| |
| |||||||
Log-Analyse und Auswertung: Windows 8 ; immer langsamer, hängt und friert einWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
19.10.2013, 18:15
| #1 |
 |  Windows 8 ; immer langsamer, hängt und friert ein hallo schrauber, danke für deine Mühen und die - doch recht zügige - Abarbeitung meines Problems. Bevor ich mich hier registriert hatte, hatte ich mich schon etwas eingehender mit der SAche beschäftigt. So z.B. hatte ich Scans mit Malwarebytes machen lassen, die mit Befund waren. In einem anderen Threat -in diesem Forum- war die Rede von gefährlichen Websites und Bildbetrachtern, insbesondere von ImageView und ImageAvenue. Ich meine mich erinnern zu können, Imageavenue - Bilder geladen zu haben (Fotos waren riesengroß) und das auch auch aus diesem Zeitraum stammende Veränderungen eingetreten waren. *Just to your Info* Den letzten -aus meiner Initiative durchgeführten- Scan, füge ich mit ein. Bilanz: zwischenzeitlich schien es mal so, als sei der PC etwas schneller geworden aber inzwischen ist wieder kein Unterschied spürbar. Programme öffnen sehr zäh und Internet ist noch genauso träge wie zuvor. Es folgen die Log´s: als erstes der von Malwarebytes mit Befund Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.10.16.06 Windows 8 x64 NTFS Internet Explorer 10.0.9200.16384 mein Name :: NAME [Administrator] 16.10.2013 14:35:58 mbam-log-2013-10-16 (14-35-58).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 197666 Laufzeit: 1 Minute(n), 49 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 6 HKCR\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} (PUP.Optional.Wajam.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BonanzaDealsLive.exe (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 1 HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0Z1N1J -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 7 C:\ProgramData\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\BonanzaDealsLive\Update (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\BonanzaDealsLive\Update\Log (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\mein Name\AppData\Local\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\mein Name\AppData\Local\BonanzaDealsLive\CrashReports (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files (x86)\BonanzaDealsLive\CrashReports (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 3 C:\Users\mein Name\AppData\Local\Temp\is1275519350\198266466_stp\wajam_download.exe (PUP.Optional.Wajam) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\mein Name\AppData\Local\Temp\is1275519350\198266525_stp\bd.exe (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\ProgramData\BonanzaDealsLive\Update\Log\BonanzaDealsLive.log (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=2962e23f203a714395af0bd621089ddc
# engine=15548
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-19 03:05:38
# local_time=2013-10-19 05:05:38 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.2.9200 NT
# compatibility_mode=5893 16776574 100 94 268383 38925050 0 0
# scanned=237133
# found=0
# cleaned=0
# scan_time=3137
FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013
Ran by mein Name (administrator) on NAME on 19-10-2013 18:51:05
Running from C:\Users\mein Name\Desktop
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiWatchDog.exe
(Intel(R) Corporation) c:\Program Files\Intel\iCLS Client\HeciServer.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmWrk\uiSeAgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Win8Cpnt\TmToastNotificationCaller.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BeatsOSDApp] - C:\Program Files\IDT\WDM\beats64.exe [37888 2012-08-10] (Hewlett-Packard )
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1425408 2012-08-10] (IDT, Inc.)
HKLM\...\Run: [Trend Micro Client Framework] - C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [221584 2013-07-23] (Trend Micro Inc.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] - c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] - c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-02] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK13/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK13/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPDSK13/4
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKLM - {94B26480-D04E-468B-85A0-89A447BF8438} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPDTDFJS
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
BHO: TmIEPlugInBHO Class - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg.dll (Trend Micro Inc.)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe64.dll (Trend Micro Inc.)
BHO-x32: TSToolbarBHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TmIEPlugInBHO Class - {959A5673-7971-48e6-AF54-58F745AC4ABC} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg32.dll (Trend Micro Inc.)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - TrendMicro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg.dll (Trend Micro Inc.)
Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.)
Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - No File
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.0.1277\1.6.1092\TmopIEPlg32.dll (Trend Micro Inc.)
Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.)
Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default
FF Homepage: hxxp://www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @TrendMicro.com/FFExtension - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension\components\npToolbarChrome.dll (Trend Micro Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: savedpasswordeditor - C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\Extensions\savedpasswordeditor@daniel.dawson.xpi
FF Extension: No Name - C:\Users\mein Name\AppData\Roaming\Mozilla\Firefox\Profiles\cwdtpita.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\firefoxextension
FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\
FF Extension: Trend Micro Osprey Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension\
FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\chrome_tmbep.crx
CHR HKLM-x32\...\Chrome\Extension: [bmiabdepfhhiieiipmeecdmeljggmfee] - C:\Program Files\Trend Micro\AMSP\module\20002\8.0.1109\8.0.1109\chrome_tmbep.crx
CHR HKLM-x32\...\Chrome\Extension: [fmgckcapmffomaifonnhgkfdgljnkpgi] - C:\Program Files\Trend Micro\AMSP\module\20013\ChromeExt\chromeextension\TmOspreychromeExt.crx
==================== Services (Whitelisted) =================
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-26] (Microsoft Corporation)
R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [x]
==================== Drivers (Whitelisted) ====================
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 tmactmon; C:\Windows\system32\DRIVERS\tmactmon.sys [116264 2013-09-04] (Trend Micro Inc.)
R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [282624 2013-09-04] (Trend Micro Inc.)
R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2013-07-01] (Trend Micro Inc.)
R3 tmeevw; C:\Windows\system32\DRIVERS\tmeevw.sys [100640 2013-06-13] (Trend Micro Inc.)
S0 tmel; C:\Windows\System32\DRIVERS\tmel.sys [37904 2013-07-11] (Trend Micro Inc.)
R1 tmevtmgr; C:\Windows\system32\DRIVERS\tmevtmgr.sys [85424 2013-09-04] (Trend Micro Inc.)
R3 tmnciesc; C:\Windows\system32\DRIVERS\tmnciesc.sys [303392 2013-05-15] (Trend Micro Inc.)
R2 tmusa; C:\Windows\system32\DRIVERS\tmusa.sys [103712 2013-07-08] (Trend Micro Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [30208 2012-07-26] (Microsoft Corporation)
U2 TMAgent;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-10-19 18:49 - 2013-10-19 18:49 - 01954548 _____ (Farbar) C:\Users\mein Name\Desktop\FRST64.exe
2013-10-19 18:26 - 2013-10-19 18:26 - 00000938 _____ C:\Users\mein Name\Desktop\checkup.txt
2013-10-19 18:22 - 2013-10-19 18:22 - 00891167 _____ C:\Users\mein Name\Desktop\SecurityCheck.exe
2013-10-19 18:17 - 2013-10-19 18:17 - 00000117 _____ C:\Windows\system32\netcfg-8169078.txt
2013-10-19 17:12 - 2013-10-19 17:12 - 00000117 _____ C:\Windows\system32\netcfg-4243156.txt
2013-10-19 16:07 - 2013-10-19 16:07 - 02347384 _____ (ESET) C:\Users\mein Name\Desktop\esetsmartinstaller_enu.exe
2013-10-19 14:00 - 2013-10-19 14:00 - 00006412 _____ C:\Users\mein Name\Desktop\bonanza dingens.txt
2013-10-19 13:48 - 2013-10-19 13:48 - 00000117 _____ C:\Windows\system32\netcfg-57688640.txt
2013-10-19 13:36 - 2013-10-19 13:36 - 00000117 _____ C:\Windows\system32\netcfg-56955937.txt
2013-10-19 12:53 - 2013-10-19 12:53 - 00000117 _____ C:\Windows\system32\netcfg-54370953.txt
2013-10-19 01:51 - 2013-10-19 01:51 - 00000117 _____ C:\Windows\system32\netcfg-14639687.txt
2013-10-18 21:41 - 2013-10-18 21:41 - 00000909 _____ C:\Users\mein Name\Desktop\JRT.txt
2013-10-18 21:39 - 2013-10-18 21:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-18 21:36 - 2013-10-18 21:36 - 01033335 _____ (Thisisu) C:\Users\mein Name\Desktop\JRT.exe
2013-10-18 21:30 - 2013-10-18 21:30 - 00001935 _____ C:\Users\mein Name\Desktop\AdwCleaner[S1].txt
2013-10-18 21:12 - 2013-10-18 21:12 - 01050644 _____ C:\Users\mein Name\Desktop\adwcleaner.exe
