 00000000 ____D C:\FRST
2013-10-17 20:15 - 2013-10-17 20:15 - 01954124 _____ (Farbar) C:\Users\mein Name\Desktop\FRST64.exe
2013-10-17 20:13 - 2013-10-17 20:13 - 00000000 _____ C:\Users\mein Name\defogger_reenable
2013-10-17 20:10 - 2013-10-17 20:10 - 00050477 _____ C:\Users\mein Name\Desktop\Defogger.exe
2013-10-17 20:00 - 2013-10-17 20:00 - 00000117 _____ C:\Windows\system32\netcfg-12919140.txt
2013-10-17 19:31 - 2013-10-17 19:31 - 00000117 _____ C:\Windows\system32\netcfg-11188875.txt
2013-10-17 18:46 - 2013-10-17 22:01 - 00003026 _____ C:\Users\mein Name\Desktop\trojaner board.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862437.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862234.txt
2013-10-17 16:13 - 2013-10-17 16:13 - 00000117 _____ C:\Windows\system32\netcfg-12582312.txt
2013-10-17 16:11 - 2013-10-17 16:11 - 00000117 _____ C:\Windows\system32\netcfg-12431531.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764437.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764000.txt
2013-10-17 12:55 - 2013-10-17 12:55 - 00000000 ____D C:\TMRescueDisk
2013-10-17 12:50 - 2013-10-17 12:50 - 00001429 _____ C:\Users\mein Name\Desktop\Trend Micro Titanium Internet Security.lnk
2013-10-17 12:50 - 2013-10-17 12:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium Internet Security
2013-10-17 12:50 - 2013-09-04 08:24 - 00116264 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmactmon.sys
2013-10-17 12:50 - 2013-09-04 08:22 - 00085424 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmevtmgr.sys
2013-10-17 12:50 - 2013-09-04 08:17 - 00282624 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
2013-10-17 12:50 - 2013-07-11 04:39 - 00037904 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmel.sys
2013-10-17 12:50 - 2013-07-08 05:16 - 00103712 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmusa.sys
2013-10-17 12:50 - 2013-07-01 15:08 - 00050976 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\TMEBC64.sys
2013-10-17 12:50 - 2013-06-13 08:35 - 00100640 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmeevw.sys
2013-10-17 12:50 - 2013-05-15 12:23 - 00303392 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmnciesc.sys
2013-10-17 12:49 - 2013-10-17 12:49 - 00003268 _____ C:\Windows\System32\Tasks\Titanium BTC
2013-10-17 12:48 - 2013-10-17 16:26 - 00000000 ____D C:\ProgramData\Trend Micro
2013-10-17 12:48 - 2013-10-17 12:48 - 00000059 _____ C:\Windows\system32\SupportTool.exe.bat
2013-10-17 12:47 - 2013-10-17 12:48 - 00000000 ____D C:\Program Files\Trend Micro
2013-10-17 12:45 - 2013-10-17 12:45 - 00000036 _____ C:\Users\mein Name\AppData\Local\housecall.guid.cache
2013-10-17 12:43 - 2013-10-17 12:43 - 00000000 ____D C:\Users\mein Name\AppData\Local\Trend Micro
2013-10-17 12:37 - 2013-10-17 12:41 - 115016720 _____ (Trend Micro Inc.) C:\Users\Public\Desktop\Trend_Micro.exe
2013-10-17 12:34 - 2013-10-17 12:34 - 06631240 _____ (Trend Micro Inc.) C:\Users\mein Name\Desktop\Titanium_Internet_Security_2014.exe
2013-10-17 12:20 - 2013-10-17 12:20 - 00000117 _____ C:\Windows\system32\netcfg-45127859.txt
2013-10-17 12:01 - 2013-10-17 12:01 - 00000117 _____ C:\Windows\system32\netcfg-44028093.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42720328.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42698062.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42687218.txt
2013-10-17 11:28 - 2013-10-17 11:28 - 00000117 _____ C:\Windows\system32\netcfg-42011015.txt
2013-10-16 23:35 - 2013-10-16 23:35 - 00000115 _____ C:\Users\mein Name\Desktop\igno.txt
2013-10-16 20:31 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-16 20:31 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-16 20:31 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-16 20:31 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-16 20:30 - 2013-10-16 20:31 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 20:29 - 2013-10-16 20:29 - 00915368 _____ (Oracle Corporation) C:\Users\mein Name\Desktop\jxpiinstall.exe
2013-10-16 19:48 - 2013-10-16 19:48 - 00000117 _____ C:\Windows\system32\netcfg-18356390.txt
2013-10-16 19:06 - 2013-10-16 19:06 - 00000117 _____ C:\Windows\system32\netcfg-15839953.txt
2013-10-16 18:46 - 2013-10-16 18:46 - 00000117 _____ C:\Windows\system32\netcfg-14612062.txt
2013-10-16 18:35 - 2013-10-16 18:35 - 00000117 _____ C:\Windows\system32\netcfg-13975906.txt
2013-10-16 17:42 - 2013-10-16 17:42 - 00000117 _____ C:\Windows\system32\netcfg-10798078.txt
2013-10-16 17:39 - 2013-10-16 17:39 - 00000117 _____ C:\Windows\system32\netcfg-10600734.txt
2013-10-16 16:51 - 2013-10-16 16:51 - 00000117 _____ C:\Windows\system32\netcfg-7723078.txt
2013-10-16 16:48 - 2013-10-16 16:48 - 00000117 _____ C:\Windows\system32\netcfg-7538093.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4630343.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4629437.txt
2013-10-16 13:27 - 2013-10-16 13:27 - 00010240 _____ C:\Users\mein Name\Desktop\fahrrad fahren.wps
2013-10-16 11:39 - 2013-10-16 11:39 - 00000117 _____ C:\Windows\system32\netcfg-139965953.txt
2013-10-16 02:20 - 2013-10-16 02:20 - 00000117 _____ C:\Windows\system32\netcfg-106381421.txt
2013-10-15 19:26 - 2013-10-15 19:26 - 00000117 _____ C:\Windows\system32\netcfg-81555171.txt
2013-10-15 19:07 - 2013-10-15 19:07 - 00000117 _____ C:\Windows\system32\netcfg-80413812.txt
2013-10-15 15:56 - 2013-10-15 15:56 - 00000117 _____ C:\Windows\system32\netcfg-68955843.txt
2013-10-15 15:40 - 2013-10-15 15:40 - 00000117 _____ C:\Windows\system32\netcfg-67993203.txt
2013-10-15 14:37 - 2013-10-15 14:37 - 00000117 _____ C:\Windows\system32\netcfg-64215875.txt
2013-10-15 13:26 - 2013-10-15 13:26 - 00000117 _____ C:\Windows\system32\netcfg-59930578.txt
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50255078.txt
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50253234.txt
2013-10-14 20:47 - 2013-10-18 21:28 - 00003758 _____ C:\Windows\PFRO.log
2013-10-14 20:27 - 2013-10-14 20:29 - 00000000 ____D C:\ProgramData\Adobe
2013-10-14 20:27 - 2013-10-14 20:27 - 00002021 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-14 20:27 - 2013-10-14 20:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-14 20:20 - 2013-10-14 20:20 - 00000000 ____D C:\Windows\Sun
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\UpdaterEX
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Local\Google
2013-10-14 20:06 - 2013-10-14 20:06 - 00000117 _____ C:\Windows\system32\netcfg-197544125.txt
2013-10-14 19:42 - 2013-10-14 19:42 - 00000117 _____ C:\Windows\system32\netcfg-196122671.txt
2013-10-14 18:28 - 2013-10-15 10:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-10-14 16:44 - 2013-10-14 16:44 - 00000117 _____ C:\Windows\system32\netcfg-185445437.txt
2013-10-14 16:13 - 2013-10-14 16:13 - 00000117 _____ C:\Windows\system32\netcfg-183582062.txt
2013-10-14 15:52 - 2013-10-18 21:39 - 00654495 _____ C:\Windows\WindowsUpdate.log
2013-10-14 09:38 - 2013-10-14 09:38 - 00000117 _____ C:\Windows\system32\netcfg-159871250.txt
2013-10-14 02:01 - 2013-10-14 02:01 - 00000117 _____ C:\Windows\system32\netcfg-132414328.txt
2013-10-13 20:27 - 2013-10-13 20:27 - 00009216 _____ C:\Users\mein Name\Desktop\laterne basteln.wps
2013-10-13 19:23 - 2013-10-13 19:23 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Yahoo!
