Problem "Googleadservices"
 

Hi Schreiber,

Ich habe meinen Rechner reinigen lassen und alle Trojaner sind weg.

Vielen Dank Schreiber.

Aber ein Problem habe ich noch.

Wenn ich bestimmte Seiten aufrufe, z.B. Watchever den Video-Streaming Dienst, dann kommt die Meldung

Firefox kann keine Verbindung zu dem Server unter www.googleadservices.com aufbauen.

Danach gibts einen Seiten-Ladefehler.

Ich weiss nicht, ob das ein Virus ist, wenn nicht, dann Entschuldigung und ich muss weitersuchen.


Danke.

Vauh

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

• Starte jetzt FRST.
• Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
• Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
• Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Hallo Schrauber,

hier das erste log file:
FRST Logfile:
--- --- ---


und hier das Addtition log:


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2014
Ran by Kolki at 2014-04-15 15:25:57
Running from D:\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Norton Internet Security (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton Internet Security (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: IObit Malware Fighter (Enabled - Up to date) {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: Norton Internet Security (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}

==================== Installed Programs ======================

Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
BVS Video Poker version 2.1 (HKLM-x32\...\BVSPOK_is1) (Version: 2.1 - BVS Development Corporation)
calibre (HKLM-x32\...\{FEFD4E74-85EE-4BA6-AD02-E0F99BC3F51E}) (Version: 1.31.0 - Kovid Goyal)
CanoScan LiDE 110 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_cnq2414) (Version: - )
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.2 - IObit)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.26 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileZilla Client 3.8.0 (HKCU\...\FileZilla Client) (Version: 3.8.0 - Tim Kosse)
Genie Timeline (HKLM-x32\...\Genie Timeline) (Version: 5.0 - Genie9)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 3.2.9.10 - IObit)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 de) (HKCU\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 21.2.0.38 - Symantec Corporation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDF24 Creator 6.3.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)
SIW Pro Edition (GOTD) (HKLM-x32\...\{AB67580-257C-45FF-B8F4-C8C30682091A}_is1) (Version: 2014.01.30 - Topala Software Solutions)
Smart Defrag 3 (HKLM-x32\...\Smart Defrag 3_is1) (Version: 3.0 - IObit)
Software Informer 1.2 (HKLM\...\Software Informer_is1) (Version: - Informer Technologies, Inc.)
SWF Opener (HKLM-x32\...\{01386D1F-ADE7-43B4-A4E9-312FC5BC726F}_is1) (Version: 1.3 - UnH Solutions)
TextPad 7 (HKLM\...\{52C23381-8FED-4DB0-A07F-CCE9C9061475}) (Version: 7.1.0 - Helios)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
TraXEx 6.0 (HKLM-x32\...\TraXEx_is1) (Version: 6.0.0.0 - Alexander Miehlke Softwareentwicklung)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.275 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden
Update for Microsoft Office 2013 (KB2726961) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F0316FE0-38FC-4F3E-81FA-8B51BB649901}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2752100) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3D68A478-00CE-4052-87D7-C976EC83CB9D}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2752100) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{3D68A478-00CE-4052-87D7-C976EC83CB9D}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2752101) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8449754F-577E-4EC3-B9D4-108395B1680E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760311) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{997008C6-AFBB-4671-830E-D4291DB4EE8F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760621) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E285B62C-A9CC-495A-8FFE-ED9BCA9C118F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760621) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E285B62C-A9CC-495A-8FFE-ED9BCA9C118F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760624) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CC352B49-75F0-457F-AED0-3879CC1CB95E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760624) 64-Bit Edition (HKLM\...\{90150000-006E-0407-1000-0000000FF1CE}_Office15.PROPLUS_{7CE43D68-795A-47B4-8DC6-BF103F33BB38}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760624) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{CC352B49-75F0-457F-AED0-3879CC1CB95E}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{ACA1C952-1AB5-4E21-ABF3-FAB8481E7297}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2726947) 64-Bit Edition (HKLM\...\{90150000-0018-0407-1000-0000000FF1CE}_Office15.PROPLUS_{ECC41633-387D-4BA9-A47B-9E112DD85474}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2013 (KB2760358) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{35715E39-DD87-4540-A25E-3C5E2123C34A}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2013 (KB2760358) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{35715E39-DD87-4540-A25E-3C5E2123C34A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2751994) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{847C8335-DE78-4777-9A43-673313C07D40}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2738044) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1B150902-ECBA-42C9-838A-1CDFE416D0E2}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2752073) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{BF07EA99-74F1-41D9-8778-474666DE9C08}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2752073) 64-Bit Edition (HKLM\...\{90150000-001A-0407-1000-0000000FF1CE}_Office15.PROPLUS_{61A51BD0-52A2-4A78-831C-DBB839432C7B}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2752073) 64-Bit Edition (HKLM\...\{90150000-001B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{61A51BD0-52A2-4A78-831C-DBB839432C7B}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2752073) 64-Bit Edition (HKLM\...\{90150000-012B-0407-1000-0000000FF1CE}_Office15.PROPLUS_{61A51BD0-52A2-4A78-831C-DBB839432C7B}) (Version: - Microsoft)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinX DVD Ripper Platinum 7.5.4 (HKLM-x32\...\WinX DVD Ripper Platinum_is1) (Version: - Digiarty Software, Inc.)
Wondershare Video Editor(Build 3.5.1) (HKLM-x32\...\Wondershare Video Editor_is1) (Version: - Wondershare Software)

