FireFox braucht ganz lange um zu laden und irgendein Programm öffnet und schließt sich wieder sofort

Homomorphism · 20.01.2014, 01:09

Hallo, ich habe die Einbildung, dass mit meinem Rechner etwas nicht stimmt.
FireFox und andere Browser brauchen ganz lange um Seiten zu laden. Falls die Seite dann endlich erscheint wie z.B. Youtube, können Videos sofort geladen werden. Also meine Verbindung ist schnell, wollte ich damit ausdrücken. Außerdem öffnet und schließt sich so ein Programm sofort. Keine Ahnung, was das ist.
Ich habe jetzt erstmal einen Quickscan mit Malwarebytes Antimalware gemacht und er hat 6 Dateien gefunden. Habe sie sofort gelöscht. Es hat sich nichts verändert und das Komische von allen ist, dass ich hätte schwören können, dass ich den Log von MB auf dem Desktop speicherte, bevor ich meinen Rechner neugestartet habe, aber der Log ist weg und bei Suchen kann ich ihn nicht finden.

schrauber · 20.01.2014, 08:20

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Homomorphism · 20.01.2014, 10:47

FRST.txt

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 04
Ran by Octavio (ATTENTION: The logged in user is not administrator) on OCTAVIONOTEBOOK on 20-01-2014 10:42:35
Running from D:\Users\Octavio\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
() C:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Nullsoft, Inc.) D:\Program Files (x86)\Winamp\winampa.exe
(Apple Inc.) D:\Program Files (x86)\iTunes\iTunesHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files (x86)\T-Mobile\InternetManager_H\Internet Manager.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\MediaEspresso\DeviceDetector\DeviceDetector.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12459112 2012-03-16] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-03-09] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1021056 2012-03-08] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800896 2012-03-08] (Atheros Commnucations)
HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)
HKLM\...\Run: [InstantUpdate] - C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuDaemon.exe [124520 2012-02-20] ()
HKLM\...\Run: [Secure Applicayion] - c:\Program Files\Acer\Acer Theft Shield\USecuAppClient.exe [257640 2012-03-06] ()
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [OOTag] - C:\Program Files (x86)\Acer\OOBEOffer\OOTag.exe [13856 2010-02-23] (Microsoft)
HKLM-x32\...\Run: [Dolby Home Theater v4] - C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-24] (Dritek System Inc.)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [341360 2011-09-20] (Egis Technology Inc.)
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1406248 2011-03-22] (Nero AG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [WinampAgent] - D:\Program Files (x86)\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - D:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-19] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware ] - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware  (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
MountPoints2: {2e18814b-7337-11e3-a8ef-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {2e188308-7337-11e3-a8ef-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {59892f1e-5b2f-11e3-9349-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {666866b3-3cd7-11e3-9a3d-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {666866cd-3cd7-11e3-9a3d-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {666866fb-3cd7-11e3-9a3d-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {77bc75cb-6754-11e3-96cd-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {77bc75e9-6754-11e3-96cd-08edb9585f2c} - E:\AutoRun.exe
MountPoints2: {8380457c-5c44-11e3-ac4a-08edb9585f2b} - F:\AutoRun.exe
MountPoints2: {ccc626fe-5768-11e3-bdc9-08edb9585f2c} - E:\AutoRun.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x67A17B65DA95CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll No File
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{037375DD-C61C-486A-B7FE-711E0C51FC62}: [NameServer]10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{35EAF2DC-C901-4A0C-9489-49D7158F8B2D}: [NameServer]10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{5829B6C7-F318-45C7-B99F-B4D8422C08EB}: [NameServer] 
Tcpip\..\Interfaces\{83F27B3B-D9A3-4CAF-98C8-D7A3118F45A9}: [NameServer]10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{872BB3BC-EC5F-474D-8978-6F554EF57D5D}: [NameServer] 
Tcpip\..\Interfaces\{97F66A92-7A05-42A2-8322-D3B90C230090}: [NameServer] 
Tcpip\..\Interfaces\{C149951C-15B2-4109-BCFF-6E6DADCB903F}: [NameServer] 
Tcpip\..\Interfaces\{C9058999-0CD6-430C-9A4F-A7862710E46D}: [NameServer]10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{D097112A-8F24-4906-A4C8-050547F7324E}: [NameServer]10.74.210.210 10.74.210.211
Tcpip\..\Interfaces\{DC9110D3-37D9-45BE-9C42-CFD9E8C749A8}: [NameServer] 