2013-10-13 19:22 - 2013-10-13 19:22 - 00000117 _____ C:\Windows\system32\netcfg-108519484.txt
2013-10-13 19:00 - 2013-10-13 19:00 - 00000117 _____ C:\Windows\system32\netcfg-107204859.txt
2013-10-13 16:16 - 2013-10-13 16:16 - 00000117 _____ C:\Windows\system32\netcfg-97367828.txt
2013-10-13 15:40 - 2013-10-13 15:40 - 00000117 _____ C:\Windows\system32\netcfg-95173625.txt
2013-10-13 12:33 - 2013-10-13 12:33 - 00000117 _____ C:\Windows\system32\netcfg-83950609.txt
2013-10-13 02:40 - 2013-10-13 02:40 - 00000117 _____ C:\Windows\system32\netcfg-48368703.txt
2013-10-12 20:06 - 2013-10-12 20:06 - 00000117 _____ C:\Windows\system32\netcfg-24720421.txt
2013-10-12 17:38 - 2013-10-12 17:38 - 00071550 _____ C:\Users\mein Name\Desktop\cc_20131012_173753.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00007196 _____ C:\Users\mein Name\Desktop\cc_20131012_173821.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00000117 _____ C:\Windows\system32\netcfg-15891765.txt
2013-10-12 17:33 - 2013-10-12 17:33 - 00002780 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-12 17:33 - 2013-10-12 17:33 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-12 17:32 - 2013-10-12 17:33 - 00000000 ____D C:\Program Files\CCleaner
2013-10-12 17:31 - 2013-10-12 17:31 - 03294168 _____ (Piriform Ltd) C:\Users\mein Name\Desktop\ccsetup406_slim.exe
2013-10-12 16:55 - 2013-10-12 16:55 - 00000000 ____D C:\Users\mein Name\Desktop\von stick
2013-10-12 16:51 - 2013-10-12 16:51 - 00001579 _____ C:\Users\mein Name\Desktop\PS - Verknüpfung.lnk
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\CyberLink
2013-10-11 20:37 - 2013-10-11 20:37 - 00000117 _____ C:\Windows\system32\netcfg-360564218.txt
2013-10-11 20:34 - 2013-10-11 20:34 - 00000117 _____ C:\Windows\system32\netcfg-360358000.txt
2013-10-11 19:51 - 2013-10-11 19:51 - 00000117 _____ C:\Windows\system32\netcfg-357810250.txt
2013-10-11 19:44 - 2013-10-11 19:44 - 00000117 _____ C:\Windows\system32\netcfg-357392078.txt
2013-10-11 17:49 - 2013-10-11 17:49 - 00000117 _____ C:\Windows\system32\netcfg-350465515.txt
2013-10-11 17:34 - 2013-10-11 17:34 - 00000117 _____ C:\Windows\system32\netcfg-349605890.txt
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333730328.txt
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333729484.txt
2013-10-10 21:07 - 2013-10-10 21:07 - 00000117 _____ C:\Windows\system32\netcfg-275984031.txt
2013-10-10 21:06 - 2013-10-10 21:06 - 00000117 _____ C:\Windows\system32\netcfg-275911203.txt
2013-10-10 20:12 - 2013-10-10 20:12 - 00000117 _____ C:\Windows\system32\netcfg-272673031.txt
2013-10-10 19:39 - 2013-10-10 19:39 - 00000117 _____ C:\Windows\system32\netcfg-270674671.txt
2013-10-10 18:16 - 2013-10-10 18:16 - 00000117 _____ C:\Windows\system32\netcfg-265728343.txt
2013-10-10 16:20 - 2013-10-10 16:20 - 00000117 _____ C:\Windows\system32\netcfg-258740062.txt
2013-10-10 11:43 - 2013-10-10 11:43 - 00000117 _____ C:\Windows\system32\netcfg-242127203.txt
2013-10-10 02:29 - 2013-10-10 02:29 - 00000117 _____ C:\Windows\system32\netcfg-208915015.txt
2013-10-09 20:17 - 2013-10-09 20:17 - 00000117 _____ C:\Windows\system32\netcfg-186591750.txt
2013-10-09 18:46 - 2013-10-09 18:46 - 00000117 _____ C:\Windows\system32\netcfg-181124921.txt
2013-10-09 18:08 - 2013-10-09 18:08 - 00000117 _____ C:\Windows\system32\netcfg-178847390.txt
2013-10-09 17:03 - 2013-10-09 17:03 - 00000117 _____ C:\Windows\system32\netcfg-174927609.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 00000117 _____ C:\Windows\system32\netcfg-173074687.txt
2013-10-09 16:26 - 2013-10-09 16:26 - 00000117 _____ C:\Windows\system32\netcfg-172735734.txt
2013-10-09 15:41 - 2013-10-09 15:41 - 00000146 _____ C:\Users\mein Name\Desktop\Windows Defender - Verknüpfung.lnk
2013-10-09 13:23 - 2013-10-09 13:23 - 00002771 _____ C:\Users\mein Name\Desktop\Citrus.txt
2013-10-09 11:59 - 2013-10-09 11:59 - 00000117 _____ C:\Windows\system32\netcfg-156687515.txt
2013-10-09 03:09 - 2013-10-09 03:09 - 00000117 _____ C:\Windows\system32\netcfg-124885515.txt
2013-10-08 21:10 - 2013-10-08 21:10 - 00000117 _____ C:\Windows\system32\netcfg-103343062.txt
2013-10-08 21:03 - 2013-10-08 21:03 - 00000117 _____ C:\Windows\system32\netcfg-102917531.txt
2013-10-08 20:11 - 2013-10-08 20:11 - 00000117 _____ C:\Windows\system32\netcfg-99830078.txt
2013-10-08 19:44 - 2013-10-08 19:44 - 00000117 _____ C:\Windows\system32\netcfg-98209328.txt
2013-10-08 17:44 - 2013-10-14 20:24 - 00000000 ____D C:\ProgramData\Yahoo!