2013-10-18 21:09 - 2013-10-18 21:10 - 00000000 ____D C:\Users\mein Name\Desktop\erster durchlauf
2013-10-18 20:56 - 2013-10-18 20:56 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-18 20:56 - 2013-10-18 20:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-18 20:56 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-18 20:51 - 2013-10-18 20:51 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\mein Name\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-18 20:04 - 2013-10-18 20:04 - 00000117 _____ C:\Windows\system32\netcfg-82687218.txt
2013-10-18 18:19 - 2013-10-18 18:19 - 00000117 _____ C:\Windows\system32\netcfg-76396171.txt
2013-10-18 17:00 - 2013-10-18 17:00 - 00000117 _____ C:\Windows\system32\netcfg-71628218.txt
2013-10-18 16:33 - 2013-10-18 16:33 - 00000117 _____ C:\Windows\system32\netcfg-70002812.txt
2013-10-18 16:06 - 2013-10-18 16:06 - 00000117 _____ C:\Windows\system32\netcfg-68416562.txt
2013-10-18 16:03 - 2013-10-18 16:03 - 00000117 _____ C:\Windows\system32\netcfg-68218906.txt
2013-10-18 11:52 - 2013-10-18 11:58 - 00000000 ____D C:\Qoobox
2013-10-18 11:52 - 2013-10-18 11:57 - 00000000 ____D C:\Windows\erdnt
2013-10-18 11:52 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-10-18 11:52 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-10-18 11:52 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-10-18 11:52 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-10-18 11:48 - 2013-10-18 11:48 - 05134711 ____R (Swearware) C:\Users\mein Name\Desktop\ComboFix.exe
2013-10-18 11:38 - 2013-10-18 11:38 - 00000117 _____ C:\Windows\system32\netcfg-52339421.txt
2013-10-18 02:04 - 2013-10-18 02:04 - 00000117 _____ C:\Windows\system32\netcfg-17904453.txt
2013-10-17 21:08 - 2013-10-17 21:08 - 00000117 _____ C:\Windows\system32\netcfg-139281.txt
2013-10-17 20:45 - 2013-10-17 20:45 - 00000117 _____ C:\Windows\system32\netcfg-15628828.txt
2013-10-17 20:29 - 2013-10-17 20:29 - 00377856 _____ C:\Users\mein Name\Desktop\gmer_2.1.19163.exe
2013-10-17 20:21 - 2013-10-17 20:21 - 00000000 ____D C:\FRST
2013-10-17 20:13 - 2013-10-17 20:13 - 00000000 _____ C:\Users\mein Name\defogger_reenable
2013-10-17 20:10 - 2013-10-17 20:10 - 00050477 _____ C:\Users\mein Name\Desktop\Defogger.exe
2013-10-17 20:00 - 2013-10-17 20:00 - 00000117 _____ C:\Windows\system32\netcfg-12919140.txt
2013-10-17 19:31 - 2013-10-17 19:31 - 00000117 _____ C:\Windows\system32\netcfg-11188875.txt
2013-10-17 18:46 - 2013-10-17 22:01 - 00003026 _____ C:\Users\mein Name\Desktop\trojaner board.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862437.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862234.txt
2013-10-17 16:13 - 2013-10-17 16:13 - 00000117 _____ C:\Windows\system32\netcfg-12582312.txt
2013-10-17 16:11 - 2013-10-17 16:11 - 00000117 _____ C:\Windows\system32\netcfg-12431531.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764437.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764000.txt
2013-10-17 12:55 - 2013-10-17 12:55 - 00000000 ____D C:\TMRescueDisk
2013-10-17 12:50 - 2013-10-17 12:50 - 00001429 _____ C:\Users\mein Name\Desktop\Trend Micro Titanium Internet Security.lnk
2013-10-17 12:50 - 2013-10-17 12:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium Internet Security
2013-10-17 12:50 - 2013-09-04 08:24 - 00116264 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmactmon.sys
2013-10-17 12:50 - 2013-09-04 08:22 - 00085424 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmevtmgr.sys
2013-10-17 12:50 - 2013-09-04 08:17 - 00282624 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys
2013-10-17 12:50 - 2013-07-11 04:39 - 00037904 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmel.sys
2013-10-17 12:50 - 2013-07-08 05:16 - 00103712 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmusa.sys
2013-10-17 12:50 - 2013-07-01 15:08 - 00050976 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\TMEBC64.sys
2013-10-17 12:50 - 2013-06-13 08:35 - 00100640 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmeevw.sys
2013-10-17 12:50 - 2013-05-15 12:23 - 00303392 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmnciesc.sys
2013-10-17 12:49 - 2013-10-17 12:49 - 00003268 _____ C:\Windows\System32\Tasks\Titanium BTC
2013-10-17 12:48 - 2013-10-17 16:26 - 00000000 ____D C:\ProgramData\Trend Micro
2013-10-17 12:48 - 2013-10-17 12:48 - 00000059 _____ C:\Windows\system32\SupportTool.exe.bat
2013-10-17 12:47 - 2013-10-17 12:48 - 00000000 ____D C:\Program Files\Trend Micro
2013-10-17 12:45 - 2013-10-17 12:45 - 00000036 _____ C:\Users\mein Name\AppData\Local\housecall.guid.cache
2013-10-17 12:43 - 2013-10-17 12:43 - 00000000 ____D C:\Users\mein Name\AppData\Local\Trend Micro
2013-10-17 12:37 - 2013-10-17 12:41 - 115016720 _____ (Trend Micro Inc.) C:\Users\Public\Desktop\Trend_Micro.exe
2013-10-17 12:34 - 2013-10-17 12:34 - 06631240 _____ (Trend Micro Inc.) C:\Users\mein Name\Desktop\Titanium_Internet_Security_2014.exe
2013-10-17 12:20 - 2013-10-17 12:20 - 00000117 _____ C:\Windows\system32\netcfg-45127859.txt
2013-10-17 12:01 - 2013-10-17 12:01 - 00000117 _____ C:\Windows\system32\netcfg-44028093.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42720328.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42698062.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42687218.txt
2013-10-17 11:28 - 2013-10-17 11:28 - 00000117 _____ C:\Windows\system32\netcfg-42011015.txt
2013-10-16 23:35 - 2013-10-16 23:35 - 00000115 _____ C:\Users\mein Name\Desktop\igno.txt
2013-10-16 20:31 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-16 20:31 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-16 20:31 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-16 20:31 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-16 20:30 - 2013-10-16 20:31 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 20:29 - 2013-10-16 20:29 - 00915368 _____ (Oracle Corporation) C:\Users\mein Name\Desktop\jxpiinstall.exe
2013-10-16 19:48 - 2013-10-16 19:48 - 00000117 _____ C:\Windows\system32\netcfg-18356390.txt
2013-10-16 19:06 - 2013-10-16 19:06 - 00000117 _____ C:\Windows\system32\netcfg-15839953.txt
2013-10-16 18:46 - 2013-10-16 18:46 - 00000117 _____ C:\Windows\system32\netcfg-14612062.txt
2013-10-16 18:35 - 2013-10-16 18:35 - 00000117 _____ C:\Windows\system32\netcfg-13975906.txt
2013-10-16 17:42 - 2013-10-16 17:42 - 00000117 _____ C:\Windows\system32\netcfg-10798078.txt
2013-10-16 17:39 - 2013-10-16 17:39 - 00000117 _____ C:\Windows\system32\netcfg-10600734.txt
2013-10-16 16:51 - 2013-10-16 16:51 - 00000117 _____ C:\Windows\system32\netcfg-7723078.txt
2013-10-16 16:48 - 2013-10-16 16:48 - 00000117 _____ C:\Windows\system32\netcfg-7538093.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4630343.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4629437.txt
2013-10-16 13:27 - 2013-10-16 13:27 - 00010240 _____ C:\Users\mein Name\Desktop\fahrrad fahren.wps
2013-10-16 11:39 - 2013-10-16 11:39 - 00000117 _____ C:\Windows\system32\netcfg-139965953.txt
2013-10-16 02:20 - 2013-10-16 02:20 - 00000117 _____ C:\Windows\system32\netcfg-106381421.txt
2013-10-15 19:26 - 2013-10-15 19:26 - 00000117 _____ C:\Windows\system32\netcfg-81555171.txt
2013-10-15 19:07 - 2013-10-15 19:07 - 00000117 _____ C:\Windows\system32\netcfg-80413812.txt
2013-10-15 15:56 - 2013-10-15 15:56 - 00000117 _____ C:\Windows\system32\netcfg-68955843.txt
2013-10-15 15:40 - 2013-10-15 15:40 - 00000117 _____ C:\Windows\system32\netcfg-67993203.txt
2013-10-15 14:37 - 2013-10-15 14:37 - 00000117 _____ C:\Windows\system32\netcfg-64215875.txt
2013-10-15 13:26 - 2013-10-15 13:26 - 00000117 _____ C:\Windows\system32\netcfg-59930578.txt
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50255078.txt
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50253234.txt
2013-10-14 20:47 - 2013-10-19 18:31 - 00005224 _____ C:\Windows\PFRO.log
2013-10-14 20:27 - 2013-10-14 20:29 - 00000000 ____D C:\ProgramData\Adobe
2013-10-14 20:27 - 2013-10-14 20:27 - 00002021 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-14 20:27 - 2013-10-14 20:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-14 20:20 - 2013-10-14 20:20 - 00000000 ____D C:\Windows\Sun
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\UpdaterEX
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Local\Google
2013-10-14 20:06 - 2013-10-14 20:06 - 00000117 _____ C:\Windows\system32\netcfg-197544125.txt
2013-10-14 19:42 - 2013-10-14 19:42 - 00000117 _____ C:\Windows\system32\netcfg-196122671.txt
2013-10-14 18:28 - 2013-10-15 10:47 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-10-14 16:44 - 2013-10-14 16:44 - 00000117 _____ C:\Windows\system32\netcfg-185445437.txt
2013-10-14 16:13 - 2013-10-14 16:13 - 00000117 _____ C:\Windows\system32\netcfg-183582062.txt
2013-10-14 15:52 - 2013-10-19 18:41 - 00708249 _____ C:\Windows\WindowsUpdate.log
2013-10-14 09:38 - 2013-10-14 09:38 - 00000117 _____ C:\Windows\system32\netcfg-159871250.txt
2013-10-14 02:01 - 2013-10-14 02:01 - 00000117 _____ C:\Windows\system32\netcfg-132414328.txt
2013-10-13 20:27 - 2013-10-13 20:27 - 00009216 _____ C:\Users\mein Name\Desktop\laterne basteln.wps
2013-10-13 19:23 - 2013-10-13 19:23 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Yahoo!
