Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7: Avast blockt ständig Webseiten, svchost.exe

Windows 7: Avast blockt ständig Webseiten, svchost.exe


Log-Analyse und Auswertung: Windows 7: Avast blockt ständig Webseiten, svchost.exe

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 07.06.2015, 15:51   #8
janzek
 
Windows 7: Avast blockt ständig Webseiten, svchost.exe - Standard

Windows 7: Avast blockt ständig Webseiten, svchost.exe


Hallo Schrauber,
anbei die Combofix.txt
Code:
ATTFilter
ComboFix 15-05-31.01 - Gaby 07.06.2015  11:55:45.1.2 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.3838.2495 [GMT 2:00]
ausgeführt von:: C:\Users\Gaby\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}


(((((((((((((((((((((((   Dateien erstellt von 2015-05-07 bis 2015-06-07  ))))))))))))))))))))))))))))))


2015-06-07 10:05:00 . 2015-06-07 10:05:01	75888	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FAA8FE38-31DA-4AF4-850A-A350D2C8777E}\offreg.4852.dll
2015-06-07 10:03:20 . 2015-06-07 10:03:20	--------	d-----w-	C:\Users\Default\AppData\Local\temp
2015-06-06 12:15:46 . 2015-06-06 12:17:09	--------	d-----w-	C:\FRST
2015-06-06 08:08:35 . 2015-05-03 03:16:35	12214312	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{FAA8FE38-31DA-4AF4-850A-A350D2C8777E}\mpengine.dll
2015-06-01 15:57:09 . 2015-06-01 15:57:09	--------	d-----w-	C:\Users\Gaby\AppData\Roaming\ParetoLogic
2015-06-01 15:57:09 . 2015-06-01 15:57:09	--------	d-----w-	C:\Users\Gaby\AppData\Roaming\DriverCure
2015-06-01 15:56:52 . 2015-06-01 15:56:52	--------	d-----w-	C:\Program Files (x86)\Common Files\ParetoLogic
2015-06-01 15:56:50 . 2015-06-02 11:29:32	--------	d-----w-	C:\ProgramData\ParetoLogic
2015-05-28 13:50:53 . 2015-05-28 13:52:06	--------	d-----w-	C:\ProgramData\SystemExplorer
2015-05-28 13:50:52 . 2015-05-28 13:50:52	--------	d-----w-	C:\Program Files (x86)\System Explorer
2015-05-27 10:56:28 . 2015-05-27 10:56:28	--------	d-----w-	C:\Users\Gaby\AppData\Local\ElevatedDiagnostics
2015-05-27 06:48:59 . 2015-05-27 06:48:59	--------	d-----w-	C:\Users\Gaby\AppData\Local\TempTaskUpdateDetection1134F557-1C0C-41B3-B1F2-A39BA126BB19
2015-05-15 14:29:03 . 2015-05-06 17:40:48	364472	----a-w-	C:\Windows\system32\aswBoot.exe
2015-05-15 13:51:48 . 2015-05-15 13:51:48	--------	d-sh--w-	C:\Users\Gaby\AppData\Local\EmieUserList
2015-05-15 13:51:48 . 2015-05-15 13:51:48	--------	d-sh--w-	C:\Users\Gaby\AppData\Local\EmieBrowserModeList
2015-05-15 13:51:47 . 2015-05-15 13:51:48	--------	d-sh--w-	C:\Users\Gaby\AppData\Local\EmieSiteList
2015-05-13 17:01:09 . 2015-05-01 13:17:03	124112	----a-w-	C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 17:01:09 . 2015-05-01 13:16:41	102608	----a-w-	C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 15:52:49 . 2015-05-12 15:52:49	--------	d-----w-	C:\Users\Gaby\AppData\Roaming\DivX
2015-05-12 15:52:43 . 2015-05-12 15:52:43	--------	d-----w-	C:\Program Files\DivX
2015-05-12 15:52:18 . 2015-05-12 15:52:50	--------	d-----w-	C:\Program Files (x86)\Common Files\DivX Shared
2015-05-11 13:36:17 . 2015-06-04 08:53:21	--------	d-----w-	C:\Users\Gaby\AppData\Roaming\Coronic
2015-05-11 09:30:38 . 2015-06-07 09:12:23	136408	----a-w-	C:\Windows\system32\drivers\MBAMSwissArmy.sys
2015-05-11 09:30:15 . 2015-05-26 06:00:38	--------	d-----w-	C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-05-11 09:30:15 . 2015-05-11 09:30:15	--------	d-----w-	C:\ProgramData\Malwarebytes
2015-05-11 09:30:15 . 2015-04-14 07:37:56	63704	----a-w-	C:\Windows\system32\drivers\mwac.sys
2015-05-11 09:30:15 . 2015-04-14 07:37:46	107736	----a-w-	C:\Windows\system32\drivers\mbamchameleon.sys
2015-05-11 09:30:15 . 2015-04-14 07:37:42	25816	----a-w-	C:\Windows\system32\drivers\mbam.sys
2015-05-11 09:27:21 . 2015-05-11 09:27:21	--------	d-----w-	C:\Users\Gaby\AppData\Local\Macromedia
2015-05-11 09:26:43 . 2015-05-11 09:26:43	--------	d-----w-	C:\Windows\system32\appmgmt
2015-05-11 09:22:53 . 2015-05-11 09:22:53	--------	d-----w-	C:\ProgramData\McAfee
2015-05-11 09:22:50 . 2015-05-26 12:00:33	778416	----a-w-	C:\Windows\SysWow64\FlashPlayerApp.exe
2015-05-11 09:22:50 . 2015-05-26 12:00:33	142512	----a-w-	C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2015-05-11 09:22:49 . 2015-05-11 09:22:49	--------	d-----w-	C:\Windows\SysWow64\Macromed
2015-05-11 09:22:48 . 2015-05-11 09:22:48	--------	d-----w-	C:\Windows\system32\Macromed
2015-05-11 09:22:28 . 2015-05-26 12:00:38	--------	d-----w-	C:\Users\Gaby\AppData\Local\Adobe
2015-05-11 09:16:46 . 2015-05-12 15:53:03	--------	d-----w-	C:\Program Files (x86)\DivX
2015-05-11 09:13:05 . 2015-05-13 08:06:55	--------	d-----w-	C:\Users\Gaby\AppData\Roaming\PDF Architect 3
2015-05-11 09:10:41 . 2015-05-11 09:13:02	--------	d-----w-	C:\Program Files (x86)\PDF Architect 3
2015-05-11 09:10:09 . 2015-05-11 09:10:09	--------	d-----w-	C:\ProgramData\PDF Architect 3
2015-05-11 09:09:58 . 2015-05-11 09:09:58	--------	d-----w-	C:\Users\Gaby\AppData\Roaming\pdfforge
2015-05-11 09:09:56 . 2015-05-11 09:10:05	115592	----a-w-	C:\Windows\system32\pdfcmon.dll
2015-05-11 09:09:55 . 2015-05-11 09:13:16	--------	d-----w-	C:\Program Files\PDFCreator
2015-05-11 09:03:10 . 2015-05-12 15:53:03	--------	d-----w-	C:\ProgramData\DivX
2015-05-08 14:53:34 . 2015-06-06 16:03:42	--------	d-----w-	C:\auswert
2015-05-08 10:15:12 . 2011-02-25 06:19:30	2871808	----a-w-	C:\Windows\explorer.exe
2015-05-08 10:15:12 . 2011-02-25 05:30:54	2616320	----a-w-	C:\Windows\SysWow64\explorer.exe
2015-05-08 10:15:11 . 2012-02-11 06:36:02	559104	----a-w-	C:\Windows\system32\spoolsv.exe
2015-05-08 10:15:11 . 2012-02-11 06:36:01	67072	----a-w-	C:\Windows\splwow64.exe
.