2013-10-08 17:44 - 2013-10-08 17:44 - 00001143 _____ C:\Users\Public\Desktop\Yahoo! Messenger.lnk
2013-10-08 17:42 - 2013-10-14 20:24 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2013-10-08 17:29 - 2013-10-08 17:29 - 00000117 _____ C:\Windows\system32\netcfg-90112281.txt
2013-10-08 17:21 - 2013-10-08 17:21 - 00000117 _____ C:\Windows\system32\netcfg-89583859.txt
2013-10-08 15:19 - 2013-10-08 15:19 - 00000117 _____ C:\Windows\system32\netcfg-82270359.txt
2013-10-08 13:43 - 2013-10-08 13:43 - 00000117 _____ C:\Windows\system32\netcfg-76551343.txt
2013-10-08 11:36 - 2013-10-08 11:36 - 00001920 _____ C:\Users\mein Name\Desktop\beckenboden.txt
2013-10-08 11:01 - 2013-10-08 11:01 - 00000117 _____ C:\Windows\system32\netcfg-66818187.txt
2013-10-08 02:42 - 2013-10-08 02:42 - 00000117 _____ C:\Windows\system32\netcfg-36863578.txt
2013-10-07 20:16 - 2013-10-07 20:16 - 00000117 _____ C:\Windows\system32\netcfg-13684281.txt
2013-10-07 18:48 - 2013-10-18 15:19 - 00001206 _____ C:\Users\mein Name\AppData\Roaming\wklnhst.dat
2013-10-07 18:48 - 2013-10-07 18:48 - 00001173 _____ C:\Users\mein Name\Desktop\Microsoft Works.LNK
2013-10-07 18:48 - 2013-10-07 18:48 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Template
2013-10-07 18:39 - 2013-10-07 18:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-07 18:36 - 2013-10-07 18:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-10-07 18:23 - 2013-10-07 18:23 - 00000117 _____ C:\Windows\system32\netcfg-6917859.txt
2013-10-07 17:40 - 2013-10-07 17:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-07 17:28 - 2013-10-16 20:31 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-07 17:21 - 2013-10-07 17:21 - 00000117 _____ C:\Windows\system32\netcfg-3235453.txt
2013-10-07 17:19 - 2013-10-07 17:19 - 00000117 _____ C:\Windows\system32\netcfg-3122375.txt
2013-10-07 17:17 - 2013-10-07 17:17 - 00000117 _____ C:\Windows\system32\netcfg-2989796.txt
2013-10-07 17:16 - 2013-10-07 17:16 - 00000117 _____ C:\Windows\system32\netcfg-2906203.txt
2013-10-07 17:15 - 2013-10-07 17:15 - 00000117 _____ C:\Windows\system32\netcfg-2872484.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00001153 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-07 17:11 - 2013-10-07 17:11 - 00000117 _____ C:\Windows\system32\netcfg-2589859.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Mozilla
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323750.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323734.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-317734.txt
2013-10-07 16:27 - 2013-10-07 16:27 - 00000117 _____ C:\Windows\system32\netcfg-1062062.txt
2013-10-07 16:21 - 2013-10-07 16:21 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\hpqLog
2013-10-07 16:15 - 2013-10-07 16:16 - 00000117 _____ C:\Windows\system32\netcfg-354828.txt
2013-10-07 16:12 - 2013-10-07 16:12 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-10-07 16:10 - 2013-10-07 16:10 - 00000117 _____ C:\Windows\system32\netcfg-27484.txt
2013-10-07 16:06 - 2013-05-02 17:29 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Malwarebytes
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651812.txt
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651515.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-80359.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-79609.txt
2013-10-07 12:50 - 2013-10-18 21:28 - 00000000 ____D C:\AdwCleaner
2013-10-07 12:47 - 2013-10-07 12:47 - 01045226 _____ C:\Users\mein Name\Desktop\adwcleaner_3.0.0.6.exe
2013-10-07 11:40 - 2013-10-07 11:40 - 00000117 _____ C:\Windows\system32\netcfg-135726031.txt
2013-10-07 01:49 - 2013-10-07 01:49 - 00000117 _____ C:\Windows\system32\netcfg-100287125.txt
2013-10-06 20:14 - 2013-10-06 20:14 - 00000117 _____ C:\Windows\system32\netcfg-80143484.txt
2013-10-06 19:13 - 2013-10-06 19:13 - 00000117 _____ C:\Windows\system32\netcfg-76489531.txt
2013-10-06 17:16 - 2013-10-06 17:16 - 00000117 _____ C:\Windows\system32\netcfg-69504921.txt
2013-10-06 15:43 - 2013-10-06 15:43 - 00000117 _____ C:\Windows\system32\netcfg-63923812.txt
2013-10-06 15:19 - 2013-10-06 15:19 - 00000117 _____ C:\Windows\system32\netcfg-62479484.txt
2013-10-06 15:05 - 2013-10-06 15:05 - 00000117 _____ C:\Windows\system32\netcfg-61607500.txt
2013-10-06 14:27 - 2013-10-16 13:31 - 00001378 _____ C:\Users\mein Name\Desktop\gangschaltung.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58040500.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58039734.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167828.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167468.txt
2013-10-06 00:49 - 2013-10-06 00:49 - 00000000 ____D C:\ProgramData\Recovery
2013-10-05 21:52 - 2013-10-05 21:52 - 00000936 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2013-10-05 21:52 - 2013-10-05 21:52 - 00000000 ____D C:\Program Files (x86)\epson
2013-10-05 21:52 - 2006-10-13 00:00 - 00093184 _____ (SEIKO EPSON CORP.) C:\Windows\system32\esxcwiad.dll
2013-10-05 21:45 - 2013-10-13 17:38 - 00000000 ____D C:\Users\mein Name\AppData\Local\Thunderbird
2013-10-05 21:45 - 2013-10-05 21:45 - 00002092 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2013-10-05 21:45 - 2013-10-05 21:45 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Thunderbird
2013-10-05 21:40 - 2013-10-16 20:33 - 00000000 ____D C:\ProgramData\Oracle
2013-10-05 21:40 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Sun
2013-10-05 21:36 - 2013-10-05 21:36 - 00000000 ____D C:\Users\mein Name\AppData\Local\Macromedia
2013-10-05 21:34 - 2013-10-14 20:28 - 00000000 ____D C:\Users\mein Name\AppData\Local\Adobe
2013-10-05 21:12 - 2013-10-16 14:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-05 21:12 - 2013-10-05 21:15 - 00000000 ____D C:\Users\mein Name\AppData\Local\Mozilla
2013-10-05 21:12 - 2013-10-05 21:12 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-05 21:10 - 2013-10-05 21:10 - 00001008 _____ C:\Users\mein Name\Desktop\IrfanView.lnk
