Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden.

Bina.1988 · 07.02.2015, 20:53

Ich habe Combofix ausgeführt. Ich musste einmal die Maus bewegen, weil ich vergessen habe aus zuschalten das der Laptop in Stand-by geht.

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-02-2015
Ran by Bina (administrator) on BINA-PC on 01-02-2015 12:33:55
Running from C:\Users\Bina\Downloads
Loaded Profiles: Bina (Available profiles: Bina & krizz)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
(Acer Group) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Chicony) C:\Program Files (x86)\Video Web Camera\traybar.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-29] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1842472 2009-09-18] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [206208 2010-06-10] ()
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-10] (Alcor Micro Corp.)
HKLM\...\Run: [Cm106Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [263936 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [975952 2010-08-11] (Dritek System Inc.)
HKLM-x32\...\Run: [Camera Assistant Software] => C:\Program Files (x86)\Video Web Camera\traybar.exe [600688 2010-12-22] (Chicony)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-01] (AVAST Software)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694320 2015-01-07] (Adobe Systems Incorporated)
HKU\S-1-5-21-2174489219-974603214-2956640213-1000\...\Run: [GoogleChromeAutoLaunch_FC3C7AFF6FA05DEB76F42E512273B035] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344 2014-10-22] (Google Inc.)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll File Not Found
Startup: C:\Users\Bina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\krizz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-2174489219-974603214-2956640213-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2174489219-974603214-2956640213-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2174489219-974603214-2956640213-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com?fr=hp-avast&type=avastbcl
HKU\S-1-5-21-2174489219-974603214-2956640213-1000\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-2174489219-974603214-2956640213-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com?fr=hp-avast&type=avastbcl
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2174489219-974603214-2956640213-1000 -> DefaultScope {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2174489219-974603214-2956640213-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2174489219-974603214-2956640213-1000 -> {933FDD10-2DE0-4D3C-8241-DDF8CEAD24B2} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851647
SearchScopes: HKU\S-1-5-21-2174489219-974603214-2956640213-1000 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKU\S-1-5-21-2174489219-974603214-2956640213-1000 -> No Name - {C840E246-6B95-475E-9BD7-CAA1C7ECA9F2} -  No File
DPF: HKLM-x32 {784797A8-342D-4072-9486-03C8D0F2F0A1} hxxp://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.127.0.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Bina\AppData\Roaming\Mozilla\Firefox\Profiles\kz5jdsbx.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1204144.dll No File
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKU\S-1-5-21-2174489219-974603214-2956640213-1000: @soe.sony.com/installer,version=1.0.3 -> C:\Users\Bina\AppData\Local\Microsoft\Internet Explorer\Downloaded Program Files\npsoe.dll No File
FF Plugin HKU\S-1-5-21-2174489219-974603214-2956640213-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Bina\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011-09-03]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-02-26]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3323737&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPDB258463-4080-48BE-B4A6-DA827DF08E43&SSPV="
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - c:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Windows LiveÂ® Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll No File
CHR Plugin: (Unity Player) - C:\Users\Bina\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Profile: C:\Users\Bina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Bina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-17]
CHR Extension: (Avast Online Security) - C:\Users\Bina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-08-03]
CHR Extension: (Google Wallet) - C:\Users\Bina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-29]
CHR Extension: (Mehr Leistung und Videoformate für dein HTML5 <video>) - C:\Users\Bina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2014-11-13]
CHR HKLM-x32\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\Bina\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-01]
CHR HKLM-x32\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\Bina\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-05-23]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-01] (AVAST Software)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [868896 2010-06-11] (Acer Incorporated)
R2 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [23584 2010-01-08] (Acer Incorporated)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S4 NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [255744 2010-06-28] (NewTech Infosystems, Inc.)
R2 Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [243232 2010-01-29] (Acer Group)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-11-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-08-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-01] ()
S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20552 2010-09-06] (Devguru Co., Ltd)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-02-01] (Malwarebytes Corporation)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [53760 2012-09-28] (Apple, Inc.) [File not signed]