2013-10-13 19:22 - 2013-10-13 19:22 - 00000117 _____ C:\Windows\system32\netcfg-108519484.txt
2013-10-13 19:00 - 2013-10-13 19:00 - 00000117 _____ C:\Windows\system32\netcfg-107204859.txt
2013-10-13 16:16 - 2013-10-13 16:16 - 00000117 _____ C:\Windows\system32\netcfg-97367828.txt
2013-10-13 15:40 - 2013-10-13 15:40 - 00000117 _____ C:\Windows\system32\netcfg-95173625.txt
2013-10-13 12:33 - 2013-10-13 12:33 - 00000117 _____ C:\Windows\system32\netcfg-83950609.txt
2013-10-13 02:40 - 2013-10-13 02:40 - 00000117 _____ C:\Windows\system32\netcfg-48368703.txt
2013-10-12 20:06 - 2013-10-12 20:06 - 00000117 _____ C:\Windows\system32\netcfg-24720421.txt
2013-10-12 17:38 - 2013-10-12 17:38 - 00071550 _____ C:\Users\mein Name\Desktop\cc_20131012_173753.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00007196 _____ C:\Users\mein Name\Desktop\cc_20131012_173821.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00000117 _____ C:\Windows\system32\netcfg-15891765.txt
2013-10-12 17:33 - 2013-10-12 17:33 - 00002780 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-12 17:33 - 2013-10-12 17:33 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-12 17:32 - 2013-10-12 17:33 - 00000000 ____D C:\Program Files\CCleaner
2013-10-12 17:31 - 2013-10-12 17:31 - 03294168 _____ (Piriform Ltd) C:\Users\mein Name\Desktop\ccsetup406_slim.exe
2013-10-12 16:55 - 2013-10-12 16:55 - 00000000 ____D C:\Users\mein Name\Desktop\von stick
2013-10-12 16:51 - 2013-10-12 16:51 - 00001579 _____ C:\Users\mein Name\Desktop\PS - Verknüpfung.lnk
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\CyberLink
2013-10-11 20:37 - 2013-10-11 20:37 - 00000117 _____ C:\Windows\system32\netcfg-360564218.txt
2013-10-11 20:34 - 2013-10-11 20:34 - 00000117 _____ C:\Windows\system32\netcfg-360358000.txt
2013-10-11 19:51 - 2013-10-11 19:51 - 00000117 _____ C:\Windows\system32\netcfg-357810250.txt
2013-10-11 19:44 - 2013-10-11 19:44 - 00000117 _____ C:\Windows\system32\netcfg-357392078.txt
2013-10-11 17:49 - 2013-10-11 17:49 - 00000117 _____ C:\Windows\system32\netcfg-350465515.txt
2013-10-11 17:34 - 2013-10-11 17:34 - 00000117 _____ C:\Windows\system32\netcfg-349605890.txt
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333730328.txt
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333729484.txt
2013-10-10 21:07 - 2013-10-10 21:07 - 00000117 _____ C:\Windows\system32\netcfg-275984031.txt
2013-10-10 21:06 - 2013-10-10 21:06 - 00000117 _____ C:\Windows\system32\netcfg-275911203.txt
2013-10-10 20:12 - 2013-10-10 20:12 - 00000117 _____ C:\Windows\system32\netcfg-272673031.txt
2013-10-10 19:39 - 2013-10-10 19:39 - 00000117 _____ C:\Windows\system32\netcfg-270674671.txt
2013-10-10 18:16 - 2013-10-10 18:16 - 00000117 _____ C:\Windows\system32\netcfg-265728343.txt
2013-10-10 16:20 - 2013-10-10 16:20 - 00000117 _____ C:\Windows\system32\netcfg-258740062.txt
2013-10-10 11:43 - 2013-10-10 11:43 - 00000117 _____ C:\Windows\system32\netcfg-242127203.txt
2013-10-10 02:29 - 2013-10-10 02:29 - 00000117 _____ C:\Windows\system32\netcfg-208915015.txt
2013-10-09 20:17 - 2013-10-09 20:17 - 00000117 _____ C:\Windows\system32\netcfg-186591750.txt
2013-10-09 18:46 - 2013-10-09 18:46 - 00000117 _____ C:\Windows\system32\netcfg-181124921.txt
2013-10-09 18:08 - 2013-10-09 18:08 - 00000117 _____ C:\Windows\system32\netcfg-178847390.txt
2013-10-09 17:03 - 2013-10-09 17:03 - 00000117 _____ C:\Windows\system32\netcfg-174927609.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 00000117 _____ C:\Windows\system32\netcfg-173074687.txt
2013-10-09 16:26 - 2013-10-09 16:26 - 00000117 _____ C:\Windows\system32\netcfg-172735734.txt
2013-10-09 15:41 - 2013-10-09 15:41 - 00000146 _____ C:\Users\mein Name\Desktop\Windows Defender - Verknüpfung.lnk
2013-10-09 13:23 - 2013-10-09 13:23 - 00002771 _____ C:\Users\mein Name\Desktop\Citrus.txt
2013-10-09 11:59 - 2013-10-09 11:59 - 00000117 _____ C:\Windows\system32\netcfg-156687515.txt
2013-10-09 03:09 - 2013-10-09 03:09 - 00000117 _____ C:\Windows\system32\netcfg-124885515.txt
2013-10-08 21:10 - 2013-10-08 21:10 - 00000117 _____ C:\Windows\system32\netcfg-103343062.txt
2013-10-08 21:03 - 2013-10-08 21:03 - 00000117 _____ C:\Windows\system32\netcfg-102917531.txt
2013-10-08 20:11 - 2013-10-08 20:11 - 00000117 _____ C:\Windows\system32\netcfg-99830078.txt
2013-10-08 19:44 - 2013-10-08 19:44 - 00000117 _____ C:\Windows\system32\netcfg-98209328.txt
2013-10-08 17:44 - 2013-10-14 20:24 - 00000000 ____D C:\ProgramData\Yahoo!