2013-10-05 21:10 - 2013-10-05 21:10 - 00000000 ____D C:\Program Files (x86)\IrfanView
2013-10-05 21:03 - 2013-10-05 21:03 - 00000117 _____ C:\Windows\system32\netcfg-15950734.txt
2013-10-05 20:10 - 2013-10-05 20:10 - 00000117 _____ C:\Windows\system32\netcfg-12765281.txt
2013-10-05 19:23 - 2013-10-05 19:23 - 00000117 _____ C:\Windows\system32\netcfg-9918046.txt
2013-10-05 18:08 - 2013-10-05 18:08 - 00000117 _____ C:\Windows\system32\netcfg-5405031.txt
2013-10-05 17:16 - 2013-10-05 17:16 - 00000000 ____D C:\sources
2013-10-05 16:58 - 2013-10-05 16:58 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Macromedia
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477953.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477921.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477734.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-474468.txt
2013-10-05 16:36 - 2013-10-18 13:06 - 00057344 _____ C:\Users\mein Name\Desktop\Zitrus - Kontroll-Notizen.wps
2013-10-05 16:36 - 2013-10-17 22:54 - 00000540 _____ C:\Users\mein Name\Desktop\rest.txt
2013-10-05 16:36 - 2013-09-18 23:36 - 00002738 _____ C:\Users\mein Name\Desktop\nicks.txt
2013-10-05 16:35 - 2013-10-11 16:00 - 00031232 _____ C:\Users\mein Name\Desktop\mobile.wps
2013-10-05 16:30 - 2013-10-05 16:30 - 00000000 ____D C:\Users\mein Name\AppData\Local\Hewlett-Packard
2013-10-05 16:02 - 2013-10-05 16:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-05 15:14 - 2013-10-14 21:16 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4071608636-3666989274-3695306699-1001
2013-10-05 15:09 - 2013-10-14 20:28 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Adobe
2013-10-05 15:09 - 2013-10-05 15:09 - 00001444 _____ C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\SysWOW64\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\system32\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ____D C:\Users\mein Name\AppData\Local\Power2Go8
2013-10-05 15:09 - 2012-10-27 03:30 - 00002217 _____ C:\Users\Public\Desktop\Snapfish Fotos.lnk
2013-10-05 15:08 - 2013-10-07 16:21 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Hewlett-Packard
2013-10-05 15:07 - 2013-10-17 20:13 - 00000000 ____D C:\Users\mein Name
2013-10-05 15:07 - 2013-10-07 18:48 - 00000000 ____D C:\Users\mein Name\AppData\Local\VirtualStore
2013-10-05 15:07 - 2013-10-05 15:33 - 00000000 ____D C:\Users\mein Name\AppData\Local\Packages
2013-10-05 15:07 - 2013-10-05 15:07 - 00000020 ___SH C:\Users\mein Name\ntuser.ini
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Vorlagen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Startmenü
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Netzwerkumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Lokale Einstellungen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Eigene Dateien
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Druckumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Musik
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Bilder
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Verlauf
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Anwendungsdaten
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Anwendungsdaten
2013-10-05 15:07 - 2012-10-27 03:16 - 00000000 ___HD C:\Users\mein Name\Documents\hp.system.package.metadata
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Dokumente und Einstellungen

==================== One Month Modified Files and Folders =======

2013-10-18 21:41 - 2013-10-18 21:41 - 00000909 _____ C:\Users\mein Name\Desktop\JRT.txt
2013-10-18 21:39 - 2013-10-18 21:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-18 21:39 - 2013-10-14 15:52 - 00654495 _____ C:\Windows\WindowsUpdate.log
2013-10-18 21:36 - 2013-10-18 21:36 - 01033335 _____ (Thisisu) C:\Users\mein Name\Desktop\JRT.exe
2013-10-18 21:31 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-10-18 21:30 - 2013-10-18 21:30 - 00001935 _____ C:\Users\mein Name\Desktop\AdwCleaner[S1].txt
2013-10-18 21:29 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-18 21:28 - 2013-10-14 20:47 - 00003758 _____ C:\Windows\PFRO.log
2013-10-18 21:28 - 2013-10-07 12:50 - 00000000 ____D C:\AdwCleaner
2013-10-18 21:12 - 2013-10-18 21:12 - 01050644 _____ C:\Users\mein Name\Desktop\adwcleaner.exe
2013-10-18 21:10 - 2013-10-18 21:09 - 00000000 ____D C:\Users\mein Name\Desktop\erster durchlauf
2013-10-18 21:00 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-10-18 20:56 - 2013-10-18 20:56 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-18 20:56 - 2013-10-18 20:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-18 20:51 - 2013-10-18 20:51 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\mein Name\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-18 20:04 - 2013-10-18 20:04 - 00000117 _____ C:\Windows\system32\netcfg-82687218.txt
2013-10-18 18:19 - 2013-10-18 18:19 - 00000117 _____ C:\Windows\system32\netcfg-76396171.txt
2013-10-18 17:00 - 2013-10-18 17:00 - 00000117 _____ C:\Windows\system32\netcfg-71628218.txt
2013-10-18 16:33 - 2013-10-18 16:33 - 00000117 _____ C:\Windows\system32\netcfg-70002812.txt
2013-10-18 16:06 - 2013-10-18 16:06 - 00000117 _____ C:\Windows\system32\netcfg-68416562.txt
2013-10-18 16:03 - 2013-10-18 16:03 - 00000117 _____ C:\Windows\system32\netcfg-68218906.txt
2013-10-18 15:19 - 2013-10-07 18:48 - 00001206 _____ C:\Users\mein Name\AppData\Roaming\wklnhst.dat
2013-10-18 15:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-10-18 13:22 - 2012-10-27 12:06 - 00745562 _____ C:\Windows\system32\perfh007.dat
2013-10-18 13:22 - 2012-10-27 12:06 - 00169488 _____ C:\Windows\system32\perfc007.dat
2013-10-18 13:22 - 2012-07-26 09:28 - 01752656 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-18 13:06 - 2013-10-05 16:36 - 00057344 _____ C:\Users\mein Name\Desktop\Zitrus - Kontroll-Notizen.wps
2013-10-18 11:58 - 2013-10-18 11:52 - 00000000 ____D C:\Qoobox