FireFox:
========
FF ProfilePath: C:\Users\Octavio\AppData\Roaming\Mozilla\Firefox\Profiles\1wck7teo.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - D:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WOT - C:\Users\Octavio\AppData\Roaming\Mozilla\Firefox\Profiles\1wck7teo.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-26]
FF Extension: NoScript - C:\Users\Octavio\AppData\Roaming\Mozilla\Firefox\Profiles\1wck7teo.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2012-09-19]
FF Extension: Adblock Plus - C:\Users\Octavio\AppData\Roaming\Mozilla\Firefox\Profiles\1wck7teo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-09-19]

==================== Services (Whitelisted) =================

R2 FFSOpzSvc; C:\Program Files\Sleep Memory Optimizer\FFSService.exe [141192 2011-09-17] (Acer Incorporated)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [127320 2012-03-16] ()
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2011-06-17] ()
S3 irstrtsv; C:\Windows\SysWOW64\irstrtsv.exe [192856 2012-02-24] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [162648 2012-03-16] (Intel Corporation)
R2 lmhosts; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27648 2011-03-01] (Microsoft Corporation)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [260640 2010-01-29] (Acer Incorporated)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia)
R2 USecuAppSvc; c:\Program Files\Acer\Acer Theft Shield\USecuAppSvc.exe [236648 2012-03-06] ()
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros)

==================== Drivers (Whitelisted) ====================

S3 AX88772B; C:\Windows\System32\DRIVERS\ax88772b.sys [98816 2011-01-01] (ASIX Electronics Corp.)
R3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [238080 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-02-22] (Intel Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-07-03] (Secunia)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 10:42 - 2014-01-20 10:42 - 00000000 ____D C:\FRST
2014-01-20 01:53 - 2014-01-20 01:53 - 00000000 ___RD C:\Users\Octavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-20 00:57 - 2014-01-20 00:57 - 00000000 ____D C:\Users\Octavio\AppData\Roaming\Malwarebytes
2014-01-20 00:48 - 2014-01-20 00:48 - 00000790 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-20 00:48 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-18 20:24 - 2014-01-20 01:51 - 00001042 _____ C:\Users\Octavio\Desktop\neu.txt
2014-01-16 23:18 - 2014-01-16 23:18 - 00000000 ____D C:\Users\Octavio\.jmc
2014-01-16 19:43 - 2014-01-16 19:43 - 00005541 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-15 13:20 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 13:20 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 13:20 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 13:20 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 13:20 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 13:20 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 13:20 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 13:20 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 13:20 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-14 14:29 - 2014-01-14 14:29 - 00001357 _____ C:\Users\Octavio\Desktop\matlab - Verknüpfung.lnk
2014-01-14 14:24 - 2014-01-14 14:24 - 00000000 ____D C:\Users\Octavio\AppData\Roaming\MathWorks
2014-01-14 14:12 - 2004-07-29 21:35 - 01077344 _____ (Microsoft Corporation) C:\Windows\system32\MSCOMCTL.OCX
2014-01-14 14:12 - 2004-03-01 22:05 - 00407104 _____ (Microsoft Corporation) C:\Windows\system32\MSHFLXGD.OCX
2014-01-14 14:12 - 2004-02-11 14:37 - 00203976 _____ (Microsoft Corporation) C:\Windows\system32\RICHTX32.OCX
2014-01-07 11:54 - 2014-01-08 15:51 - 00000031 _____ C:\Users\Octavio\Desktop\Zeitplan.txt
2013-12-23 01:08 - 2013-12-23 01:08 - 00000017 _____ C:\Users\Octavio\AppData\Local\resmon.resmoncfg
2013-12-21 22:36 - 2013-12-21 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