((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

2015-05-13 17:02:43 . 2015-05-07 10:07:01	140425016	----a-w-	C:\Windows\system32\MRT.exe
2015-05-07 15:19:57 . 2015-05-07 15:20:40	627920	----a-w-	C:\ProgramData\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2015-05-07 10:38:50 . 2015-05-07 10:38:50	940032	----a-w-	C:\Windows\system32\MsSpellCheckingFacility.exe
2015-05-07 10:38:50 . 2015-05-07 10:38:50	194048	----a-w-	C:\Windows\SysWow64\elshyph.dll
2015-05-07 10:38:47 . 2015-05-07 10:38:47	71680	----a-w-	C:\Windows\SysWow64\RegisterIEPKEYs.exe
2015-05-07 10:38:47 . 2015-05-07 10:38:47	645120	----a-w-	C:\Windows\SysWow64\jsIntl.dll
2015-05-07 10:38:47 . 2015-05-07 10:38:47	62464	----a-w-	C:\Windows\SysWow64\tdc.ocx
2015-05-07 10:38:47 . 2015-05-07 10:38:47	60416	----a-w-	C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2015-05-07 10:38:47 . 2015-05-07 10:38:47	337408	----a-w-	C:\Windows\SysWow64\html.iec
2015-05-07 10:38:47 . 2015-05-07 10:38:47	235008	----a-w-	C:\Windows\system32\elshyph.dll
2015-05-07 10:38:47 . 2015-05-07 10:38:47	1888256	----a-w-	C:\Windows\SysWow64\wininet.dll
2015-05-07 10:38:47 . 2015-05-07 10:38:47	182272	----a-w-	C:\Windows\SysWow64\msls31.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	74240	----a-w-	C:\Windows\SysWow64\SetIEInstalledDate.exe
2015-05-07 10:38:46 . 2015-05-07 10:38:46	64000	----a-w-	C:\Windows\SysWow64\MshtmlDac.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	62464	----a-w-	C:\Windows\SysWow64\iesetup.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	620032	----a-w-	C:\Windows\SysWow64\jscript9diag.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	503296	----a-w-	C:\Windows\SysWow64\vbscript.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	48640	----a-w-	C:\Windows\SysWow64\mshtmler.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	47616	----a-w-	C:\Windows\SysWow64\ieetwproxystub.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	4300288	----a-w-	C:\Windows\SysWow64\jscript9.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	36352	----a-w-	C:\Windows\SysWow64\imgutil.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	2724864	----a-w-	C:\Windows\SysWow64\mshtml.tlb
2015-05-07 10:38:46 . 2015-05-07 10:38:46	24576	----a-w-	C:\Windows\SysWow64\licmgr10.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	2052608	----a-w-	C:\Windows\SysWow64\inetcpl.cpl
2015-05-07 10:38:46 . 2015-05-07 10:38:46	151552	----a-w-	C:\Windows\SysWow64\iexpress.exe
2015-05-07 10:38:46 . 2015-05-07 10:38:46	139264	----a-w-	C:\Windows\SysWow64\wextract.exe
2015-05-07 10:38:46 . 2015-05-07 10:38:46	13312	----a-w-	C:\Windows\SysWow64\mshta.exe
2015-05-07 10:38:46 . 2015-05-07 10:38:46	115712	----a-w-	C:\Windows\SysWow64\ieUnatt.exe
2015-05-07 10:38:46 . 2015-05-07 10:38:46	1155072	----a-w-	C:\Windows\SysWow64\mshtmlmedia.dll
2015-05-07 10:38:46 . 2015-05-07 10:38:46	111616	----a-w-	C:\Windows\SysWow64\IEAdvpack.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	942592	----a-w-	C:\Windows\system32\jsIntl.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	86016	----a-w-	C:\Windows\SysWow64\iesysprep.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	86016	----a-w-	C:\Windows\system32\RegisterIEPKEYs.exe
2015-05-07 10:38:45 . 2015-05-07 10:38:45	54784	----a-w-	C:\Windows\system32\jsproxy.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	52224	----a-w-	C:\Windows\system32\msfeedsbs.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	2886144	----a-w-	C:\Windows\system32\iertutil.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	247808	----a-w-	C:\Windows\system32\msls31.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	2358784	----a-w-	C:\Windows\system32\wininet.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	199680	----a-w-	C:\Windows\system32\msrating.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	1548288	----a-w-	C:\Windows\system32\urlmon.dll
2015-05-07 10:38:45 . 2015-05-07 10:38:45	13312	----a-w-	C:\Windows\system32\msfeedssync.exe
2015-05-07 10:38:45 . 2015-05-07 10:38:45	131072	----a-w-	C:\Windows\system32\IEAdvpack.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	92160	----a-w-	C:\Windows\system32\mshtmled.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	90112	----a-w-	C:\Windows\system32\SetIEInstalledDate.exe
2015-05-07 10:38:44 . 2015-05-07 10:38:44	814080	----a-w-	C:\Windows\system32\jscript9diag.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	81408	----a-w-	C:\Windows\system32\icardie.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	801280	----a-w-	C:\Windows\system32\msfeeds.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	800768	----a-w-	C:\Windows\system32\ieapfltr.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	77824	----a-w-	C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	77312	----a-w-	C:\Windows\system32\tdc.ocx