2013-10-18 11:58 - 2012-07-26 07:37 - 00000000 __RHD C:\Users\Default
2013-10-18 11:57 - 2013-10-18 11:52 - 00000000 ____D C:\Windows\erdnt
2013-10-18 11:57 - 2012-07-26 07:26 - 00000215 _____ C:\Windows\system.ini
2013-10-18 11:48 - 2013-10-18 11:48 - 05134711 ____R (Swearware) C:\Users\mein Name\Desktop\ComboFix.exe
2013-10-18 11:38 - 2013-10-18 11:38 - 00000117 _____ C:\Windows\system32\netcfg-52339421.txt
2013-10-18 02:04 - 2013-10-18 02:04 - 00000117 _____ C:\Windows\system32\netcfg-17904453.txt
2013-10-17 22:54 - 2013-10-05 16:36 - 00000540 _____ C:\Users\mein Name\Desktop\rest.txt
2013-10-17 22:01 - 2013-10-17 18:46 - 00003026 _____ C:\Users\mein Name\Desktop\trojaner board.txt
2013-10-17 21:08 - 2013-10-17 21:08 - 00000117 _____ C:\Windows\system32\netcfg-139281.txt
2013-10-17 20:45 - 2013-10-17 20:45 - 00000117 _____ C:\Windows\system32\netcfg-15628828.txt
2013-10-17 20:29 - 2013-10-17 20:29 - 00377856 _____ C:\Users\mein Name\Desktop\gmer_2.1.19163.exe
2013-10-17 20:21 - 2013-10-17 20:21 - 00000000 ____D C:\FRST
2013-10-17 20:15 - 2013-10-17 20:15 - 01954124 _____ (Farbar) C:\Users\mein Name\Desktop\FRST64.exe
2013-10-17 20:13 - 2013-10-17 20:13 - 00000000 _____ C:\Users\mein Name\defogger_reenable
2013-10-17 20:13 - 2013-10-05 15:07 - 00000000 ____D C:\Users\mein Name
2013-10-17 20:10 - 2013-10-17 20:10 - 00050477 _____ C:\Users\mein Name\Desktop\Defogger.exe
2013-10-17 20:00 - 2013-10-17 20:00 - 00000117 _____ C:\Windows\system32\netcfg-12919140.txt
2013-10-17 19:31 - 2013-10-17 19:31 - 00000117 _____ C:\Windows\system32\netcfg-11188875.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862437.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862234.txt
2013-10-17 16:26 - 2013-10-17 12:48 - 00000000 ____D C:\ProgramData\Trend Micro
2013-10-17 16:13 - 2013-10-17 16:13 - 00000117 _____ C:\Windows\system32\netcfg-12582312.txt
2013-10-17 16:11 - 2013-10-17 16:11 - 00000117 _____ C:\Windows\system32\netcfg-12431531.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764437.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764000.txt
2013-10-17 12:55 - 2013-10-17 12:55 - 00000000 ____D C:\TMRescueDisk
2013-10-17 12:50 - 2013-10-17 12:50 - 00001429 _____ C:\Users\mein Name\Desktop\Trend Micro Titanium Internet Security.lnk
2013-10-17 12:50 - 2013-10-17 12:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium Internet Security
2013-10-17 12:50 - 2012-07-26 10:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-10-17 12:49 - 2013-10-17 12:49 - 00003268 _____ C:\Windows\System32\Tasks\Titanium BTC
2013-10-17 12:48 - 2013-10-17 12:48 - 00000059 _____ C:\Windows\system32\SupportTool.exe.bat
2013-10-17 12:48 - 2013-10-17 12:47 - 00000000 ____D C:\Program Files\Trend Micro
2013-10-17 12:45 - 2013-10-17 12:45 - 00000036 _____ C:\Users\mein Name\AppData\Local\housecall.guid.cache
2013-10-17 12:43 - 2013-10-17 12:43 - 00000000 ____D C:\Users\mein Name\AppData\Local\Trend Micro
2013-10-17 12:41 - 2013-10-17 12:37 - 115016720 _____ (Trend Micro Inc.) C:\Users\Public\Desktop\Trend_Micro.exe
2013-10-17 12:34 - 2013-10-17 12:34 - 06631240 _____ (Trend Micro Inc.) C:\Users\mein Name\Desktop\Titanium_Internet_Security_2014.exe
2013-10-17 12:20 - 2013-10-17 12:20 - 00000117 _____ C:\Windows\system32\netcfg-45127859.txt
2013-10-17 12:01 - 2013-10-17 12:01 - 00000117 _____ C:\Windows\system32\netcfg-44028093.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42720328.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42698062.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42687218.txt
2013-10-17 11:28 - 2013-10-17 11:28 - 00000117 _____ C:\Windows\system32\netcfg-42011015.txt
2013-10-16 23:35 - 2013-10-16 23:35 - 00000115 _____ C:\Users\mein Name\Desktop\igno.txt
2013-10-16 21:03 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\LiveKernelReports
2013-10-16 20:33 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Oracle
2013-10-16 20:31 - 2013-10-16 20:30 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 20:31 - 2013-10-07 17:28 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-16 20:29 - 2013-10-16 20:29 - 00915368 _____ (Oracle Corporation) C:\Users\mein Name\Desktop\jxpiinstall.exe
2013-10-16 19:48 - 2013-10-16 19:48 - 00000117 _____ C:\Windows\system32\netcfg-18356390.txt
2013-10-16 19:06 - 2013-10-16 19:06 - 00000117 _____ C:\Windows\system32\netcfg-15839953.txt
2013-10-16 18:46 - 2013-10-16 18:46 - 00000117 _____ C:\Windows\system32\netcfg-14612062.txt
2013-10-16 18:35 - 2013-10-16 18:35 - 00000117 _____ C:\Windows\system32\netcfg-13975906.txt
2013-10-16 17:42 - 2013-10-16 17:42 - 00000117 _____ C:\Windows\system32\netcfg-10798078.txt
2013-10-16 17:39 - 2013-10-16 17:39 - 00000117 _____ C:\Windows\system32\netcfg-10600734.txt
2013-10-16 16:51 - 2013-10-16 16:51 - 00000117 _____ C:\Windows\system32\netcfg-7723078.txt
2013-10-16 16:48 - 2013-10-16 16:48 - 00000117 _____ C:\Windows\system32\netcfg-7538093.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4630343.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4629437.txt
2013-10-16 14:42 - 2013-10-05 21:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-16 14:42 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-10-16 13:31 - 2013-10-06 14:27 - 00001378 _____ C:\Users\mein Name\Desktop\gangschaltung.txt
2013-10-16 13:27 - 2013-10-16 13:27 - 00010240 _____ C:\Users\mein Name\Desktop\fahrrad fahren.wps
2013-10-16 11:39 - 2013-10-16 11:39 - 00000117 _____ C:\Windows\system32\netcfg-139965953.txt
2013-10-16 02:20 - 2013-10-16 02:20 - 00000117 _____ C:\Windows\system32\netcfg-106381421.txt
2013-10-15 19:26 - 2013-10-15 19:26 - 00000117 _____ C:\Windows\system32\netcfg-81555171.txt
2013-10-15 19:07 - 2013-10-15 19:07 - 00000117 _____ C:\Windows\system32\netcfg-80413812.txt
2013-10-15 15:56 - 2013-10-15 15:56 - 00000117 _____ C:\Windows\system32\netcfg-68955843.txt
2013-10-15 15:40 - 2013-10-15 15:40 - 00000117 _____ C:\Windows\system32\netcfg-67993203.txt