==================== One Month Modified Files and Folders =======

2014-01-20 10:42 - 2014-01-20 10:42 - 00000000 ____D C:\FRST
2014-01-20 10:39 - 2012-05-15 11:41 - 00654400 _____ C:\Windows\system32\perfh007.dat
2014-01-20 10:39 - 2012-05-15 11:41 - 00130240 _____ C:\Windows\system32\perfc007.dat
2014-01-20 10:39 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 10:37 - 2012-05-15 01:48 - 01795965 _____ C:\Windows\WindowsUpdate.log
2014-01-20 10:36 - 2012-03-27 19:45 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-20 01:59 - 2009-07-14 05:45 - 00024416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 01:59 - 2009-07-14 05:45 - 00024416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 01:53 - 2014-01-20 01:53 - 00000000 ___RD C:\Users\Octavio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-01-20 01:53 - 2012-05-15 01:47 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-01-20 01:52 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 01:52 - 2009-07-14 05:51 - 00093434 _____ C:\Windows\setupact.log
2014-01-20 01:51 - 2014-01-18 20:24 - 00001042 _____ C:\Users\Octavio\Desktop\neu.txt
2014-01-20 00:57 - 2014-01-20 00:57 - 00000000 ____D C:\Users\Octavio\AppData\Roaming\Malwarebytes
2014-01-20 00:56 - 2010-11-21 04:47 - 00030050 _____ C:\Windows\PFRO.log
2014-01-20 00:56 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-20 00:48 - 2014-01-20 00:48 - 00000790 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-19 12:55 - 2012-05-15 01:47 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-01-19 08:33 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 17:45 - 2012-03-27 19:55 - 00000000 ____D C:\Program Files (x86)\Windows Live
2014-01-18 17:45 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-17 23:51 - 2013-01-12 17:55 - 00000000 ____D C:\Users\Octavio\AppData\Local\Eclipse
2014-01-17 21:19 - 2009-07-14 05:45 - 00334552 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-16 23:20 - 2013-04-13 12:18 - 00000000 ____D C:\Users\Octavio\AppData\Local\TSVNCache
2014-01-16 23:18 - 2014-01-16 23:18 - 00000000 ____D C:\Users\Octavio\.jmc
2014-01-16 23:18 - 2013-05-18 16:10 - 00000000 ____D C:\Users\Octavio\.eclipse
2014-01-16 23:18 - 2012-09-18 21:13 - 00000000 ____D C:\Users\Octavio
2014-01-16 23:13 - 2012-09-18 21:13 - 00074048 _____ C:\Users\Octavio\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-16 23:11 - 2012-03-27 19:50 - 00000000 ____D C:\ProgramData\BackupManager
2014-01-16 22:26 - 2013-07-13 22:15 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2014-01-16 22:04 - 2012-10-20 20:20 - 00000000 ____D C:\Program Files\Java
2014-01-16 21:20 - 2012-03-27 20:01 - 00000000 ____D C:\Program Files (x86)\Acer
2014-01-16 21:20 - 2012-03-27 19:48 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-16 21:19 - 2012-05-15 01:56 - 00000032 _____ C:\ProgramData\PS.log
2014-01-16 21:19 - 2012-05-15 01:56 - 00000000 ____D C:\Program Files (x86)\Cyberlink
2014-01-16 21:14 - 2012-03-27 19:45 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-16 21:14 - 2012-03-27 19:45 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-16 20:59 - 2013-10-01 15:48 - 00000000 ____D C:\ProgramData\Oracle
2014-01-16 19:43 - 2014-01-16 19:43 - 00005541 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-16 15:40 - 2012-09-18 18:48 - 00000000 ____D C:\Users\Admin
2014-01-16 15:39 - 2012-11-09 21:06 - 00000600 _____ C:\Users\Octavio\AppData\Roaming\winscp.rnd
2014-01-15 20:43 - 2013-07-25 19:45 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 20:41 - 2012-09-19 14:43 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 14:29 - 2014-01-14 14:29 - 00001357 _____ C:\Users\Octavio\Desktop\matlab - Verknüpfung.lnk
2014-01-14 14:24 - 2014-01-14 14:24 - 00000000 ____D C:\Users\Octavio\AppData\Roaming\MathWorks
2014-01-14 12:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-08 15:51 - 2014-01-07 11:54 - 00000031 _____ C:\Users\Octavio\Desktop\Zeitplan.txt
2013-12-23 14:56 - 2012-10-20 20:10 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Notepad++
2013-12-23 01:15 - 2012-09-19 15:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-23 01:11 - 2013-04-14 20:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-23 01:11 - 2012-03-27 20:00 - 00000000 ____D C:\ProgramData\Skype
2013-12-23 01:08 - 2013-12-23 01:08 - 00000017 _____ C:\Users\Octavio\AppData\Local\resmon.resmoncfg
2013-12-21 22:36 - 2013-12-21 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