2015-05-07 10:38:44 . 2015-05-07 10:38:44	718848	----a-w-	C:\Windows\system32\ie4uinit.exe
2015-05-07 10:38:44 . 2015-05-07 10:38:44	66560	----a-w-	C:\Windows\system32\iesetup.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	633856	----a-w-	C:\Windows\system32\ieui.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	616104	----a-w-	C:\Windows\system32\ieapfltr.dat
2015-05-07 10:38:44 . 2015-05-07 10:38:44	6035456	----a-w-	C:\Windows\system32\jscript9.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	584192	----a-w-	C:\Windows\system32\vbscript.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	490496	----a-w-	C:\Windows\system32\dxtmsft.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	48640	----a-w-	C:\Windows\system32\mshtmler.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	413696	----a-w-	C:\Windows\system32\html.iec
2015-05-07 10:38:44 . 2015-05-07 10:38:44	389800	----a-w-	C:\Windows\system32\iedkcs32.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	34304	----a-w-	C:\Windows\system32\iernonce.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	316928	----a-w-	C:\Windows\system32\dxtrans.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	30208	----a-w-	C:\Windows\system32\licmgr10.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	243200	----a-w-	C:\Windows\system32\webcheck.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	235520	----a-w-	C:\Windows\system32\url.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	2125824	----a-w-	C:\Windows\system32\inetcpl.cpl
2015-05-07 10:38:44 . 2015-05-07 10:38:44	167424	----a-w-	C:\Windows\system32\iexpress.exe
2015-05-07 10:38:44 . 2015-05-07 10:38:44	14398976	----a-w-	C:\Windows\system32\ieframe.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	143872	----a-w-	C:\Windows\system32\wextract.exe
2015-05-07 10:38:44 . 2015-05-07 10:38:44	1359360	----a-w-	C:\Windows\system32\mshtmlmedia.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	105984	----a-w-	C:\Windows\system32\iesysprep.dll
2015-05-07 10:38:44 . 2015-05-07 10:38:44	101376	----a-w-	C:\Windows\system32\inseng.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	88064	----a-w-	C:\Windows\system32\MshtmlDac.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	774144	----a-w-	C:\Windows\system32\jscript.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	62464	----a-w-	C:\Windows\system32\pngfilt.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	48640	----a-w-	C:\Windows\system32\ieetwproxystub.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	48128	----a-w-	C:\Windows\system32\imgutil.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	4096	----a-w-	C:\Windows\system32\ieetwcollectorres.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	2724864	----a-w-	C:\Windows\system32\mshtml.tlb
2015-05-07 10:38:43 . 2015-05-07 10:38:43	25021440	----a-w-	C:\Windows\system32\mshtml.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	147968	----a-w-	C:\Windows\system32\occache.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	144384	----a-w-	C:\Windows\system32\ieUnatt.exe
2015-05-07 10:38:43 . 2015-05-07 10:38:43	13824	----a-w-	C:\Windows\system32\mshta.exe
2015-05-07 10:38:43 . 2015-05-07 10:38:43	135680	----a-w-	C:\Windows\system32\iepeers.dll
2015-05-07 10:38:43 . 2015-05-07 10:38:43	114688	----a-w-	C:\Windows\system32\ieetwcollector.exe
2015-05-07 10:36:50 . 2015-05-07 10:36:50	9728	---ha-w-	C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	9728	---ha-w-	C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	604160	----a-w-	C:\Windows\SysWow64\d3d10level9.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	5632	---ha-w-	C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	5632	---ha-w-	C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	5632	---ha-w-	C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	5632	---ha-w-	C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	522752	----a-w-	C:\Windows\system32\XpsGdiConverter.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	465920	----a-w-	C:\Windows\system32\WMPhoto.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	417792	----a-w-	C:\Windows\SysWow64\WMPhoto.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	4096	---ha-w-	C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	4096	---ha-w-	C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	3928064	----a-w-	C:\Windows\system32\d2d1.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	364544	----a-w-	C:\Windows\SysWow64\XpsGdiConverter.dll