2013-10-15 14:37 - 2013-10-15 14:37 - 00000117 _____ C:\Windows\system32\netcfg-64215875.txt
2013-10-15 13:26 - 2013-10-15 13:26 - 00000117 _____ C:\Windows\system32\netcfg-59930578.txt
2013-10-15 10:47 - 2013-10-14 18:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50255078.txt
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50253234.txt
2013-10-14 21:16 - 2013-10-05 15:14 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4071608636-3666989274-3695306699-1001
2013-10-14 20:29 - 2013-10-14 20:27 - 00000000 ____D C:\ProgramData\Adobe
2013-10-14 20:28 - 2013-10-05 21:34 - 00000000 ____D C:\Users\mein Name\AppData\Local\Adobe
2013-10-14 20:28 - 2013-10-05 15:09 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Adobe
2013-10-14 20:27 - 2013-10-14 20:27 - 00002021 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-14 20:27 - 2013-10-14 20:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-14 20:24 - 2013-10-08 17:44 - 00000000 ____D C:\ProgramData\Yahoo!
2013-10-14 20:24 - 2013-10-08 17:42 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2013-10-14 20:20 - 2013-10-14 20:20 - 00000000 ____D C:\Windows\Sun
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\UpdaterEX
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Local\Google
2013-10-14 20:06 - 2013-10-14 20:06 - 00000117 _____ C:\Windows\system32\netcfg-197544125.txt
2013-10-14 19:42 - 2013-10-14 19:42 - 00000117 _____ C:\Windows\system32\netcfg-196122671.txt
2013-10-14 16:44 - 2013-10-14 16:44 - 00000117 _____ C:\Windows\system32\netcfg-185445437.txt
2013-10-14 16:13 - 2013-10-14 16:13 - 00000117 _____ C:\Windows\system32\netcfg-183582062.txt
2013-10-14 09:38 - 2013-10-14 09:38 - 00000117 _____ C:\Windows\system32\netcfg-159871250.txt
2013-10-14 02:01 - 2013-10-14 02:01 - 00000117 _____ C:\Windows\system32\netcfg-132414328.txt
2013-10-13 20:27 - 2013-10-13 20:27 - 00009216 _____ C:\Users\mein Name\Desktop\laterne basteln.wps
2013-10-13 19:23 - 2013-10-13 19:23 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Yahoo!
2013-10-13 19:22 - 2013-10-13 19:22 - 00000117 _____ C:\Windows\system32\netcfg-108519484.txt
2013-10-13 19:00 - 2013-10-13 19:00 - 00000117 _____ C:\Windows\system32\netcfg-107204859.txt
2013-10-13 17:38 - 2013-10-05 21:45 - 00000000 ____D C:\Users\mein Name\AppData\Local\Thunderbird
2013-10-13 17:01 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\NDF
2013-10-13 16:16 - 2013-10-13 16:16 - 00000117 _____ C:\Windows\system32\netcfg-97367828.txt
2013-10-13 15:40 - 2013-10-13 15:40 - 00000117 _____ C:\Windows\system32\netcfg-95173625.txt
2013-10-13 12:33 - 2013-10-13 12:33 - 00000117 _____ C:\Windows\system32\netcfg-83950609.txt
2013-10-13 02:40 - 2013-10-13 02:40 - 00000117 _____ C:\Windows\system32\netcfg-48368703.txt
2013-10-12 20:06 - 2013-10-12 20:06 - 00000117 _____ C:\Windows\system32\netcfg-24720421.txt
2013-10-12 17:38 - 2013-10-12 17:38 - 00071550 _____ C:\Users\mein Name\Desktop\cc_20131012_173753.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00007196 _____ C:\Users\mein Name\Desktop\cc_20131012_173821.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00000117 _____ C:\Windows\system32\netcfg-15891765.txt
2013-10-12 17:35 - 2012-08-02 04:02 - 00000000 ____D C:\Windows\Panther
2013-10-12 17:33 - 2013-10-12 17:33 - 00002780 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-12 17:33 - 2013-10-12 17:33 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-12 17:33 - 2013-10-12 17:32 - 00000000 ____D C:\Program Files\CCleaner
2013-10-12 17:31 - 2013-10-12 17:31 - 03294168 _____ (Piriform Ltd) C:\Users\mein Name\Desktop\ccsetup406_slim.exe
2013-10-12 16:57 - 2012-10-27 03:22 - 00000000 ____D C:\ProgramData\CyberLink
2013-10-12 16:55 - 2013-10-12 16:55 - 00000000 ____D C:\Users\mein Name\Desktop\von stick
2013-10-12 16:51 - 2013-10-12 16:51 - 00001579 _____ C:\Users\mein Name\Desktop\PS - Verknüpfung.lnk
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\CyberLink
2013-10-12 13:14 - 2012-07-26 09:19 - 00339760 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 20:37 - 2013-10-11 20:37 - 00000117 _____ C:\Windows\system32\netcfg-360564218.txt
2013-10-11 20:34 - 2013-10-11 20:34 - 00000117 _____ C:\Windows\system32\netcfg-360358000.txt
2013-10-11 19:51 - 2013-10-11 19:51 - 00000117 _____ C:\Windows\system32\netcfg-357810250.txt
2013-10-11 19:44 - 2013-10-11 19:44 - 00000117 _____ C:\Windows\system32\netcfg-357392078.txt
2013-10-11 17:49 - 2013-10-11 17:49 - 00000117 _____ C:\Windows\system32\netcfg-350465515.txt
2013-10-11 17:34 - 2013-10-11 17:34 - 00000117 _____ C:\Windows\system32\netcfg-349605890.txt
2013-10-11 16:00 - 2013-10-05 16:35 - 00031232 _____ C:\Users\mein Name\Desktop\mobile.wps
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333730328.txt
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333729484.txt
2013-10-10 21:07 - 2013-10-10 21:07 - 00000117 _____ C:\Windows\system32\netcfg-275984031.txt
2013-10-10 21:06 - 2013-10-10 21:06 - 00000117 _____ C:\Windows\system32\netcfg-275911203.txt
2013-10-10 20:12 - 2013-10-10 20:12 - 00000117 _____ C:\Windows\system32\netcfg-272673031.txt
2013-10-10 19:39 - 2013-10-10 19:39 - 00000117 _____ C:\Windows\system32\netcfg-270674671.txt
2013-10-10 18:16 - 2013-10-10 18:16 - 00000117 _____ C:\Windows\system32\netcfg-265728343.txt
2013-10-10 16:20 - 2013-10-10 16:20 - 00000117 _____ C:\Windows\system32\netcfg-258740062.txt
2013-10-10 11:43 - 2013-10-10 11:43 - 00000117 _____ C:\Windows\system32\netcfg-242127203.txt
2013-10-10 02:29 - 2013-10-10 02:29 - 00000117 _____ C:\Windows\system32\netcfg-208915015.txt
2013-10-09 20:17 - 2013-10-09 20:17 - 00000117 _____ C:\Windows\system32\netcfg-186591750.txt
2013-10-09 18:46 - 2013-10-09 18:46 - 00000117 _____ C:\Windows\system32\netcfg-181124921.txt
2013-10-09 18:08 - 2013-10-09 18:08 - 00000117 _____ C:\Windows\system32\netcfg-178847390.txt