2013-10-08 17:44 - 2013-10-08 17:44 - 00001143 _____ C:\Users\Public\Desktop\Yahoo! Messenger.lnk
2013-10-08 17:42 - 2013-10-14 20:24 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2013-10-08 17:29 - 2013-10-08 17:29 - 00000117 _____ C:\Windows\system32\netcfg-90112281.txt
2013-10-08 17:21 - 2013-10-08 17:21 - 00000117 _____ C:\Windows\system32\netcfg-89583859.txt
2013-10-08 15:19 - 2013-10-08 15:19 - 00000117 _____ C:\Windows\system32\netcfg-82270359.txt
2013-10-08 13:43 - 2013-10-08 13:43 - 00000117 _____ C:\Windows\system32\netcfg-76551343.txt
2013-10-08 11:36 - 2013-10-08 11:36 - 00001920 _____ C:\Users\mein Name\Desktop\beckenboden.txt
2013-10-08 11:01 - 2013-10-08 11:01 - 00000117 _____ C:\Windows\system32\netcfg-66818187.txt
2013-10-08 02:42 - 2013-10-08 02:42 - 00000117 _____ C:\Windows\system32\netcfg-36863578.txt
2013-10-07 20:16 - 2013-10-07 20:16 - 00000117 _____ C:\Windows\system32\netcfg-13684281.txt
2013-10-07 18:48 - 2013-10-18 15:19 - 00001206 _____ C:\Users\mein Name\AppData\Roaming\wklnhst.dat
2013-10-07 18:48 - 2013-10-07 18:48 - 00001173 _____ C:\Users\mein Name\Desktop\Microsoft Works.LNK
2013-10-07 18:48 - 2013-10-07 18:48 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Template
2013-10-07 18:39 - 2013-10-07 18:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-07 18:36 - 2013-10-07 18:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-10-07 18:23 - 2013-10-07 18:23 - 00000117 _____ C:\Windows\system32\netcfg-6917859.txt
2013-10-07 17:40 - 2013-10-07 17:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-07 17:28 - 2013-10-16 20:31 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-07 17:21 - 2013-10-07 17:21 - 00000117 _____ C:\Windows\system32\netcfg-3235453.txt
2013-10-07 17:19 - 2013-10-07 17:19 - 00000117 _____ C:\Windows\system32\netcfg-3122375.txt
2013-10-07 17:17 - 2013-10-07 17:17 - 00000117 _____ C:\Windows\system32\netcfg-2989796.txt
2013-10-07 17:16 - 2013-10-07 17:16 - 00000117 _____ C:\Windows\system32\netcfg-2906203.txt
2013-10-07 17:15 - 2013-10-07 17:15 - 00000117 _____ C:\Windows\system32\netcfg-2872484.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00001153 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-07 17:11 - 2013-10-07 17:11 - 00000117 _____ C:\Windows\system32\netcfg-2589859.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Mozilla
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323750.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323734.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-317734.txt
2013-10-07 16:27 - 2013-10-07 16:27 - 00000117 _____ C:\Windows\system32\netcfg-1062062.txt
2013-10-07 16:21 - 2013-10-07 16:21 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\hpqLog
2013-10-07 16:15 - 2013-10-07 16:16 - 00000117 _____ C:\Windows\system32\netcfg-354828.txt
2013-10-07 16:12 - 2013-10-07 16:12 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-10-07 16:10 - 2013-10-07 16:10 - 00000117 _____ C:\Windows\system32\netcfg-27484.txt
2013-10-07 16:06 - 2013-05-02 17:29 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Malwarebytes
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651812.txt
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651515.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-80359.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-79609.txt
2013-10-07 12:50 - 2013-10-18 21:28 - 00000000 ____D C:\AdwCleaner
2013-10-07 12:47 - 2013-10-07 12:47 - 01045226 _____ C:\Users\mein Name\Desktop\adwcleaner_3.0.0.6.exe
2013-10-07 11:40 - 2013-10-07 11:40 - 00000117 _____ C:\Windows\system32\netcfg-135726031.txt
2013-10-07 01:49 - 2013-10-07 01:49 - 00000117 _____ C:\Windows\system32\netcfg-100287125.txt
2013-10-06 20:14 - 2013-10-06 20:14 - 00000117 _____ C:\Windows\system32\netcfg-80143484.txt
2013-10-06 19:13 - 2013-10-06 19:13 - 00000117 _____ C:\Windows\system32\netcfg-76489531.txt
2013-10-06 17:16 - 2013-10-06 17:16 - 00000117 _____ C:\Windows\system32\netcfg-69504921.txt
2013-10-06 15:43 - 2013-10-06 15:43 - 00000117 _____ C:\Windows\system32\netcfg-63923812.txt
2013-10-06 15:19 - 2013-10-06 15:19 - 00000117 _____ C:\Windows\system32\netcfg-62479484.txt
2013-10-06 15:05 - 2013-10-06 15:05 - 00000117 _____ C:\Windows\system32\netcfg-61607500.txt
2013-10-06 14:27 - 2013-10-16 13:31 - 00001378 _____ C:\Users\mein Name\Desktop\gangschaltung.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58040500.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58039734.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167828.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167468.txt
2013-10-06 00:49 - 2013-10-06 00:49 - 00000000 ____D C:\ProgramData\Recovery
2013-10-05 21:52 - 2013-10-05 21:52 - 00000936 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2013-10-05 21:52 - 2013-10-05 21:52 - 00000000 ____D C:\Program Files (x86)\epson
2013-10-05 21:52 - 2006-10-13 00:00 - 00093184 _____ (SEIKO EPSON CORP.) C:\Windows\system32\esxcwiad.dll
2013-10-05 21:45 - 2013-10-13 17:38 - 00000000 ____D C:\Users\mein Name\AppData\Local\Thunderbird
2013-10-05 21:45 - 2013-10-05 21:45 - 00002092 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2013-10-05 21:45 - 2013-10-05 21:45 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Thunderbird
2013-10-05 21:40 - 2013-10-16 20:33 - 00000000 ____D C:\ProgramData\Oracle
2013-10-05 21:40 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Sun
2013-10-05 21:36 - 2013-10-05 21:36 - 00000000 ____D C:\Users\mein Name\AppData\Local\Macromedia
2013-10-05 21:34 - 2013-10-14 20:28 - 00000000 ____D C:\Users\mein Name\AppData\Local\Adobe
2013-10-05 21:12 - 2013-10-16 14:42 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-05 21:12 - 2013-10-05 21:15 - 00000000 ____D C:\Users\mein Name\AppData\Local\Mozilla
2013-10-05 21:12 - 2013-10-05 21:12 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-05 21:10 - 2013-10-05 21:10 - 00001008 _____ C:\Users\mein Name\Desktop\IrfanView.lnk
2013-10-05 21:10 - 2013-10-05 21:10 - 00000000 ____D C:\Program Files (x86)\IrfanView
2013-10-05 21:03 - 2013-10-05 21:03 - 00000117 _____ C:\Windows\system32\netcfg-15950734.txt
2013-10-05 20:10 - 2013-10-05 20:10 - 00000117 _____ C:\Windows\system32\netcfg-12765281.txt
2013-10-05 19:23 - 2013-10-05 19:23 - 00000117 _____ C:\Windows\system32\netcfg-9918046.txt
2013-10-05 18:08 - 2013-10-05 18:08 - 00000117 _____ C:\Windows\system32\netcfg-5405031.txt
2013-10-05 17:16 - 2013-10-05 17:16 - 00000000 ____D C:\sources
2013-10-05 16:58 - 2013-10-05 16:58 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Macromedia
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477953.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477921.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477734.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-474468.txt
2013-10-05 16:36 - 2013-10-18 13:06 - 00057344 _____ C:\Users\mein Name\Desktop\Zitrus - Kontroll-Notizen.wps
2013-10-05 16:36 - 2013-10-17 22:54 - 00000540 _____ C:\Users\mein Name\Desktop\rest.txt