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1307648 2009-10-01] (C-Media Electronics Inc)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 k57nd60a; system32\DRIVERS\k57nd60a.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-01 12:33 - 2015-02-01 12:34 - 00021993 _____ () C:\Users\Bina\Downloads\FRST.txt
2015-02-01 12:33 - 2015-02-01 12:34 - 00000000 ____D () C:\FRST
2015-02-01 12:32 - 2015-02-01 12:32 - 02131456 _____ (Farbar) C:\Users\Bina\Downloads\FRST64.exe
2015-02-01 12:30 - 2015-02-01 12:30 - 00000470 _____ () C:\Users\Bina\Downloads\defogger_disable.log
2015-02-01 12:30 - 2015-02-01 12:30 - 00000000 _____ () C:\Users\Bina\defogger_reenable
2015-02-01 12:29 - 2015-02-01 12:29 - 00050477 _____ () C:\Users\Bina\Downloads\Defogger.exe
2015-02-01 11:50 - 2015-02-01 11:51 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Bina\Downloads\mbam-setup-2.0.4.1028 (1).exe
2015-01-28 11:09 - 2015-01-27 17:39 - 00015321 _____ () C:\Users\krizz\Documents\untitled_0.odt
2015-01-25 21:52 - 2015-01-25 21:52 - 00003500 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Bina-PC-krizz
2015-01-25 21:37 - 2015-01-25 21:37 - 00001012 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2015-01-25 21:34 - 2015-01-25 21:34 - 00000000 ____D () C:\Program Files\Adobe
2015-01-25 21:33 - 2015-01-25 21:50 - 00000000 ____D () C:\Users\krizz\Documents\FW-Sim
2015-01-25 21:33 - 2015-01-25 21:33 - 00000000 ____D () C:\ProgramData\IsolatedStorage
2015-01-25 21:25 - 2015-01-25 21:25 - 00001025 _____ () C:\Users\Public\Desktop\FWsim.lnk
2015-01-25 21:25 - 2015-01-25 21:25 - 00000000 ____D () C:\Users\Public\Documents\FW-Sim
2015-01-25 21:25 - 2015-01-25 21:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FWsim
2015-01-25 21:24 - 2015-01-25 21:29 - 00000000 ____D () C:\Program Files (x86)\FWsim
2015-01-25 21:23 - 2015-01-25 21:37 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-01-25 21:09 - 2015-01-25 21:15 - 64564080 _____ () C:\Users\krizz\Downloads\fwsim.exe
2015-01-25 21:03 - 2015-01-25 21:03 - 00000000 ___RD () C:\Users\krizz\Creative Cloud Files
2015-01-25 20:58 - 2015-01-25 20:58 - 00001281 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2015-01-25 20:58 - 2015-01-25 20:58 - 00001269 _____ () C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2015-01-25 20:52 - 2015-01-25 20:56 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-25 20:45 - 2015-01-25 20:45 - 00672944 _____ (Adobe Systems Incorporated) C:\Users\krizz\Downloads\CreativeCloudSet-Up.exe
2015-01-25 20:42 - 2015-01-25 21:15 - 04070576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-01-17 21:09 - 2015-01-17 21:09 - 03980734 _____ () C:\Users\krizz\Downloads\powder-90.2-win32 (1).zip
2015-01-17 21:09 - 2014-08-30 20:09 - 00004718 _____ () C:\Users\krizz\Desktop\README.txt
2015-01-17 20:21 - 2015-01-17 20:21 - 00001998 _____ () C:\Users\Bina\Downloads\cannabislogo.lsp
2015-01-17 20:01 - 2015-01-17 20:01 - 00003064 _____ () C:\Windows\System32\Tasks\{544F2744-B9FD-4DE5-8B2D-E34D76DE8258}
2015-01-17 19:58 - 2015-01-17 19:58 - 00001937 _____ () C:\Users\Public\Desktop\TrialLogoSmartz.lnk
2015-01-17 19:58 - 2015-01-17 19:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trial LogoSmartz
2015-01-17 19:56 - 2010-02-23 17:00 - 02267368 _____ (Adobe Systems, Inc.) C:\Windows\SysWOW64\Flash9d.ocx
2015-01-17 19:56 - 1996-11-08 02:48 - 00368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbar332.dll
2015-01-17 19:55 - 2015-01-17 19:59 - 00000000 ____D () C:\Program Files (x86)\LogoSmartz Trial
2015-01-17 19:53 - 2015-01-17 19:53 - 00000000 ____D () C:\Users\Bina\AppData\Roaming\Opera Software
2015-01-17 19:53 - 2015-01-17 19:53 - 00000000 ____D () C:\Users\Bina\AppData\Local\Opera Software
2015-01-17 19:52 - 2015-01-17 19:52 - 21381235 _____ () C:\Users\Bina\Downloads\ML_TrialLogoSmartz_CB-DL-Manager [1].exe
2015-01-17 19:50 - 2015-01-17 20:00 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-01-17 19:50 - 2015-01-17 19:50 - 00000000 ____D () C:\Users\Bina\AppData\Roaming\WorldofTanks
2015-01-17 19:50 - 2015-01-17 19:50 - 00000000 ____D () C:\Users\Bina\AppData\Local\WorldofTanks
2015-01-17 19:49 - 2015-01-17 19:49 - 00823792 _____ ( ) C:\Users\Bina\Downloads\ML_TrialLogoSmartz_CB-DL-Manager.exe
2015-01-14 11:39 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 11:39 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 11:39 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 11:39 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 11:39 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 11:39 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 11:39 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 11:39 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 11:39 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 11:39 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 11:39 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 11:39 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 11:39 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-13 17:07 - 2015-01-13 17:41 - 31639060 _____ () C:\Users\Bina\Downloads\fsxas350.zip
2015-01-13 16:31 - 2015-01-13 16:31 - 23231664 _____ () C:\Users\Bina\Downloads\Nicht bestätigt 746985.crdownload
2015-01-13 16:28 - 2015-01-13 16:35 - 20626325 _____ () C:\Users\Bina\Downloads\Sikorsky_CH-3Jolly_Green_Giant-1.zip
2015-01-13 16:25 - 2015-01-13 16:28 - 227341208 _____ (Microsoft Corporation) C:\Users\Bina\Downloads\fsx_sp1_DEU.exe
2015-01-12 14:55 - 2015-01-12 14:55 - 00086064 _____ () C:\Users\Bina\Downloads\EDXK_Leck-AB_V1.zip
2015-01-12 14:52 - 2015-01-12 14:57 - 45031920 _____ () C:\Users\Bina\Downloads\HC075DI_AS332L2_FSX_ACCELERATION (1).zip
2015-01-12 11:59 - 2015-01-12 11:59 - 00000172 _____ () C:\Windows\wininit.ini