2013-10-09 17:03 - 2013-10-09 17:03 - 00000117 _____ C:\Windows\system32\netcfg-174927609.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 00000117 _____ C:\Windows\system32\netcfg-173074687.txt
2013-10-09 16:26 - 2013-10-09 16:26 - 00000117 _____ C:\Windows\system32\netcfg-172735734.txt
2013-10-09 15:41 - 2013-10-09 15:41 - 00000146 _____ C:\Users\mein Name\Desktop\Windows Defender - Verknüpfung.lnk
2013-10-09 13:23 - 2013-10-09 13:23 - 00002771 _____ C:\Users\mein Name\Desktop\Citrus.txt
2013-10-09 11:59 - 2013-10-09 11:59 - 00000117 _____ C:\Windows\system32\netcfg-156687515.txt
2013-10-09 03:09 - 2013-10-09 03:09 - 00000117 _____ C:\Windows\system32\netcfg-124885515.txt
2013-10-08 21:10 - 2013-10-08 21:10 - 00000117 _____ C:\Windows\system32\netcfg-103343062.txt
2013-10-08 21:03 - 2013-10-08 21:03 - 00000117 _____ C:\Windows\system32\netcfg-102917531.txt
2013-10-08 20:11 - 2013-10-08 20:11 - 00000117 _____ C:\Windows\system32\netcfg-99830078.txt
2013-10-08 19:44 - 2013-10-08 19:44 - 00000117 _____ C:\Windows\system32\netcfg-98209328.txt
2013-10-08 17:44 - 2013-10-08 17:44 - 00001143 _____ C:\Users\Public\Desktop\Yahoo! Messenger.lnk
2013-10-08 17:29 - 2013-10-08 17:29 - 00000117 _____ C:\Windows\system32\netcfg-90112281.txt
2013-10-08 17:21 - 2013-10-08 17:21 - 00000117 _____ C:\Windows\system32\netcfg-89583859.txt
2013-10-08 15:19 - 2013-10-08 15:19 - 00000117 _____ C:\Windows\system32\netcfg-82270359.txt
2013-10-08 13:43 - 2013-10-08 13:43 - 00000117 _____ C:\Windows\system32\netcfg-76551343.txt
2013-10-08 11:36 - 2013-10-08 11:36 - 00001920 _____ C:\Users\mein Name\Desktop\beckenboden.txt
2013-10-08 11:03 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-10-08 11:01 - 2013-10-08 11:01 - 00000117 _____ C:\Windows\system32\netcfg-66818187.txt
2013-10-08 07:50 - 2013-10-16 20:31 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-16 20:31 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-16 20:31 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-16 20:31 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-08 02:42 - 2013-10-08 02:42 - 00000117 _____ C:\Windows\system32\netcfg-36863578.txt
2013-10-07 20:16 - 2013-10-07 20:16 - 00000117 _____ C:\Windows\system32\netcfg-13684281.txt
2013-10-07 18:48 - 2013-10-07 18:48 - 00001173 _____ C:\Users\mein Name\Desktop\Microsoft Works.LNK
2013-10-07 18:48 - 2013-10-07 18:48 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Template
2013-10-07 18:48 - 2013-10-05 15:07 - 00000000 ____D C:\Users\mein Name\AppData\Local\VirtualStore
2013-10-07 18:39 - 2013-10-07 18:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-07 18:39 - 2013-10-07 18:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-10-07 18:23 - 2013-10-07 18:23 - 00000117 _____ C:\Windows\system32\netcfg-6917859.txt
2013-10-07 17:40 - 2013-10-07 17:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-07 17:21 - 2013-10-07 17:21 - 00000117 _____ C:\Windows\system32\netcfg-3235453.txt
2013-10-07 17:19 - 2013-10-07 17:19 - 00000117 _____ C:\Windows\system32\netcfg-3122375.txt
2013-10-07 17:17 - 2013-10-07 17:17 - 00000117 _____ C:\Windows\system32\netcfg-2989796.txt
2013-10-07 17:16 - 2013-10-07 17:16 - 00000117 _____ C:\Windows\system32\netcfg-2906203.txt
2013-10-07 17:15 - 2013-10-07 17:15 - 00000117 _____ C:\Windows\system32\netcfg-2872484.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00001153 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-07 17:11 - 2013-10-07 17:11 - 00000117 _____ C:\Windows\system32\netcfg-2589859.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Mozilla
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323750.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323734.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-317734.txt
2013-10-07 16:27 - 2013-10-07 16:27 - 00000117 _____ C:\Windows\system32\netcfg-1062062.txt
2013-10-07 16:26 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-07 16:23 - 2012-10-27 03:16 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-10-07 16:21 - 2013-10-07 16:21 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\hpqLog
2013-10-07 16:21 - 2013-10-05 15:08 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Hewlett-Packard
2013-10-07 16:21 - 2012-10-27 03:17 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-10-07 16:16 - 2013-10-07 16:15 - 00000117 _____ C:\Windows\system32\netcfg-354828.txt
2013-10-07 16:12 - 2013-10-07 16:12 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-10-07 16:10 - 2013-10-07 16:10 - 00000117 _____ C:\Windows\system32\netcfg-27484.txt
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Malwarebytes
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651812.txt
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651515.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-80359.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-79609.txt
2013-10-07 12:47 - 2013-10-07 12:47 - 01045226 _____ C:\Users\mein Name\Desktop\adwcleaner_3.0.0.6.exe
2013-10-07 11:40 - 2013-10-07 11:40 - 00000117 _____ C:\Windows\system32\netcfg-135726031.txt
2013-10-07 01:49 - 2013-10-07 01:49 - 00000117 _____ C:\Windows\system32\netcfg-100287125.txt
2013-10-06 20:14 - 2013-10-06 20:14 - 00000117 _____ C:\Windows\system32\netcfg-80143484.txt
2013-10-06 19:13 - 2013-10-06 19:13 - 00000117 _____ C:\Windows\system32\netcfg-76489531.txt
2013-10-06 17:16 - 2013-10-06 17:16 - 00000117 _____ C:\Windows\system32\netcfg-69504921.txt
2013-10-06 15:43 - 2013-10-06 15:43 - 00000117 _____ C:\Windows\system32\netcfg-63923812.txt
2013-10-06 15:19 - 2013-10-06 15:19 - 00000117 _____ C:\Windows\system32\netcfg-62479484.txt
2013-10-06 15:05 - 2013-10-06 15:05 - 00000117 _____ C:\Windows\system32\netcfg-61607500.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58040500.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58039734.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167828.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167468.txt