2015-05-07 10:36:50 . 2015-05-07 10:36:50	363008	----a-w-	C:\Windows\system32\dxgi.dll
Hallo Schrauber, anscheinend ist mein Rechner abgeschmiert beim Scan mit Combofix, ich hatte nur gesehen, dass er neu gebootet hat als ich ins Zimmer gekommen bin und das gepostete Logfile kam mir unvollständig vor. Ich habe Combofix nochmal durchlaufen lassen und poste nun das vollständige Logfile. Sorry, Gruss janzek
Code:
ATTFilter
ComboFix 15-05-31.01 - Gaby 07.06.2015  16:25:10.2.2 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.49.1031.18.3838.2741 [GMT 2:00]
ausgeführt von:: c:\users\Gaby\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((   Dateien erstellt von 2015-05-07 bis 2015-06-07  ))))))))))))))))))))))))))))))
.
.
2015-06-07 14:33 . 2015-06-07 14:33	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-06-06 12:15 . 2015-06-06 12:17	--------	d-----w-	C:\FRST
2015-06-06 08:08 . 2015-05-03 03:16	12214312	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{FAA8FE38-31DA-4AF4-850A-A350D2C8777E}\mpengine.dll
2015-06-01 15:57 . 2015-06-01 15:57	--------	d-----w-	c:\users\Gaby\AppData\Roaming\ParetoLogic
2015-06-01 15:57 . 2015-06-01 15:57	--------	d-----w-	c:\users\Gaby\AppData\Roaming\DriverCure
2015-06-01 15:56 . 2015-06-01 15:56	--------	d-----w-	c:\program files (x86)\Common Files\ParetoLogic
2015-06-01 15:56 . 2015-06-02 11:29	--------	d-----w-	c:\programdata\ParetoLogic
2015-05-28 13:50 . 2015-05-28 13:52	--------	d-----w-	c:\programdata\SystemExplorer
2015-05-28 13:50 . 2015-05-28 13:50	--------	d-----w-	c:\program files (x86)\System Explorer
2015-05-27 10:56 . 2015-05-27 10:56	--------	d-----w-	c:\users\Gaby\AppData\Local\ElevatedDiagnostics
2015-05-27 06:48 . 2015-05-27 06:48	--------	d-----w-	c:\users\Gaby\AppData\Local\TempTaskUpdateDetection1134F557-1C0C-41B3-B1F2-A39BA126BB19
2015-05-15 14:29 . 2015-05-06 17:40	364472	----a-w-	c:\windows\system32\aswBoot.exe
2015-05-15 13:51 . 2015-05-15 13:51	--------	d-sh--w-	c:\users\Gaby\AppData\Local\EmieUserList
2015-05-15 13:51 . 2015-05-15 13:51	--------	d-sh--w-	c:\users\Gaby\AppData\Local\EmieBrowserModeList
2015-05-15 13:51 . 2015-05-15 13:51	--------	d-sh--w-	c:\users\Gaby\AppData\Local\EmieSiteList
2015-05-13 17:01 . 2015-05-01 13:17	124112	----a-w-	c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 17:01 . 2015-05-01 13:16	102608	----a-w-	c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 15:52 . 2015-05-12 15:52	--------	d-----w-	c:\users\Gaby\AppData\Roaming\DivX
2015-05-12 15:52 . 2015-05-12 15:52	--------	d-----w-	c:\program files\DivX
2015-05-12 15:52 . 2015-05-12 15:52	--------	d-----w-	c:\program files (x86)\Common Files\DivX Shared
2015-05-11 13:36 . 2015-06-04 08:53	--------	d-----w-	c:\users\Gaby\AppData\Roaming\Coronic
2015-05-11 09:30 . 2015-06-07 12:34	136408	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-05-11 09:30 . 2015-05-26 06:00	--------	d-----w-	c:\program files (x86)\ Malwarebytes Anti-Malware 
2015-05-11 09:30 . 2015-05-11 09:30	--------	d-----w-	c:\programdata\Malwarebytes
2015-05-11 09:30 . 2015-04-14 07:37	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2015-05-11 09:30 . 2015-04-14 07:37	107736	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2015-05-11 09:30 . 2015-04-14 07:37	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
2015-05-11 09:27 . 2015-05-11 09:27	--------	d-----w-	c:\users\Gaby\AppData\Local\Macromedia
2015-05-11 09:26 . 2015-05-11 09:26	--------	d-----w-	c:\windows\system32\appmgmt
2015-05-11 09:22 . 2015-05-11 09:22	--------	d-----w-	c:\programdata\McAfee
2015-05-11 09:22 . 2015-05-26 12:00	778416	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-05-11 09:22 . 2015-05-26 12:00	142512	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-05-11 09:22 . 2015-05-11 09:22	--------	d-----w-	c:\windows\SysWow64\Macromed
2015-05-11 09:22 . 2015-05-11 09:22	--------	d-----w-	c:\windows\system32\Macromed
2015-05-11 09:22 . 2015-05-26 12:00	--------	d-----w-	c:\users\Gaby\AppData\Local\Adobe
2015-05-11 09:16 . 2015-05-12 15:53	--------	d-----w-	c:\program files (x86)\DivX
2015-05-11 09:13 . 2015-05-13 08:06	--------	d-----w-	c:\users\Gaby\AppData\Roaming\PDF Architect 3
2015-05-11 09:10 . 2015-05-11 09:13	--------	d-----w-	c:\program files (x86)\PDF Architect 3
2015-05-11 09:10 . 2015-05-11 09:10	--------	d-----w-	c:\programdata\PDF Architect 3
2015-05-11 09:09 . 2015-05-11 09:09	--------	d-----w-	c:\users\Gaby\AppData\Roaming\pdfforge
2015-05-11 09:09 . 2015-05-11 09:10	115592	----a-w-	c:\windows\system32\pdfcmon.dll
2015-05-11 09:09 . 2015-05-11 09:13	--------	d-----w-	c:\program files\PDFCreator