2013-10-05 16:36 - 2013-09-18 23:36 - 00002738 _____ C:\Users\mein Name\Desktop\nicks.txt
2013-10-05 16:35 - 2013-10-11 16:00 - 00031232 _____ C:\Users\mein Name\Desktop\mobile.wps
2013-10-05 16:30 - 2013-10-05 16:30 - 00000000 ____D C:\Users\mein Name\AppData\Local\Hewlett-Packard
2013-10-05 16:02 - 2013-10-05 16:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-05 15:14 - 2013-10-14 21:16 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4071608636-3666989274-3695306699-1001
2013-10-05 15:09 - 2013-10-14 20:28 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Adobe
2013-10-05 15:09 - 2013-10-05 15:09 - 00001444 _____ C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\SysWOW64\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\system32\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ____D C:\Users\mein Name\AppData\Local\Power2Go8
2013-10-05 15:09 - 2012-10-27 03:30 - 00002217 _____ C:\Users\Public\Desktop\Snapfish Fotos.lnk
2013-10-05 15:08 - 2013-10-07 16:21 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Hewlett-Packard
2013-10-05 15:07 - 2013-10-17 20:13 - 00000000 ____D C:\Users\mein Name
2013-10-05 15:07 - 2013-10-07 18:48 - 00000000 ____D C:\Users\mein Name\AppData\Local\VirtualStore
2013-10-05 15:07 - 2013-10-05 15:33 - 00000000 ____D C:\Users\mein Name\AppData\Local\Packages
2013-10-05 15:07 - 2013-10-05 15:07 - 00000020 ___SH C:\Users\mein Name\ntuser.ini
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Vorlagen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Startmenü
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Netzwerkumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Lokale Einstellungen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Eigene Dateien
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Druckumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Musik
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Bilder
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Verlauf
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Anwendungsdaten
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Anwendungsdaten
2013-10-05 15:07 - 2012-10-27 03:16 - 00000000 ___HD C:\Users\mein Name\Documents\hp.system.package.metadata
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-05 15:07 - 2012-07-26 10:13 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Dokumente und Einstellungen
==================== One Month Modified Files and Folders =======
2013-10-19 18:49 - 2013-10-19 18:49 - 01954548 _____ (Farbar) C:\Users\mein Name\Desktop\FRST64.exe
2013-10-19 18:41 - 2013-10-14 15:52 - 00708249 _____ C:\Windows\WindowsUpdate.log
2013-10-19 18:33 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-10-19 18:31 - 2013-10-14 20:47 - 00005224 _____ C:\Windows\PFRO.log
2013-10-19 18:31 - 2012-07-26 09:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-19 18:26 - 2013-10-19 18:26 - 00000938 _____ C:\Users\mein Name\Desktop\checkup.txt
2013-10-19 18:22 - 2013-10-19 18:22 - 00891167 _____ C:\Users\mein Name\Desktop\SecurityCheck.exe
2013-10-19 18:17 - 2013-10-19 18:17 - 00000117 _____ C:\Windows\system32\netcfg-8169078.txt
2013-10-19 18:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\sru
2013-10-19 17:12 - 2013-10-19 17:12 - 00000117 _____ C:\Windows\system32\netcfg-4243156.txt
2013-10-19 16:07 - 2013-10-19 16:07 - 02347384 _____ (ESET) C:\Users\mein Name\Desktop\esetsmartinstaller_enu.exe
2013-10-19 14:00 - 2013-10-19 14:00 - 00006412 _____ C:\Users\mein Name\Desktop\bonanza dingens.txt
2013-10-19 13:48 - 2013-10-19 13:48 - 00000117 _____ C:\Windows\system32\netcfg-57688640.txt
2013-10-19 13:36 - 2013-10-19 13:36 - 00000117 _____ C:\Windows\system32\netcfg-56955937.txt
2013-10-19 12:53 - 2013-10-19 12:53 - 00000117 _____ C:\Windows\system32\netcfg-54370953.txt
2013-10-19 01:51 - 2013-10-19 01:51 - 00000117 _____ C:\Windows\system32\netcfg-14639687.txt
2013-10-18 21:41 - 2013-10-18 21:41 - 00000909 _____ C:\Users\mein Name\Desktop\JRT.txt
2013-10-18 21:39 - 2013-10-18 21:39 - 00000000 ____D C:\Windows\ERUNT
2013-10-18 21:36 - 2013-10-18 21:36 - 01033335 _____ (Thisisu) C:\Users\mein Name\Desktop\JRT.exe
2013-10-18 21:30 - 2013-10-18 21:30 - 00001935 _____ C:\Users\mein Name\Desktop\AdwCleaner[S1].txt
2013-10-18 21:28 - 2013-10-07 12:50 - 00000000 ____D C:\AdwCleaner
2013-10-18 21:12 - 2013-10-18 21:12 - 01050644 _____ C:\Users\mein Name\Desktop\adwcleaner.exe
2013-10-18 21:10 - 2013-10-18 21:09 - 00000000 ____D C:\Users\mein Name\Desktop\erster durchlauf
2013-10-18 20:56 - 2013-10-18 20:56 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-18 20:56 - 2013-10-18 20:56 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-18 20:51 - 2013-10-18 20:51 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\mein Name\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-18 20:04 - 2013-10-18 20:04 - 00000117 _____ C:\Windows\system32\netcfg-82687218.txt
2013-10-18 18:19 - 2013-10-18 18:19 - 00000117 _____ C:\Windows\system32\netcfg-76396171.txt
2013-10-18 17:00 - 2013-10-18 17:00 - 00000117 _____ C:\Windows\system32\netcfg-71628218.txt
2013-10-18 16:33 - 2013-10-18 16:33 - 00000117 _____ C:\Windows\system32\netcfg-70002812.txt
2013-10-18 16:06 - 2013-10-18 16:06 - 00000117 _____ C:\Windows\system32\netcfg-68416562.txt
2013-10-18 16:03 - 2013-10-18 16:03 - 00000117 _____ C:\Windows\system32\netcfg-68218906.txt
2013-10-18 15:19 - 2013-10-07 18:48 - 00001206 _____ C:\Users\mein Name\AppData\Roaming\wklnhst.dat
2013-10-18 15:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-10-18 13:22 - 2012-10-27 12:06 - 00745562 _____ C:\Windows\system32\perfh007.dat
2013-10-18 13:22 - 2012-10-27 12:06 - 00169488 _____ C:\Windows\system32\perfc007.dat
2013-10-18 13:22 - 2012-07-26 09:28 - 01752656 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-18 13:06 - 2013-10-05 16:36 - 00057344 _____ C:\Users\mein Name\Desktop\Zitrus - Kontroll-Notizen.wps
2013-10-18 11:58 - 2013-10-18 11:52 - 00000000 ____D C:\Qoobox
2013-10-18 11:58 - 2012-07-26 07:37 - 00000000 __RHD C:\Users\Default
2013-10-18 11:57 - 2013-10-18 11:52 - 00000000 ____D C:\Windows\erdnt
2013-10-18 11:57 - 2012-07-26 07:26 - 00000215 _____ C:\Windows\system.ini
2013-10-18 11:48 - 2013-10-18 11:48 - 05134711 ____R (Swearware) C:\Users\mein Name\Desktop\ComboFix.exe
2013-10-18 11:38 - 2013-10-18 11:38 - 00000117 _____ C:\Windows\system32\netcfg-52339421.txt
2013-10-18 02:04 - 2013-10-18 02:04 - 00000117 _____ C:\Windows\system32\netcfg-17904453.txt
2013-10-17 22:54 - 2013-10-05 16:36 - 00000540 _____ C:\Users\mein Name\Desktop\rest.txt
2013-10-17 22:01 - 2013-10-17 18:46 - 00003026 _____ C:\Users\mein Name\Desktop\trojaner board.txt
2013-10-17 21:08 - 2013-10-17 21:08 - 00000117 _____ C:\Windows\system32\netcfg-139281.txt
2013-10-17 20:45 - 2013-10-17 20:45 - 00000117 _____ C:\Windows\system32\netcfg-15628828.txt
2013-10-17 20:29 - 2013-10-17 20:29 - 00377856 _____ C:\Users\mein Name\Desktop\gmer_2.1.19163.exe
2013-10-17 20:21 - 2013-10-17 20:21 - 00000000 ____D C:\FRST