Some content of TEMP:
====================
C:\Users\Octavio\AppData\Local\Temp\install_flashplayer11x32au_mssd_aih.exe
C:\Users\Octavio\AppData\Local\Temp\install_reader10_de_gtbd_chrd_dn_aih.exe
C:\Users\Octavio\AppData\Local\Temp\npp.6.2.2.Installer.exe
C:\Users\Octavio\AppData\Local\Temp\npp.6.2.Installer.exe
C:\Users\Octavio\AppData\Local\Temp\npp.6.3.2.Installer.exe
C:\Users\Octavio\AppData\Local\Temp\npp.6.3.Installer.exe
C:\Users\Octavio\AppData\Local\Temp\npp.6.5.2.Installer.exe
C:\Users\Octavio\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================

--- --- ---

--- --- ---

Addition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 04
Ran by Octavio at 2014-01-20 10:42:59
Running from D:\Users\Octavio\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
Acer Crystal Eye Webcam (x32 Version: 1.5.2624.00 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.5.2624.00 - CyberLink Corp.) Hidden
Acer ePower Management (x32 Version: 6.00.3010 - Acer Incorporated)
Acer eRecovery Management (x32 Version: 5.00.3507 - Acer Incorporated)
Acer Instant Update Service (Version: 1.00.3001 - Acer Incorporated)
Acer Registration (x32 Version: 1.04.3506 - Acer Incorporated)
Acer Theft Shield (Version: 1.00.3001 - Acer Incorporated)
Acer Updater (x32 Version: 1.02.3501 - Acer Incorporated)
Acer VCM (x32 Version: 4.05.3501 - Acer Incorporated)
Adobe AIR (x32 Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.8.0.870 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Atheros Bluetooth Suite (64) (Version: 7.4.0.126 - Atheros)
AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1 - ASIX Electronics Corporation)
AX88772B Windows 7 Drivers (x32 Version: 1.0.1.1 - ASIX Electronics Corporation) Hidden
Bonjour (Version: 3.0.0.10 - Apple Inc.)
calibre (x32 Version: 0.9.31 - Kovid Goyal)
CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1720_38230 - CyberLink Corp.) Hidden
Dolby Home Theater v4 (x32 Version: 7.2.7000.7 - Dolby Laboratories Inc)
GPL Ghostscript (x32 Version: 9.05 - Artifex Software Inc.)
High-Definition Video Playback (x32 Version: 7.1.13900.47.0 - Nero AG) Hidden
HP Deskjet 3520 series - Grundlegende Software für das Gerät (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Hilfe (x32 Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (x32 Version: 27.0.0 - Hewlett Packard)
HP Update (x32 Version: 5.003.003.001 - Hewlett-Packard)
Identity Card (x32 Version: 1.00.3501 - Acer Incorporated)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 8.0.4.1441 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (x32 Version:  - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2653 - Intel Corporation)
Intel(R) Rapid Start Technology (x32 Version: 1.0.0.1022 - Intel Corporation)
Intel(R) Rapid Storage Technology (x32 Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.23.605.1 - Intel Corporation)
Internet Manager (x32 Version: 22.001.18.68.55 - Huawei Technologies Co.,Ltd)
iTunes (Version: 11.1.2.31 - Apple Inc.)
Java SE Development Kit 7 Update 51 (64-bit) (Version: 1.7.0.510 - Oracle)