2015-05-11 09:03 . 2015-05-12 15:53	--------	d-----w-	c:\programdata\DivX
2015-05-08 14:53 . 2015-06-06 16:03	--------	d-----w-	C:\auswert
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-13 17:02 . 2015-05-07 10:07	140425016	----a-w-	c:\windows\system32\MRT.exe
2015-05-07 15:19 . 2015-05-07 15:20	627920	----a-w-	c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2015-05-07 10:38 . 2015-05-07 10:38	940032	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2015-05-07 10:38 . 2015-05-07 10:38	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2015-05-07 10:38 . 2015-05-07 10:38	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2015-05-07 10:38 . 2015-05-07 10:38	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2015-05-07 10:38 . 2015-05-07 10:38	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2015-05-07 10:38 . 2015-05-07 10:38	60416	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-05-07 10:38 . 2015-05-07 10:38	337408	----a-w-	c:\windows\SysWow64\html.iec
2015-05-07 10:38 . 2015-05-07 10:38	235008	----a-w-	c:\windows\system32\elshyph.dll
2015-05-07 10:38 . 2015-05-07 10:38	1888256	----a-w-	c:\windows\SysWow64\wininet.dll
2015-05-07 10:38 . 2015-05-07 10:38	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2015-05-07 10:38 . 2015-05-07 10:38	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2015-05-07 10:38 . 2015-05-07 10:38	64000	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2015-05-07 10:38 . 2015-05-07 10:38	62464	----a-w-	c:\windows\SysWow64\iesetup.dll
2015-05-07 10:38 . 2015-05-07 10:38	620032	----a-w-	c:\windows\SysWow64\jscript9diag.dll
2015-05-07 10:38 . 2015-05-07 10:38	503296	----a-w-	c:\windows\SysWow64\vbscript.dll
2015-05-07 10:38 . 2015-05-07 10:38	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2015-05-07 10:38 . 2015-05-07 10:38	47616	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2015-05-07 10:38 . 2015-05-07 10:38	4300288	----a-w-	c:\windows\SysWow64\jscript9.dll
2015-05-07 10:38 . 2015-05-07 10:38	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2015-05-07 10:38 . 2015-05-07 10:38	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2015-05-07 10:38 . 2015-05-07 10:38	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2015-05-07 10:38 . 2015-05-07 10:38	2052608	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2015-05-07 10:38 . 2015-05-07 10:38	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2015-05-07 10:38 . 2015-05-07 10:38	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2015-05-07 10:38 . 2015-05-07 10:38	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2015-05-07 10:38 . 2015-05-07 10:38	115712	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2015-05-07 10:38 . 2015-05-07 10:38	1155072	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2015-05-07 10:38 . 2015-05-07 10:38	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2015-05-07 10:38 . 2015-05-07 10:38	942592	----a-w-	c:\windows\system32\jsIntl.dll
2015-05-07 10:38 . 2015-05-07 10:38	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2015-05-07 10:38 . 2015-05-07 10:38	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2015-05-07 10:38 . 2015-05-07 10:38	54784	----a-w-	c:\windows\system32\jsproxy.dll
2015-05-07 10:38 . 2015-05-07 10:38	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2015-05-07 10:38 . 2015-05-07 10:38	2886144	----a-w-	c:\windows\system32\iertutil.dll
2015-05-07 10:38 . 2015-05-07 10:38	247808	----a-w-	c:\windows\system32\msls31.dll
2015-05-07 10:38 . 2015-05-07 10:38	2358784	----a-w-	c:\windows\system32\wininet.dll
2015-05-07 10:38 . 2015-05-07 10:38	199680	----a-w-	c:\windows\system32\msrating.dll
2015-05-07 10:38 . 2015-05-07 10:38	1548288	----a-w-	c:\windows\system32\urlmon.dll
2015-05-07 10:38 . 2015-05-07 10:38	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2015-05-07 10:38 . 2015-05-07 10:38	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2015-05-07 10:38 . 2015-05-07 10:38	92160	----a-w-	c:\windows\system32\mshtmled.dll
2015-05-07 10:38 . 2015-05-07 10:38	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2015-05-07 10:38 . 2015-05-07 10:38	814080	----a-w-	c:\windows\system32\jscript9diag.dll
2015-05-07 10:38 . 2015-05-07 10:38	81408	----a-w-	c:\windows\system32\icardie.dll
2015-05-07 10:38 . 2015-05-07 10:38	801280	----a-w-	c:\windows\system32\msfeeds.dll
2015-05-07 10:38 . 2015-05-07 10:38	800768	----a-w-	c:\windows\system32\ieapfltr.dll
2015-05-07 10:38 . 2015-05-07 10:38	77824	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2015-05-07 10:38 . 2015-05-07 10:38	77312	----a-w-	c:\windows\system32\tdc.ocx
2015-05-07 10:38 . 2015-05-07 10:38	718848	----a-w-	c:\windows\system32\ie4uinit.exe