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-01 12:30 - 2011-08-30 13:24 - 00000000 ____D () C:\Users\Bina
2015-02-01 12:12 - 2014-03-29 15:46 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-01 11:53 - 2014-12-16 10:42 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-01 11:52 - 2014-12-16 10:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-02-01 11:52 - 2014-12-16 10:42 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-02-01 11:52 - 2014-02-12 16:26 - 00001074 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-02-01 11:50 - 2012-02-28 22:28 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-01 11:43 - 2009-07-14 05:45 - 00025616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-01 11:43 - 2009-07-14 05:45 - 00025616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-01 11:42 - 2013-02-26 13:12 - 01482439 _____ () C:\Windows\WindowsUpdate.log
2015-02-01 11:36 - 2013-02-26 19:46 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-02-01 11:34 - 2012-02-28 22:28 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-01 11:33 - 2013-07-29 07:19 - 00079868 _____ () C:\Windows\setupact.log
2015-02-01 11:33 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-31 21:00 - 2013-06-13 08:29 - 00000000 ____D () C:\Users\krizz\AppData\Local\Adobe
2015-01-27 20:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-26 13:49 - 2014-08-28 13:04 - 00000000 ____D () C:\Users\Bina\Desktop\Aktuelle Bewerbungen
2015-01-26 13:48 - 2011-08-30 13:38 - 00000000 ____D () C:\Users\Bina\AppData\Roaming\Adobe
2015-01-26 11:27 - 2013-02-07 16:25 - 00000000 ____D () C:\Users\krizz
2015-01-25 21:53 - 2013-02-07 16:26 - 00000000 ____D () C:\Users\krizz\AppData\Roaming\Adobe
2015-01-25 21:52 - 2013-06-13 12:27 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2015-01-25 21:27 - 2014-10-28 21:22 - 00098040 _____ () C:\Windows\DirectX.log
2015-01-25 21:15 - 2014-03-29 15:46 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-01-25 21:15 - 2014-03-29 15:46 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-25 21:15 - 2014-03-29 15:46 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-01-25 21:00 - 2010-09-09 03:41 - 00000000 ____D () C:\ProgramData\Adobe
2015-01-25 20:48 - 2013-06-13 10:35 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-01-22 23:44 - 2011-09-13 07:00 - 01594964 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-01-22 23:44 - 2011-02-13 12:00 - 00699682 _____ () C:\Windows\system32\perfh007.dat
2015-01-22 23:44 - 2011-02-13 12:00 - 00149790 _____ () C:\Windows\system32\perfc007.dat
2015-01-22 23:44 - 2009-07-14 06:13 - 01594964 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-17 21:23 - 2014-10-03 10:55 - 00000557 _____ () C:\Users\krizz\Desktop\powder.pref
2015-01-17 21:23 - 2014-10-03 10:39 - 00000798 _____ () C:\Users\krizz\Desktop\stdout.txt
2015-01-17 20:00 - 2011-08-30 13:24 - 00001433 _____ () C:\Users\Bina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-01-15 11:01 - 2013-08-15 16:32 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-15 10:47 - 2012-06-28 19:26 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-13 17:17 - 2014-10-28 21:23 - 00000000 ____D () C:\Users\Bina\Documents\Flight Simulator X Demo-Dateien
2015-01-13 17:07 - 2014-10-28 21:32 - 00000000 ____D () C:\Users\Bina\Desktop\fs
2015-01-12 21:10 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2015-01-12 14:57 - 2011-09-06 20:43 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2015-01-12 11:59 - 2011-08-30 13:53 - 00000000 ____D () C:\Users\Bina\AppData\Local\Deployment
2015-01-12 11:59 - 2011-08-30 13:53 - 00000000 ____D () C:\Users\Bina\AppData\Local\Apps\2.0
2015-01-12 11:22 - 2011-09-08 12:16 - 00000000 ____D () C:\Users\Bina\AppData\Local\Adobe
2015-01-09 12:04 - 2013-06-21 09:58 - 00000000 ____D () C:\Users\Bina\Documents\VirtualDJ
2015-01-09 11:12 - 2013-06-21 09:58 - 00000000 ____D () C:\Program Files (x86)\VirtualDJ
2015-01-05 18:54 - 2013-11-24 11:25 - 00014871 _____ () C:\Users\Bina\Desktop\Monatsaufstellung.odt