Launch Manager (x32 Version: 5.1.15 - Acer Inc.)
LibreOffice 3.6 (x32 Version: 3.6.3.2 - The Document Foundation)
LMMS 0.4.15 (x32 Version: 0.4.15 - LMMS Developers)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Marketsplash Schnellzugriffe (x32 Version: 1.0.1.7 - Hewlett-Packard)
MATLAB R2011a (Version: 7.12 - The MathWorks, Inc.)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
MiKTeX 2.9 (Version: 2.9 - MiKTeX.org)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Mozilla Thunderbird 17.0.7 (x86 de) (x32 Version: 17.0.7 - Mozilla)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.19 - Egis Technology Inc.) Hidden
Nero BackItUp 10 (x32 Version: 5.6.11700.17.100 - Nero AG)
Nero BackItUp 10 Help (CHM) (x32 Version: 10.5.10700 - Nero AG) Hidden
Nero BurnRights 10 (x32 Version: 4.2.10500.1.102 - Nero AG)
Nero BurnRights 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.2.11100.1.1 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.19800.9.10 - Nero AG) Hidden
Nero CoverDesigner 10 (x32 Version: 5.2.11400.11.100 - Nero AG)
Nero CoverDesigner 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero DiscSpeed 10 (x32 Version: 6.2.10500.2.100 - Nero AG)
Nero DiscSpeed 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Express 10 (x32 Version: 10.2.12400.25.100 - Nero AG)
Nero Express 10 Help (CHM) (x32 Version: 10.5.10200 - Nero AG) Hidden
Nero InfoTool 10 (x32 Version: 7.2.10400.5.100 - Nero AG)
Nero InfoTool 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Multimedia Suite 10 Essentials (x32 Version: 10.5.10000 - Nero AG)
Nero StartSmart 10 (x32 Version: 10.2.11300.12.100 - Nero AG)
Nero StartSmart 10 Help (CHM) (x32 Version: 10.5.10000 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11500.28.0 - Nero AG) Hidden
Notepad++ (x32 Version: 6.5.2 - Notepad++ Team)
PDF Split And Merge Basic (Version: 2.2.2 - Andrea Vacondio)
Python 2.7.6 (64-bit) (Version: 2.7.6150 - Python Software Foundation)
Qualcomm Atheros WiFi Driver Installation (x32 Version: 3.1 - Qualcomm Atheros)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6597 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7601.39025 - Realtek Semiconductor Corp.)
Secunia PSI (3.0.0.7011) (x32 Version: 3.0.0.7011 - Secunia)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Sleep Memory Optimizer (x32 Version: 1.00.3004 - Acer Incorporated)
Smart Timer (x32 Version: 1.00.3004 - Acer Incorporated)
SpywareBlaster 5.0 (x32 Version: 5.0.0 - BrightFort LLC)
TeXnicCenter Version 2.0 Beta 1 (Version: 2.0 Beta 1 - The TeXnicCenter Team)
TSST OEM Content (x32 Version: 10.0.10300.0.0 - Nero AG)
Überwachungstool für die Intel® Turbo-Boost-Technik 2.5 (Version: 2.5.1.0 - Intel)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Welcome Center (x32 Version: 1.02.3507 - Acer Incorporated)
Winamp (x32 Version: 5.63  - Nullsoft, Inc)
WinPatrol (Version: 28.5.2013.0 - BillP Studios)
WinSCP 5.1.6 (x32 Version: 5.1.6 - Martin Prikryl)

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => ?
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => ?