2015-05-07 10:38 . 2015-05-07 10:38	66560	----a-w-	c:\windows\system32\iesetup.dll
2015-05-07 10:38 . 2015-05-07 10:38	633856	----a-w-	c:\windows\system32\ieui.dll
2015-05-07 10:38 . 2015-05-07 10:38	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2015-05-07 10:38 . 2015-05-07 10:38	6035456	----a-w-	c:\windows\system32\jscript9.dll
2015-05-07 10:38 . 2015-05-07 10:38	584192	----a-w-	c:\windows\system32\vbscript.dll
2015-05-07 10:38 . 2015-05-07 10:38	490496	----a-w-	c:\windows\system32\dxtmsft.dll
2015-05-07 10:38 . 2015-05-07 10:38	48640	----a-w-	c:\windows\system32\mshtmler.dll
2015-05-07 10:38 . 2015-05-07 10:38	413696	----a-w-	c:\windows\system32\html.iec
2015-05-07 10:38 . 2015-05-07 10:38	389800	----a-w-	c:\windows\system32\iedkcs32.dll
2015-05-07 10:38 . 2015-05-07 10:38	34304	----a-w-	c:\windows\system32\iernonce.dll
2015-05-07 10:38 . 2015-05-07 10:38	316928	----a-w-	c:\windows\system32\dxtrans.dll
2015-05-07 10:38 . 2015-05-07 10:38	30208	----a-w-	c:\windows\system32\licmgr10.dll
2015-05-07 10:38 . 2015-05-07 10:38	243200	----a-w-	c:\windows\system32\webcheck.dll
2015-05-07 10:38 . 2015-05-07 10:38	235520	----a-w-	c:\windows\system32\url.dll
2015-05-07 10:38 . 2015-05-07 10:38	2125824	----a-w-	c:\windows\system32\inetcpl.cpl
2015-05-07 10:38 . 2015-05-07 10:38	167424	----a-w-	c:\windows\system32\iexpress.exe
2015-05-07 10:38 . 2015-05-07 10:38	14398976	----a-w-	c:\windows\system32\ieframe.dll
2015-05-07 10:38 . 2015-05-07 10:38	143872	----a-w-	c:\windows\system32\wextract.exe
2015-05-07 10:38 . 2015-05-07 10:38	1359360	----a-w-	c:\windows\system32\mshtmlmedia.dll
2015-05-07 10:38 . 2015-05-07 10:38	105984	----a-w-	c:\windows\system32\iesysprep.dll
2015-05-07 10:38 . 2015-05-07 10:38	101376	----a-w-	c:\windows\system32\inseng.dll
2015-05-07 10:38 . 2015-05-07 10:38	88064	----a-w-	c:\windows\system32\MshtmlDac.dll
2015-05-07 10:38 . 2015-05-07 10:38	774144	----a-w-	c:\windows\system32\jscript.dll
2015-05-07 10:38 . 2015-05-07 10:38	62464	----a-w-	c:\windows\system32\pngfilt.dll
2015-05-07 10:38 . 2015-05-07 10:38	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2015-05-07 10:38 . 2015-05-07 10:38	48128	----a-w-	c:\windows\system32\imgutil.dll
2015-05-07 10:38 . 2015-05-07 10:38	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2015-05-07 10:38 . 2015-05-07 10:38	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2015-05-07 10:38 . 2015-05-07 10:38	25021440	----a-w-	c:\windows\system32\mshtml.dll
2015-05-07 10:38 . 2015-05-07 10:38	147968	----a-w-	c:\windows\system32\occache.dll
2015-05-07 10:38 . 2015-05-07 10:38	144384	----a-w-	c:\windows\system32\ieUnatt.exe
2015-05-07 10:38 . 2015-05-07 10:38	13824	----a-w-	c:\windows\system32\mshta.exe
2015-05-07 10:38 . 2015-05-07 10:38	135680	----a-w-	c:\windows\system32\iepeers.dll
2015-05-07 10:38 . 2015-05-07 10:38	114688	----a-w-	c:\windows\system32\ieetwcollector.exe
2015-05-07 10:36 . 2015-05-07 10:36	9728	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	9728	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	604160	----a-w-	c:\windows\SysWow64\d3d10level9.dll
2015-05-07 10:36 . 2015-05-07 10:36	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	5632	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	5632	---ha-w-	c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	522752	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2015-05-07 10:36 . 2015-05-07 10:36	465920	----a-w-	c:\windows\system32\WMPhoto.dll
2015-05-07 10:36 . 2015-05-07 10:36	417792	----a-w-	c:\windows\SysWow64\WMPhoto.dll
2015-05-07 10:36 . 2015-05-07 10:36	4096	---ha-w-	c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	4096	---ha-w-	c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2015-05-07 10:36 . 2015-05-07 10:36	3928064	----a-w-	c:\windows\system32\d2d1.dll
2015-05-07 10:36 . 2015-05-07 10:36	364544	----a-w-	c:\windows\SysWow64\XpsGdiConverter.dll
2015-05-07 10:36 . 2015-05-07 10:36	363008	----a-w-	c:\windows\system32\dxgi.dll
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2015-05-07 16:34	1605832	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]
@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"
[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]
2015-05-07 16:34	1605832	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]
@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"
[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]