2013-10-17 20:13 - 2013-10-17 20:13 - 00000000 _____ C:\Users\mein Name\defogger_reenable
2013-10-17 20:13 - 2013-10-05 15:07 - 00000000 ____D C:\Users\mein Name
2013-10-17 20:10 - 2013-10-17 20:10 - 00050477 _____ C:\Users\mein Name\Desktop\Defogger.exe
2013-10-17 20:00 - 2013-10-17 20:00 - 00000117 _____ C:\Windows\system32\netcfg-12919140.txt
2013-10-17 19:31 - 2013-10-17 19:31 - 00000117 _____ C:\Windows\system32\netcfg-11188875.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862437.txt
2013-10-17 18:36 - 2013-10-17 18:36 - 00000117 _____ C:\Windows\system32\netcfg-7862234.txt
2013-10-17 16:26 - 2013-10-17 12:48 - 00000000 ____D C:\ProgramData\Trend Micro
2013-10-17 16:13 - 2013-10-17 16:13 - 00000117 _____ C:\Windows\system32\netcfg-12582312.txt
2013-10-17 16:11 - 2013-10-17 16:11 - 00000117 _____ C:\Windows\system32\netcfg-12431531.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764437.txt
2013-10-17 15:26 - 2013-10-17 15:26 - 00000117 _____ C:\Windows\system32\netcfg-9764000.txt
2013-10-17 12:55 - 2013-10-17 12:55 - 00000000 ____D C:\TMRescueDisk
2013-10-17 12:50 - 2013-10-17 12:50 - 00001429 _____ C:\Users\mein Name\Desktop\Trend Micro Titanium Internet Security.lnk
2013-10-17 12:50 - 2013-10-17 12:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Titanium Internet Security
2013-10-17 12:50 - 2012-07-26 10:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-10-17 12:49 - 2013-10-17 12:49 - 00003268 _____ C:\Windows\System32\Tasks\Titanium BTC
2013-10-17 12:48 - 2013-10-17 12:48 - 00000059 _____ C:\Windows\system32\SupportTool.exe.bat
2013-10-17 12:48 - 2013-10-17 12:47 - 00000000 ____D C:\Program Files\Trend Micro
2013-10-17 12:45 - 2013-10-17 12:45 - 00000036 _____ C:\Users\mein Name\AppData\Local\housecall.guid.cache
2013-10-17 12:43 - 2013-10-17 12:43 - 00000000 ____D C:\Users\mein Name\AppData\Local\Trend Micro
2013-10-17 12:41 - 2013-10-17 12:37 - 115016720 _____ (Trend Micro Inc.) C:\Users\Public\Desktop\Trend_Micro.exe
2013-10-17 12:34 - 2013-10-17 12:34 - 06631240 _____ (Trend Micro Inc.) C:\Users\mein Name\Desktop\Titanium_Internet_Security_2014.exe
2013-10-17 12:20 - 2013-10-17 12:20 - 00000117 _____ C:\Windows\system32\netcfg-45127859.txt
2013-10-17 12:01 - 2013-10-17 12:01 - 00000117 _____ C:\Windows\system32\netcfg-44028093.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42720328.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42698062.txt
2013-10-17 11:39 - 2013-10-17 11:39 - 00000117 _____ C:\Windows\system32\netcfg-42687218.txt
2013-10-17 11:28 - 2013-10-17 11:28 - 00000117 _____ C:\Windows\system32\netcfg-42011015.txt
2013-10-16 23:35 - 2013-10-16 23:35 - 00000115 _____ C:\Users\mein Name\Desktop\igno.txt
2013-10-16 21:03 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\LiveKernelReports
2013-10-16 20:33 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Oracle
2013-10-16 20:31 - 2013-10-16 20:30 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 20:31 - 2013-10-07 17:28 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-16 20:29 - 2013-10-16 20:29 - 00915368 _____ (Oracle Corporation) C:\Users\mein Name\Desktop\jxpiinstall.exe
2013-10-16 19:48 - 2013-10-16 19:48 - 00000117 _____ C:\Windows\system32\netcfg-18356390.txt
2013-10-16 19:06 - 2013-10-16 19:06 - 00000117 _____ C:\Windows\system32\netcfg-15839953.txt
2013-10-16 18:46 - 2013-10-16 18:46 - 00000117 _____ C:\Windows\system32\netcfg-14612062.txt
2013-10-16 18:35 - 2013-10-16 18:35 - 00000117 _____ C:\Windows\system32\netcfg-13975906.txt
2013-10-16 17:42 - 2013-10-16 17:42 - 00000117 _____ C:\Windows\system32\netcfg-10798078.txt
2013-10-16 17:39 - 2013-10-16 17:39 - 00000117 _____ C:\Windows\system32\netcfg-10600734.txt
2013-10-16 16:51 - 2013-10-16 16:51 - 00000117 _____ C:\Windows\system32\netcfg-7723078.txt
2013-10-16 16:48 - 2013-10-16 16:48 - 00000117 _____ C:\Windows\system32\netcfg-7538093.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4630343.txt
2013-10-16 15:59 - 2013-10-16 15:59 - 00000117 _____ C:\Windows\system32\netcfg-4629437.txt
2013-10-16 14:42 - 2013-10-05 21:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-16 14:42 - 2012-07-26 07:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-10-16 13:31 - 2013-10-06 14:27 - 00001378 _____ C:\Users\mein Name\Desktop\gangschaltung.txt
2013-10-16 13:27 - 2013-10-16 13:27 - 00010240 _____ C:\Users\mein Name\Desktop\fahrrad fahren.wps
2013-10-16 11:39 - 2013-10-16 11:39 - 00000117 _____ C:\Windows\system32\netcfg-139965953.txt
2013-10-16 02:20 - 2013-10-16 02:20 - 00000117 _____ C:\Windows\system32\netcfg-106381421.txt
2013-10-15 19:26 - 2013-10-15 19:26 - 00000117 _____ C:\Windows\system32\netcfg-81555171.txt
2013-10-15 19:07 - 2013-10-15 19:07 - 00000117 _____ C:\Windows\system32\netcfg-80413812.txt
2013-10-15 15:56 - 2013-10-15 15:56 - 00000117 _____ C:\Windows\system32\netcfg-68955843.txt
2013-10-15 15:40 - 2013-10-15 15:40 - 00000117 _____ C:\Windows\system32\netcfg-67993203.txt
2013-10-15 14:37 - 2013-10-15 14:37 - 00000117 _____ C:\Windows\system32\netcfg-64215875.txt
2013-10-15 13:26 - 2013-10-15 13:26 - 00000117 _____ C:\Windows\system32\netcfg-59930578.txt
2013-10-15 10:47 - 2013-10-14 18:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50255078.txt
2013-10-15 10:44 - 2013-10-15 10:44 - 00000117 _____ C:\Windows\system32\netcfg-50253234.txt
2013-10-14 21:16 - 2013-10-05 15:14 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4071608636-3666989274-3695306699-1001
2013-10-14 20:29 - 2013-10-14 20:27 - 00000000 ____D C:\ProgramData\Adobe
2013-10-14 20:28 - 2013-10-05 21:34 - 00000000 ____D C:\Users\mein Name\AppData\Local\Adobe
2013-10-14 20:28 - 2013-10-05 15:09 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Adobe
2013-10-14 20:27 - 2013-10-14 20:27 - 00002021 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-14 20:27 - 2013-10-14 20:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-14 20:24 - 2013-10-08 17:44 - 00000000 ____D C:\ProgramData\Yahoo!
2013-10-14 20:24 - 2013-10-08 17:42 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2013-10-14 20:20 - 2013-10-14 20:20 - 00000000 ____D C:\Windows\Sun
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\UpdaterEX
2013-10-14 20:19 - 2013-10-14 20:19 - 00000000 ____D C:\Users\mein Name\AppData\Local\Google
2013-10-14 20:06 - 2013-10-14 20:06 - 00000117 _____ C:\Windows\system32\netcfg-197544125.txt
2013-10-14 19:42 - 2013-10-14 19:42 - 00000117 _____ C:\Windows\system32\netcfg-196122671.txt
2013-10-14 16:44 - 2013-10-14 16:44 - 00000117 _____ C:\Windows\system32\netcfg-185445437.txt
2013-10-14 16:13 - 2013-10-14 16:13 - 00000117 _____ C:\Windows\system32\netcfg-183582062.txt
2013-10-14 09:38 - 2013-10-14 09:38 - 00000117 _____ C:\Windows\system32\netcfg-159871250.txt
2013-10-14 02:01 - 2013-10-14 02:01 - 00000117 _____ C:\Windows\system32\netcfg-132414328.txt
2013-10-13 20:27 - 2013-10-13 20:27 - 00009216 _____ C:\Users\mein Name\Desktop\laterne basteln.wps
2013-10-13 19:23 - 2013-10-13 19:23 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Yahoo!