==================== Loaded Modules (whitelisted) =============

2012-05-15 11:33 - 2012-02-14 18:53 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-03-06 20:49 - 2012-03-06 20:49 - 00213608 _____ () C:\Program Files\Acer\Acer Theft Shield\CommPtl.dll
2012-03-06 20:49 - 2012-03-06 20:49 - 00197736 _____ () C:\Program Files\Acer\Acer Theft Shield\LogMgr2.dll
2012-03-06 20:49 - 2012-03-06 20:49 - 00114280 _____ () C:\Program Files\Acer\Acer Theft Shield\SysCtrl.dll
2012-03-06 20:49 - 2012-03-06 20:49 - 00140904 _____ () C:\Program Files\Acer\Acer Theft Shield\WHNCtrl.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 14:13 - 2012-11-28 14:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-10-25 17:09 - 2012-10-16 04:42 - 00434568 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\core.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00281992 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\sdk.dll
2013-10-25 17:09 - 2009-01-10 11:32 - 00011362 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\mingwm10.dll
2013-10-25 17:09 - 2009-06-22 19:42 - 00043008 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\libgcc_s_dw2-1.dll
2013-10-25 17:09 - 2010-05-05 09:47 - 02415104 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\QtCore4.dll
2013-10-25 17:09 - 2010-02-10 15:43 - 09515520 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\QtGui4.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00396168 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\Proxy.DLL
2013-10-25 17:09 - 2012-09-24 12:50 - 00228232 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\Common.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00141704 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\Trace.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00551304 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\PluginContainer.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00245128 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\AtCodec.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00306568 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DeviceSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00242568 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00139656 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\OSDialup.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00174984 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\XCodec.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00163208 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DataServicePlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00268680 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\AddrBookSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00225160 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\SmsSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00148360 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\USSDSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00343432 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DeviceAppPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00071560 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\OSPowerMgr.dll
2013-10-25 17:09 - 2012-05-18 01:40 - 00120192 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\Win7Support.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00129928 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\ATR2SMgr.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 01093000 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\AddrBookPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00692104 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\SmsAppPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00164744 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetConnectSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00217992 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DialUpPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00107912 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\OSAdapt.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00185224 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NDISPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00137608 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\OSNDIS.dll
2013-10-25 17:09 - 2012-05-18 01:39 - 01107328 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NDISAPI.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00301960 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetInfoSrvPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00565640 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DeviceMgrUIPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00309128 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\XFramePlugin.dll
2013-10-25 17:09 - 2012-09-25 02:05 - 00820104 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\MiniFramePlugin.dll
2013-10-25 17:09 - 2010-02-10 15:06 - 00398336 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\QtXml4.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00103304 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NotifyServicePlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00336264 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetConnectPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00424840 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DialupUIPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00325000 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\StatusBarMgrPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00277384 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\MenuMgrPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00123272 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\LayoutPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00313224 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\SettingUIPlugin.dll
2013-10-25 17:09 - 2012-10-16 04:42 - 00506760 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetSettingPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00314760 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetInfoRecordUIPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00106376 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\CompressRatePlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00523656 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\NetInfoUIExPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00845704 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\SMSUIPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:51 - 00116104 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\ServiceUIPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00418184 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\DiagnosisPlugin.dll
2013-10-25 17:09 - 2010-02-10 15:10 - 01148416 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\QtNetwork4.dll
2013-10-25 17:09 - 2012-10-16 04:42 - 00145800 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\HelpUIPlugin.dll
2013-10-25 17:09 - 2012-10-11 04:30 - 00440712 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\USSDUIPlugin.dll
2013-10-25 17:09 - 2012-09-24 12:50 - 00811912 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\AddrBookUIPlugin.dll
2013-10-25 17:09 - 2012-10-08 02:41 - 00082944 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\plugins\imageformats\qgif4.dll
2013-10-25 17:09 - 2012-10-08 02:41 - 00081920 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\plugins\imageformats\qico4.dll
2013-10-25 17:09 - 2012-05-18 01:38 - 00250752 _____ () C:\Program Files (x86)\T-Mobile\InternetManager_H\LiveUpdateInterface.dll
2013-12-21 22:36 - 2013-12-21 22:36 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-01-16 21:10 - 2014-01-16 21:14 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:5C321E34

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/20/2014 00:36:51 AM) (Source: RasClient) (User: )
Description: CoID={3891445B-A064-479C-80B0-0EEA106E4FDF}: Der Benutzer "OCTAVIONOTEBOOK\Octavio" hat eine Verbindung mit dem Namen "tubit" gewählt, die Verbindung konnte jedoch nicht hergestellt werden. Der durch den Fehler zurückgegebene Ursachencode lautet: 800.