==================== Files in the root of some directories =======

2011-11-04 15:54 - 2011-11-16 16:23 - 0000144 _____ () C:\Users\Bina\AppData\Roaming\blckdom.res
2012-05-10 12:24 - 2012-05-10 12:32 - 0004608 _____ () C:\Users\Bina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-02-06 16:40 - 2013-02-06 16:40 - 0000079 _____ () C:\ProgramData\UnhJWFY.bat
2013-02-06 16:40 - 2013-02-06 16:40 - 0000153 _____ () C:\ProgramData\UnhJWFY.reg

Files to move or delete:
====================
C:\ProgramData\UnhJWFY.bat
C:\ProgramData\UnhJWFY.reg


Some content of TEMP:
====================
C:\Users\Bina\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Bina\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Bina\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Bina\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Bina\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Bina\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Bina\AppData\Local\Temp\VirtualDJ New Version.exe
C:\Users\krizz\AppData\Local\Temp\3merxyyg.dll
C:\Users\krizz\AppData\Local\Temp\AAMHelper.exe
C:\Users\krizz\AppData\Local\Temp\drm_dyndata_7390006.dll
C:\Users\krizz\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\krizz\AppData\Local\Temp\i4jdel0.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-14 19:57

==================== End Of Log ============================

--- --- ---

Lieben Gruß

deeprybka · 07.02.2015, 21:39

Hi,
das ist aber nicht das Combofix-Log...

07.02.2015, 21:39	#2
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden. Hi, das ist aber nicht das Combofix-Log... __________________ __________________

Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden.

Log-Analyse und Auswertung: Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden.

Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden.

Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden.

Ähnliche Themen: Pop Up System32 beim starten des PC verschwindet sofort wieder PC ist sehr langsam geworden.