2013-10-13 19:22 - 2013-10-13 19:22 - 00000117 _____ C:\Windows\system32\netcfg-108519484.txt
2013-10-13 19:00 - 2013-10-13 19:00 - 00000117 _____ C:\Windows\system32\netcfg-107204859.txt
2013-10-13 17:38 - 2013-10-05 21:45 - 00000000 ____D C:\Users\mein Name\AppData\Local\Thunderbird
2013-10-13 17:01 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\NDF
2013-10-13 16:16 - 2013-10-13 16:16 - 00000117 _____ C:\Windows\system32\netcfg-97367828.txt
2013-10-13 15:40 - 2013-10-13 15:40 - 00000117 _____ C:\Windows\system32\netcfg-95173625.txt
2013-10-13 12:33 - 2013-10-13 12:33 - 00000117 _____ C:\Windows\system32\netcfg-83950609.txt
2013-10-13 02:40 - 2013-10-13 02:40 - 00000117 _____ C:\Windows\system32\netcfg-48368703.txt
2013-10-12 20:06 - 2013-10-12 20:06 - 00000117 _____ C:\Windows\system32\netcfg-24720421.txt
2013-10-12 17:38 - 2013-10-12 17:38 - 00071550 _____ C:\Users\mein Name\Desktop\cc_20131012_173753.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00007196 _____ C:\Users\mein Name\Desktop\cc_20131012_173821.reg
2013-10-12 17:38 - 2013-10-12 17:38 - 00000117 _____ C:\Windows\system32\netcfg-15891765.txt
2013-10-12 17:35 - 2012-08-02 04:02 - 00000000 ____D C:\Windows\Panther
2013-10-12 17:33 - 2013-10-12 17:33 - 00002780 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-12 17:33 - 2013-10-12 17:33 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-12 17:33 - 2013-10-12 17:32 - 00000000 ____D C:\Program Files\CCleaner
2013-10-12 17:31 - 2013-10-12 17:31 - 03294168 _____ (Piriform Ltd) C:\Users\mein Name\Desktop\ccsetup406_slim.exe
2013-10-12 16:57 - 2012-10-27 03:22 - 00000000 ____D C:\ProgramData\CyberLink
2013-10-12 16:55 - 2013-10-12 16:55 - 00000000 ____D C:\Users\mein Name\Desktop\von stick
2013-10-12 16:51 - 2013-10-12 16:51 - 00001579 _____ C:\Users\mein Name\Desktop\PS - Verknüpfung.lnk
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\Documents\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\Public\CyberLink
2013-10-12 16:50 - 2013-10-12 16:50 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\CyberLink
2013-10-12 13:14 - 2012-07-26 09:19 - 00339760 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 20:37 - 2013-10-11 20:37 - 00000117 _____ C:\Windows\system32\netcfg-360564218.txt
2013-10-11 20:34 - 2013-10-11 20:34 - 00000117 _____ C:\Windows\system32\netcfg-360358000.txt
2013-10-11 19:51 - 2013-10-11 19:51 - 00000117 _____ C:\Windows\system32\netcfg-357810250.txt
2013-10-11 19:44 - 2013-10-11 19:44 - 00000117 _____ C:\Windows\system32\netcfg-357392078.txt
2013-10-11 17:49 - 2013-10-11 17:49 - 00000117 _____ C:\Windows\system32\netcfg-350465515.txt
2013-10-11 17:34 - 2013-10-11 17:34 - 00000117 _____ C:\Windows\system32\netcfg-349605890.txt
2013-10-11 16:00 - 2013-10-05 16:35 - 00031232 _____ C:\Users\mein Name\Desktop\mobile.wps
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333730328.txt
2013-10-11 13:10 - 2013-10-11 13:10 - 00000117 _____ C:\Windows\system32\netcfg-333729484.txt
2013-10-10 21:07 - 2013-10-10 21:07 - 00000117 _____ C:\Windows\system32\netcfg-275984031.txt
2013-10-10 21:06 - 2013-10-10 21:06 - 00000117 _____ C:\Windows\system32\netcfg-275911203.txt
2013-10-10 20:12 - 2013-10-10 20:12 - 00000117 _____ C:\Windows\system32\netcfg-272673031.txt
2013-10-10 19:39 - 2013-10-10 19:39 - 00000117 _____ C:\Windows\system32\netcfg-270674671.txt
2013-10-10 18:16 - 2013-10-10 18:16 - 00000117 _____ C:\Windows\system32\netcfg-265728343.txt
2013-10-10 16:20 - 2013-10-10 16:20 - 00000117 _____ C:\Windows\system32\netcfg-258740062.txt
2013-10-10 11:43 - 2013-10-10 11:43 - 00000117 _____ C:\Windows\system32\netcfg-242127203.txt
2013-10-10 02:29 - 2013-10-10 02:29 - 00000117 _____ C:\Windows\system32\netcfg-208915015.txt
2013-10-09 20:17 - 2013-10-09 20:17 - 00000117 _____ C:\Windows\system32\netcfg-186591750.txt
2013-10-09 18:46 - 2013-10-09 18:46 - 00000117 _____ C:\Windows\system32\netcfg-181124921.txt
2013-10-09 18:08 - 2013-10-09 18:08 - 00000117 _____ C:\Windows\system32\netcfg-178847390.txt
2013-10-09 17:03 - 2013-10-09 17:03 - 00000117 _____ C:\Windows\system32\netcfg-174927609.txt
2013-10-09 16:32 - 2013-10-09 16:32 - 00000117 _____ C:\Windows\system32\netcfg-173074687.txt
2013-10-09 16:26 - 2013-10-09 16:26 - 00000117 _____ C:\Windows\system32\netcfg-172735734.txt
2013-10-09 15:41 - 2013-10-09 15:41 - 00000146 _____ C:\Users\mein Name\Desktop\Windows Defender - Verknüpfung.lnk
2013-10-09 13:23 - 2013-10-09 13:23 - 00002771 _____ C:\Users\mein Name\Desktop\Citrus.txt
2013-10-09 11:59 - 2013-10-09 11:59 - 00000117 _____ C:\Windows\system32\netcfg-156687515.txt
2013-10-09 03:09 - 2013-10-09 03:09 - 00000117 _____ C:\Windows\system32\netcfg-124885515.txt
2013-10-08 21:10 - 2013-10-08 21:10 - 00000117 _____ C:\Windows\system32\netcfg-103343062.txt
2013-10-08 21:03 - 2013-10-08 21:03 - 00000117 _____ C:\Windows\system32\netcfg-102917531.txt
2013-10-08 20:11 - 2013-10-08 20:11 - 00000117 _____ C:\Windows\system32\netcfg-99830078.txt
2013-10-08 19:44 - 2013-10-08 19:44 - 00000117 _____ C:\Windows\system32\netcfg-98209328.txt
2013-10-08 17:44 - 2013-10-08 17:44 - 00001143 _____ C:\Users\Public\Desktop\Yahoo! Messenger.lnk
2013-10-08 17:29 - 2013-10-08 17:29 - 00000117 _____ C:\Windows\system32\netcfg-90112281.txt
2013-10-08 17:21 - 2013-10-08 17:21 - 00000117 _____ C:\Windows\system32\netcfg-89583859.txt
2013-10-08 15:19 - 2013-10-08 15:19 - 00000117 _____ C:\Windows\system32\netcfg-82270359.txt
2013-10-08 13:43 - 2013-10-08 13:43 - 00000117 _____ C:\Windows\system32\netcfg-76551343.txt
2013-10-08 11:36 - 2013-10-08 11:36 - 00001920 _____ C:\Users\mein Name\Desktop\beckenboden.txt
2013-10-08 11:03 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-10-08 11:01 - 2013-10-08 11:01 - 00000117 _____ C:\Windows\system32\netcfg-66818187.txt
2013-10-08 07:50 - 2013-10-16 20:31 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-16 20:31 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-16 20:31 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-16 20:31 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-08 02:42 - 2013-10-08 02:42 - 00000117 _____ C:\Windows\system32\netcfg-36863578.txt
2013-10-07 20:16 - 2013-10-07 20:16 - 00000117 _____ C:\Windows\system32\netcfg-13684281.txt
2013-10-07 18:48 - 2013-10-07 18:48 - 00001173 _____ C:\Users\mein Name\Desktop\Microsoft Works.LNK
2013-10-07 18:48 - 2013-10-07 18:48 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Template
2013-10-07 18:48 - 2013-10-05 15:07 - 00000000 ____D C:\Users\mein Name\AppData\Local\VirtualStore
2013-10-07 18:39 - 2013-10-07 18:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-10-07 18:39 - 2013-10-07 18:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-10-07 18:23 - 2013-10-07 18:23 - 00000117 _____ C:\Windows\system32\netcfg-6917859.txt
2013-10-07 17:40 - 2013-10-07 17:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-07 17:21 - 2013-10-07 17:21 - 00000117 _____ C:\Windows\system32\netcfg-3235453.txt
2013-10-07 17:19 - 2013-10-07 17:19 - 00000117 _____ C:\Windows\system32\netcfg-3122375.txt
2013-10-07 17:17 - 2013-10-07 17:17 - 00000117 _____ C:\Windows\system32\netcfg-2989796.txt
2013-10-07 17:16 - 2013-10-07 17:16 - 00000117 _____ C:\Windows\system32\netcfg-2906203.txt
2013-10-07 17:15 - 2013-10-07 17:15 - 00000117 _____ C:\Windows\system32\netcfg-2872484.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00001153 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-07 17:11 - 2013-10-07 17:11 - 00000117 _____ C:\Windows\system32\netcfg-2589859.txt
2013-10-07 17:11 - 2013-10-07 17:11 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Mozilla
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323750.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-323734.txt
2013-10-07 16:33 - 2013-10-07 16:33 - 00000117 _____ C:\Windows\system32\netcfg-317734.txt
2013-10-07 16:27 - 2013-10-07 16:27 - 00000117 _____ C:\Windows\system32\netcfg-1062062.txt
2013-10-07 16:26 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-07 16:23 - 2012-10-27 03:16 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-10-07 16:21 - 2013-10-07 16:21 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\hpqLog
2013-10-07 16:21 - 2013-10-05 15:08 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Hewlett-Packard
2013-10-07 16:21 - 2012-10-27 03:17 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-10-07 16:16 - 2013-10-07 16:15 - 00000117 _____ C:\Windows\system32\netcfg-354828.txt
2013-10-07 16:12 - 2013-10-07 16:12 - 00000000 ____D C:\ProgramData\Simply Super Software
2013-10-07 16:10 - 2013-10-07 16:10 - 00000117 _____ C:\Windows\system32\netcfg-27484.txt