Error: (01/16/2014 08:10:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1124

Error: (01/16/2014 08:10:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1124

Error: (01/16/2014 08:10:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/16/2014 07:52:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1030

Error: (01/16/2014 07:52:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1030

Error: (01/16/2014 07:52:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/16/2014 03:43:48 PM) (Source: MsiInstaller) (User: OCTAVIONOTEBOOK)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011006}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/15/2014 09:03:51 PM) (Source: MsiInstaller) (User: OCTAVIONOTEBOOK)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011006}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127

Error: (01/15/2014 08:40:45 PM) (Source: MsiInstaller) (User: OCTAVIONOTEBOOK)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011004}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127


System errors:
=============
Error: (01/20/2014 01:52:54 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Internet Manager. OUC" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 01:52:54 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Internet Manager. OUC erreicht.

Error: (01/20/2014 00:56:44 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Internet Manager. OUC" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 00:56:44 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Internet Manager. OUC erreicht.

Error: (01/20/2014 00:36:29 AM) (Source: RasSstp) (User: )
Description: CoId={3891445B-A064-479C-80B0-0EEA106E4FDF}: Die anfängliche SSTP-Anforderung konnte nicht erfolgreich an den Server gesendet werden. Dies kann auf Netzwerkverbindungsprobleme oder auf Zertifikatprobleme (Vertrauensstellung) zurückzuführen sein. Unten wird die detaillierte Fehlermeldung angezeigt. Beheben Sie das Problem, und wiederholen Sie den Vorgang.

Der CN-Name des Zertifikats stimmt nicht mit dem übergebenen Wert überein.

Error: (01/17/2014 09:19:15 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Internet Manager. OUC" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/17/2014 09:19:15 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Internet Manager. OUC erreicht.

Error: (01/16/2014 11:11:42 PM) (Source: Service Control Manager) (User: )
Description: Dienst "NTI IScheduleSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (01/16/2014 03:51:09 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "ALAN-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{8EBDFF7A-0654-4323-814D-EE854BF2EA72}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (01/16/2014 03:42:21 PM) (Source: Schannel) (User: OCTAVIONOTEBOOK)
Description: Das vom Remoteserver erhaltene Zertifikat wurde von einer nicht vertrauenswürdigen Zertifizierungsstelle ausgestellt. Aus diesem Grund können keine der im Zertifikat enthalten Daten verifiziert werden. Fehler bei der SSL-Verbindungsanforderung. Die angehängten Daten enthalten das Serverzertifikat.


Microsoft Office Sessions:
=========================
Error: (01/20/2014 00:36:51 AM) (Source: RasClient)(User: )
Description: {3891445B-A064-479C-80B0-0EEA106E4FDF}OCTAVIONOTEBOOK\Octaviotubit800

Error: (01/16/2014 08:10:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1124

Error: (01/16/2014 08:10:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1124

Error: (01/16/2014 08:10:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/16/2014 07:52:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1030

Error: (01/16/2014 07:52:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1030

Error: (01/16/2014 07:52:19 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/16/2014 03:43:48 PM) (Source: MsiInstaller)(User: OCTAVIONOTEBOOK)
Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011006}1625(NULL)(NULL)(NULL)

Error: (01/15/2014 09:03:51 PM) (Source: MsiInstaller)(User: OCTAVIONOTEBOOK)
Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011006}1625(NULL)(NULL)(NULL)

Error: (01/15/2014 08:40:45 PM) (Source: MsiInstaller)(User: OCTAVIONOTEBOOK)
Description: Adobe Reader XI - Deutsch{AC76BA86-7AD7-0000-2550-7A8C40011004}1625(NULL)(NULL)(NULL)


==================== Memory info =========================== 

Percentage of memory in use: 55%
Total physical RAM: 3934.36 MB
Available physical RAM: 1737.49 MB
Total Pagefile: 7866.89 MB
Available Pagefile: 5483.83 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:81.35 GB) (Free:31.7 GB) NTFS
Drive d: (Data) (Fixed) (Total:22.65 GB) (Free:3.58 GB) NTFS
Drive e: (Internet Manager) (CDROM) (Total:0.05 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================

schrauber · 21.01.2014, 09:41

hi,

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

FireFox braucht ganz lange um zu laden und irgendein Programm öffnet und schließt sich wieder sofort

Plagegeister aller Art und deren Bekämpfung: FireFox braucht ganz lange um zu laden und irgendein Programm öffnet und schließt sich wieder sofort