2013-10-06 00:50 - 2012-07-26 10:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2013-10-06 00:49 - 2013-10-06 00:49 - 00000000 ____D C:\ProgramData\Recovery
2013-10-05 21:52 - 2013-10-05 21:52 - 00000936 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2013-10-05 21:52 - 2013-10-05 21:52 - 00000000 ____D C:\Program Files (x86)\epson
2013-10-05 21:45 - 2013-10-05 21:45 - 00002092 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2013-10-05 21:45 - 2013-10-05 21:45 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Thunderbird
2013-10-05 21:40 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Sun
2013-10-05 21:36 - 2013-10-05 21:36 - 00000000 ____D C:\Users\mein Name\AppData\Local\Macromedia
2013-10-05 21:15 - 2013-10-05 21:12 - 00000000 ____D C:\Users\mein Name\AppData\Local\Mozilla
2013-10-05 21:12 - 2013-10-05 21:12 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-05 21:10 - 2013-10-05 21:10 - 00001008 _____ C:\Users\mein Name\Desktop\IrfanView.lnk
2013-10-05 21:10 - 2013-10-05 21:10 - 00000000 ____D C:\Program Files (x86)\IrfanView
2013-10-05 21:03 - 2013-10-05 21:03 - 00000117 _____ C:\Windows\system32\netcfg-15950734.txt
2013-10-05 20:10 - 2013-10-05 20:10 - 00000117 _____ C:\Windows\system32\netcfg-12765281.txt
2013-10-05 19:23 - 2013-10-05 19:23 - 00000117 _____ C:\Windows\system32\netcfg-9918046.txt
2013-10-05 18:08 - 2013-10-05 18:08 - 00000117 _____ C:\Windows\system32\netcfg-5405031.txt
2013-10-05 17:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-10-05 17:18 - 2012-07-26 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-05 17:18 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-10-05 17:18 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-10-05 17:18 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-05 17:18 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-10-05 17:18 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\winrm
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\slmgr
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\Com
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\migwiz
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\inetsrv
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\en-GB
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-05 17:17 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-10-05 17:17 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Sysprep
2013-10-05 17:17 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe
2013-10-05 17:16 - 2013-10-05 17:16 - 00000000 ____D C:\sources
2013-10-05 17:16 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\WCN
2013-10-05 17:16 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-10-05 17:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2013-10-05 17:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\MUI
2013-10-05 17:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\Com
2013-10-05 17:16 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-10-05 16:58 - 2013-10-05 16:58 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Macromedia
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477953.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477921.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477734.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-474468.txt
2013-10-05 16:30 - 2013-10-05 16:30 - 00000000 ____D C:\Users\mein Name\AppData\Local\Hewlett-Packard
2013-10-05 16:21 - 2012-10-27 03:33 - 00000000 ____D C:\ProgramData\Norton
2013-10-05 16:02 - 2013-10-05 16:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-05 15:33 - 2013-10-05 15:07 - 00000000 ____D C:\Users\mein Name\AppData\Local\Packages
2013-10-05 15:31 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\restore
2013-10-05 15:09 - 2013-10-05 15:09 - 00001444 _____ C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\SysWOW64\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\system32\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ____D C:\Users\mein Name\AppData\Local\Power2Go8
2013-10-05 15:09 - 2012-10-27 03:32 - 00000000 ___RD C:\Program Files\Online Services
2013-10-05 15:09 - 2012-10-27 03:23 - 00000000 ___RD C:\Program Files (x86)\Online Services
2013-10-05 15:09 - 2012-09-12 15:34 - 00000000 ___RD C:\hp
2013-10-05 15:09 - 2012-08-02 05:15 - 00000000 ____D C:\SWSETUP
2013-10-05 15:09 - 2012-08-01 11:57 - 00000000 ___RD C:\SYSTEM.SAV
2013-10-05 15:09 - 2012-07-26 10:12 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-10-05 15:07 - 2013-10-05 15:07 - 00000020 ___SH C:\Users\mein Name\ntuser.ini
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Vorlagen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Startmenü
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Netzwerkumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Lokale Einstellungen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Eigene Dateien
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Druckumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Musik
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Bilder
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Verlauf
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Anwendungsdaten
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-05 14:58 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows NT
2013-09-18 23:36 - 2013-10-05 16:36 - 00002738 _____ C:\Users\mein Name\Desktop\nicks.txt

Some content of TEMP:
====================
C:\Users\mein Name\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-15 12:10

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

vielen Dank !
liebe Grüße

Windows 8 ; immer langsamer, hängt und friert ein

Log-Analyse und Auswertung: Windows 8 ; immer langsamer, hängt und friert ein

Windows 8 ; immer langsamer, hängt und friert ein

Windows 8 ; immer langsamer, hängt und friert ein

Ähnliche Themen: Windows 8 ; immer langsamer, hängt und friert ein