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Malwarebytes
2013-10-07 15:08 - 2013-10-07 15:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651812.txt
2013-10-07 15:06 - 2013-10-07 15:06 - 00000117 _____ C:\Windows\system32\netcfg-5651515.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-80359.txt
2013-10-07 13:25 - 2013-10-07 13:25 - 00000117 _____ C:\Windows\system32\netcfg-79609.txt
2013-10-07 12:47 - 2013-10-07 12:47 - 01045226 _____ C:\Users\mein Name\Desktop\adwcleaner_3.0.0.6.exe
2013-10-07 11:40 - 2013-10-07 11:40 - 00000117 _____ C:\Windows\system32\netcfg-135726031.txt
2013-10-07 01:49 - 2013-10-07 01:49 - 00000117 _____ C:\Windows\system32\netcfg-100287125.txt
2013-10-06 20:14 - 2013-10-06 20:14 - 00000117 _____ C:\Windows\system32\netcfg-80143484.txt
2013-10-06 19:13 - 2013-10-06 19:13 - 00000117 _____ C:\Windows\system32\netcfg-76489531.txt
2013-10-06 17:16 - 2013-10-06 17:16 - 00000117 _____ C:\Windows\system32\netcfg-69504921.txt
2013-10-06 15:43 - 2013-10-06 15:43 - 00000117 _____ C:\Windows\system32\netcfg-63923812.txt
2013-10-06 15:19 - 2013-10-06 15:19 - 00000117 _____ C:\Windows\system32\netcfg-62479484.txt
2013-10-06 15:05 - 2013-10-06 15:05 - 00000117 _____ C:\Windows\system32\netcfg-61607500.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58040500.txt
2013-10-06 14:05 - 2013-10-06 14:05 - 00000117 _____ C:\Windows\system32\netcfg-58039734.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167828.txt
2013-10-06 12:11 - 2013-10-06 12:11 - 00000117 _____ C:\Windows\system32\netcfg-51167468.txt
2013-10-06 00:50 - 2012-07-26 10:13 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2013-10-06 00:49 - 2013-10-06 00:49 - 00000000 ____D C:\ProgramData\Recovery
2013-10-05 21:52 - 2013-10-05 21:52 - 00000936 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2013-10-05 21:52 - 2013-10-05 21:52 - 00000000 ____D C:\Program Files (x86)\epson
2013-10-05 21:45 - 2013-10-05 21:45 - 00002092 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2013-10-05 21:45 - 2013-10-05 21:45 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Thunderbird
2013-10-05 21:40 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Sun
2013-10-05 21:36 - 2013-10-05 21:36 - 00000000 ____D C:\Users\mein Name\AppData\Local\Macromedia
2013-10-05 21:15 - 2013-10-05 21:12 - 00000000 ____D C:\Users\mein Name\AppData\Local\Mozilla
2013-10-05 21:12 - 2013-10-05 21:12 - 00000000 ____D C:\ProgramData\Mozilla
2013-10-05 21:10 - 2013-10-05 21:10 - 00001008 _____ C:\Users\mein Name\Desktop\IrfanView.lnk
2013-10-05 21:10 - 2013-10-05 21:10 - 00000000 ____D C:\Program Files (x86)\IrfanView
2013-10-05 21:03 - 2013-10-05 21:03 - 00000117 _____ C:\Windows\system32\netcfg-15950734.txt
2013-10-05 20:10 - 2013-10-05 20:10 - 00000117 _____ C:\Windows\system32\netcfg-12765281.txt
2013-10-05 19:23 - 2013-10-05 19:23 - 00000117 _____ C:\Windows\system32\netcfg-9918046.txt
2013-10-05 18:08 - 2013-10-05 18:08 - 00000117 _____ C:\Windows\system32\netcfg-5405031.txt
2013-10-05 17:19 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\rescache
2013-10-05 17:18 - 2012-07-26 11:45 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-05 17:18 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-10-05 17:18 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-10-05 17:18 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\WinStore
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\en-GB
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-10-05 17:18 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-05 17:18 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-10-05 17:18 - 2012-07-26 07:37 - 00000000 ____D C:\Windows\servicing
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\winrm
2013-10-05 17:17 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\slmgr
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\inetsrv
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\SysWOW64\Com
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\migwiz
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\inetsrv
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\en-GB
2013-10-05 17:17 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-05 17:17 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-10-05 17:17 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Sysprep
2013-10-05 17:17 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\oobe
2013-10-05 17:16 - 2013-10-05 17:16 - 00000000 ____D C:\sources
2013-10-05 17:16 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\WCN
2013-10-05 17:16 - 2012-07-26 11:43 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-10-05 17:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2013-10-05 17:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\MUI
2013-10-05 17:16 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\Com
2013-10-05 17:16 - 2012-07-26 07:38 - 00000000 ____D C:\Windows\system32\Dism
2013-10-05 16:58 - 2013-10-05 16:58 - 00000000 ____D C:\Users\mein Name\AppData\Roaming\Macromedia
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477953.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477921.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-477734.txt
2013-10-05 16:45 - 2013-10-05 16:45 - 00000117 _____ C:\Windows\system32\netcfg-474468.txt
2013-10-05 16:30 - 2013-10-05 16:30 - 00000000 ____D C:\Users\mein Name\AppData\Local\Hewlett-Packard
2013-10-05 16:21 - 2012-10-27 03:33 - 00000000 ____D C:\ProgramData\Norton
2013-10-05 16:02 - 2013-10-05 16:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-05 15:33 - 2013-10-05 15:07 - 00000000 ____D C:\Users\mein Name\AppData\Local\Packages
2013-10-05 15:31 - 2012-07-26 10:12 - 00000000 ____D C:\Windows\system32\restore
2013-10-05 15:09 - 2013-10-05 15:09 - 00001444 _____ C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\SysWOW64\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 __RSH C:\Windows\system32\Drivers\103C_HP_cPC_p6-2321eg_Y53316J_0U_QCZC2438N3V_E12CE3RR8605_4A_I2ADA_SFoxconn_V1.00_B8.09_T120928_W8101-0_L407_M8146_J500_7Intel_86A9_93.30_#121027_N10EC8168_Z_G10DE1049_Ohp CDDVDW SH-216BB_DSAM037B.MRK
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ___RD C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 15:09 - 2013-10-05 15:09 - 00000000 ____D C:\Users\mein Name\AppData\Local\Power2Go8
2013-10-05 15:09 - 2012-10-27 03:32 - 00000000 ___RD C:\Program Files\Online Services
2013-10-05 15:09 - 2012-10-27 03:23 - 00000000 ___RD C:\Program Files (x86)\Online Services
2013-10-05 15:09 - 2012-09-12 15:34 - 00000000 ___RD C:\hp
2013-10-05 15:09 - 2012-08-02 05:15 - 00000000 ____D C:\SWSETUP
2013-10-05 15:09 - 2012-08-01 11:57 - 00000000 ___RD C:\SYSTEM.SAV
2013-10-05 15:09 - 2012-07-26 10:12 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-10-05 15:07 - 2013-10-05 15:07 - 00000020 ___SH C:\Users\mein Name\ntuser.ini
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Vorlagen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Startmenü
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Netzwerkumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Lokale Einstellungen
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Eigene Dateien
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Druckumgebung
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Musik
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Documents\Eigene Bilder
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Verlauf
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\AppData\Local\Anwendungsdaten
2013-10-05 15:07 - 2013-10-05 15:07 - 00000000 _SHDL C:\Users\mein Name\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Programme
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-05 14:58 - 2013-10-05 14:58 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-05 14:58 - 2012-07-26 10:12 - 00000000 ____D C:\Program Files\Windows NT
Some content of TEMP:
====================
C:\Users\mein Name\AppData\Local\temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-10-19 13:20
==================== End Of Log ============================
--- --- --- --- --- --- Gibt es Hoffnung und weitere Möglichkeiten, um das Problem beseitigen zu können ? liebe Grüße |
|
| Themen zu Windows 8 ; immer langsamer, hängt und friert ein |
| acrobat update, adobe, bildschirm, browser, ccsetup, computer, converter, defender, farbar, farbar recovery scan tool, festplatte, flash player, homepage, hängt, internet, plug-in, problem, pup.optional.bonanzadeals.a, pup.optional.installcore.a, pup.optional.wajam, pup.optional.wajam.a, services.exe, software, super, svchost.exe, windows |
Hybrid-Darstellung