2015-05-07 16:34	1605832	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2015-05-07 16:34	1605832	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\FileSyncShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2015-05-07 16:34	1605832	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\FileSyncShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HP Photosmart 5520 series (NET)"="c:\program files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-05-11 5515496]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2015-04-08 448520]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2014-01-10 1861968]
"SystemExplorerAutoStart"="c:\program files (x86)\System Explorer\SystemExplorer.exe" [2015-05-21 3391720]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SageDB 5.0;SageDB 5.0;c:\program files (x86)\Sage\SageDB 5.0\bin\mysqld-nt.exe;c:\program files (x86)\Sage\SageDB 5.0\bin\mysqld-nt.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 PDF Architect 3 CrashHandler;PDF Architect 3 CrashHandler;c:\program files (x86)\PDF Architect 3\crash-handler-ws.exe;c:\program files (x86)\PDF Architect 3\crash-handler-ws.exe [x]
R3 PDF Architect 3;PDF Architect 3;c:\program files (x86)\PDF Architect 3\ws.exe;c:\program files (x86)\PDF Architect 3\ws.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
S0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;Avast Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 ClickToRunSvc;Microsoft Office-Klick-und-Los-Dienst;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe;c:\program files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [x]
S2 PDF Architect 3 Creator;PDF Architect 3 Creator;c:\program files (x86)\PDF Architect 3\creator-ws.exe;c:\program files (x86)\PDF Architect 3\creator-ws.exe [x]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 SystemExplorerHelpService;System Explorer Service;c:\program files (x86)\System Explorer\service\SystemExplorerService64.exe;c:\program files (x86)\System Explorer\service\SystemExplorerService64.exe [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2015-06-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-11 12:00]
.
2015-06-06 c:\windows\Tasks\ParetoLogic Registration3.job
- c:\windows\system32\rundll32.exe [2009-07-13 01:14]
.
2015-06-07 c:\windows\Tasks\ParetoLogic Update Version3 Startup Task.job
- c:\program files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2014-12-08 18:55]
.
2015-06-02 c:\windows\Tasks\ParetoLogic Update Version3.job
- c:\program files (x86)\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe [2014-12-08 18:55]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive1]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2015-05-07 16:34	1645256	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive2]
@="{5AB7172C-9C11-405C-8DD5-AF20F3606282}"
[HKEY_CLASSES_ROOT\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282}]
2015-05-07 16:34	1645256	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive3]
@="{A78ED123-AB77-406B-9962-2A5D9D2F7F30}"
[HKEY_CLASSES_ROOT\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30}]
2015-05-07 16:34	1645256	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive4]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2015-05-07 16:34	1645256	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ OneDrive5]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2015-05-07 16:34	1645256	----a-w-	c:\users\Gaby\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 14:30	2334936	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 14:30	2334936	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 14:30	2334936	----a-w-	c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-05-06 17:40	722400	----a-w-	c:\program files\AVAST Software\Avast\ashShA64.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.google.com/?trackid=sp-006
mStart Page = https://www.google.com/?trackid=sp-006
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = https://www.google.com/search?trackid=sp-006&q={searchTerms}
mSearch Bar = https://www.google.com/?trackid=sp-006
IE: An OneNote s&enden - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Gaby\AppData\Roaming\Mozilla\Firefox\Profiles\2afqvvv9.default\
FF - prefs.js: browser.search.defaulturl - hxxps://www.google.com/search/?trackid=sp-006
FF - prefs.js: browser.search.selectedEngine - Google (avast)
FF - prefs.js: browser.startup.homepage - www.web.de
FF - prefs.js: keyword.URL - hxxps://www.google.com/search/?trackid=sp-006
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{06E08260-0695-4EC1-A74B-1310D8899D93} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2015-06-07  16:43:17
ComboFix-quarantined-files.txt  2015-06-07 14:43
.
Vor Suchlauf: 14 Verzeichnis(se), 48.769.425.408 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 48.337.637.376 Bytes frei
.
- - End Of File - - 00A472B3FADA4D3427561AABA5CC1028
72B8CE41AF0DE751C946802B3ED844B4

 

Themen zu Windows 7: Avast blockt ständig Webseiten, svchost.exe
.dll, adware, antivirus, autostart, avast, defender, explorer, fehler, firefox, firefox 38.0.5, flash player, hängen, installmanager.exe, internet, internet explorer, launch, monitor, office 365, onedrive, prozess, rundll, rundll32.exe, scan, security, software, svchost.exe, treiber, updates, wallpaper, windows


« Posbank Trojaner | Windwos 7 : Webseiten nur noch mit werbung »


Ähnliche Themen: Windows 7: Avast blockt ständig Webseiten, svchost.exe


  1. Avast Pop-ups Infection: URL:Mal Process: C:\Windows\System32\svchost.exe
    Log-Analyse und Auswertung - 13.06.2015 (11)
  2. Windows 7: CPU ständig bei 100% (svchost.exe?)
    Log-Analyse und Auswertung - 03.06.2015 (40)
  3. Avast meldet ständig bösartige Website blockiert (URL:Mal) - Prozess "svchost.exe"
    Plagegeister aller Art und deren Bekämpfung - 07.04.2015 (9)
  4. Windows 7 : Webseiten sind von werbe adds besetzt und werden ständig zu pop ups umgeleitet
    Log-Analyse und Auswertung - 31.03.2015 (17)
  5. URL:Mal in C:\Windows\System32\svchost.exe von avast gefunden
    Plagegeister aller Art und deren Bekämpfung - 11.03.2015 (11)
  6. c:\windows\system32\svchost.exe "Avast - Infektion geblockt"
    Log-Analyse und Auswertung - 07.03.2015 (11)
  7. Avast blockt verschiedene Seiten, svchost beteiligt
    Log-Analyse und Auswertung - 03.03.2015 (13)
  8. Windows 7: es öffnet ständig Werbefenster, Webseiten werden auf Werbung umgeleitet, Wörter sind z.T unterstrichen.
    Log-Analyse und Auswertung - 13.11.2014 (11)
  9. Avast blockt Youtube Link
    Plagegeister aller Art und deren Bekämpfung - 10.09.2014 (5)
  10. Windows 7: Webseiten werden auf Werbung umgeleitet; ständig erscheinende Werbe-Pop-Ups und blau markierte Wörter
    Log-Analyse und Auswertung - 03.07.2014 (18)
  11. Windows 8: Avast blockiert beim Aufrufen von Internetseiten in Firefox ständig scheinbar schädliche Webseite
    Log-Analyse und Auswertung - 13.05.2014 (11)
  12. Win 7 (firefox ) : Avast blockt URL:Mal auf Youtube
    Log-Analyse und Auswertung - 26.03.2014 (4)
  13. Hallo (; Windows 7 Firewall Tool von Chip.de Blockt svchost und System.exe ist das ein Virus?
    Antiviren-, Firewall- und andere Schutzprogramme - 23.08.2013 (20)
  14. Avast blockiert Datei (windows\system32\svchost.exe)
    Log-Analyse und Auswertung - 21.07.2013 (32)
  15. Malwarebytes meldet ständig, dass es eine unsichere ip blockt, aber findet nichts
    Log-Analyse und Auswertung - 10.02.2012 (11)
  16. C:\windows\system32\svchost.exe Tojaner , Malwarebytes blockt IP
    Log-Analyse und Auswertung - 10.12.2011 (44)
  17. neue Firewall blockt ständig angriffe ab
    Antiviren-, Firewall- und andere Schutzprogramme - 04.04.2008 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: Avast blockt ständig Webseiten, svchost.exe - Hallo Schrauber, anbei die Combofix.txt Code: Alles auswählen Aufklappen ATTFilter ComboFix 15-05-31.01 - Gaby 07.06.2015 11:55:45.1.2 - x64 Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3838.2495 [GMT 2:00] ausgeführt von:: C:\Users\Gaby\Desktop\ComboFix.exe AV: avast! - Windows 7: Avast blockt ständig Webseiten, svchost.exe...
Archiv
Du betrachtest: Windows 7: Avast blockt ständig Webseiten, svchost.exe auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19