==================== Restore Points =========================

08-04-2014 08:25:05 Installed calibre
08-04-2014 13:58:32 Removed Java 7 Update 51
08-04-2014 21:05:12 Installed Microsoft Primary Interoperability Assemblies 2005
08-04-2014 21:05:22 Installed STK 10.
09-04-2014 10:40:38 Windows Update
09-04-2014 16:13:25 Removed STK 10.
09-04-2014 16:13:59 Removed STK License Manager.
09-04-2014 16:14:10 Removed STK Parallel Computing 10.
11-04-2014 09:52:32 Tweaking.com - Windows Repair
11-04-2014 10:31:44 Wiederherstellungsvorgang
13-04-2014 12:14:13 Windows Modules Installer
13-04-2014 17:00:03 Windows-Sicherung

==================== Hosts content: ==========================

2009-07-14 04:34 - 2014-04-08 10:06 - 17207124 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 asy.a8ww.net
0.0.0.0 cl21.v4.adaction.se
0.0.0.0 wad.adbasket.net
0.0.0.0 show.adclick.lv
0.0.0.0 222-33544_999.pub.adfirmative.com
0.0.0.0 c.adfirmative.com
0.0.0.0 rc.de.adlink.net #[Tracking.Cookie]
0.0.0.0 tr.de.adlink.net
0.0.0.0 admedien.com
0.0.0.0 www.admedien.com
0.0.0.0 ads.admodus.com #[Tracking.Cookie]
0.0.0.0 tt11.adobe.com #[adobe.tcliveus.com]
0.0.0.0 ad02.adonspot.com
0.0.0.0 e.adpower.bg
0.0.0.0 img.ads-click.com
0.0.0.0 ads.adtube.de
0.0.0.0 www.adultcommercial.net
0.0.0.0 www.adult-tracker.de
0.0.0.0 counterimg1.adultrevenueservice.com
0.0.0.0 images.adviews.de
0.0.0.0 www.adviews.de
0.0.0.0 ads.afraccess.com
0.0.0.0 atd.agencytradingdesk.net #[server down?]
0.0.0.0 www.almightytraffic.com
0.0.0.0 bokee.allyes.com
0.0.0.0 eastmoney.allyes.com
0.0.0.0 sroomafp.allyes.com
0.0.0.0 tom.allyes.com
0.0.0.0 advloc.alice.it

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {148ACE6F-7D46-465A-9A33-24DFFB33546F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => D:\Programme\Microsoft_Office_2013\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {1DC8F93E-26CC-4D3F-B65B-7D50947A9CEA} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {3C5174CF-A9BE-4F24-ADDF-8F5E7987C646} - System32\Tasks\SmartDefrag3_Update => C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe [2014-01-09] (IObit)
Task: {59D28A75-4988-45F1-8A84-D2E90C3497AA} - \ParetoLogic Registration3 ATTENTION ====> No Task File
Task: {69BA3281-C3AB-49E6-9449-2BE603EC5E18} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => D:\Tools\TuneUp Utilities\OneClick.exe [2014-03-20] (TuneUp Software)
Task: {6EBD02A2-1167-4A1B-A2CB-00A67D02D0F6} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Kolki-PC-Kolki Kolki-PC => D:\Programme\Microsoft_Office_2013\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {778F6D5E-5C72-44B6-9F0B-96CB375CC6E6} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {78CD7A6A-8D9B-446D-A427-81CC1B113891} - System32\Tasks\Norton Internet Security\Norton Error Processor => D:\Programme\Norton Internet Security\Engine\21.2.0.38\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {7B1E1289-D174-429A-8383-F86CD5BC91B0} - \Driver Booster Update ATTENTION ====> No Task File
Task: {86560DCD-0328-4B6A-ADCD-794BB9C98B89} - System32\Tasks\ASC7_SkipUac_Kolki => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [2014-03-10] (IObit)
Task: {885300E5-1CDF-4774-9441-30437BEBEDC0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {9FF227B7-4EF9-4788-B1AF-FC20B9BBF5CB} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4072658579-1215342442-2827123583-1000
Task: {AD2F2FDE-0177-42E9-AE88-F301F867E17D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => D:\Programme\Microsoft_Office_2013\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {C413977B-8EB3-4B86-80C6-56764B07C2C8} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-01-16] (IObit)
Task: {CDB44D16-5610-443A-A4A8-DA46D1EF0853} - \ParetoLogic Update Version3 ATTENTION ====> No Task File
Task: {D62CC0D7-C075-4B4E-8A21-C50C80A17DE7} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
Task: {E704E0B7-5C4D-40FC-8112-9FC3E849D954} - System32\Tasks\Norton WSC Integration => D:\Programme\Norton Internet Security\Engine\21.2.0.38\WSCStub.exe [2014-03-12] (Symantec Corporation)
Task: {ECCBF1DC-DBD2-48F2-87A8-D13D3E6C215C} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-03-25] (IObit)
Task: {F9076C05-D0C5-4D0F-A476-85CEB74484FA} - System32\Tasks\{E3170F08-F3E8-42C8-A8D6-428997C82BF6} => D:\Programme\Video Editor\VideoEditor.exe [2014-01-02] (Wondershare Software)
Task: {F9D5E2DB-7799-4749-84DD-8A58AD30F5C2} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => D:\Programme\Norton Internet Security\Engine\21.2.0.38\SymErr.exe [2014-01-30] (Symantec Corporation)

==================== Loaded Modules (whitelisted) =============

2014-02-15 12:34 - 2011-04-11 07:26 - 00034304 _____ () C:\Windows\System32\spe__l.dll
2014-03-25 17:02 - 2013-12-29 12:18 - 00163328 _____ () D:\Tools\Genie Timeline\GSTimelineIconOverlay.gtl
2014-03-25 17:02 - 2013-11-20 09:39 - 00045568 _____ () D:\Tools\Genie Timeline\GSLogging.gtl
2014-03-25 17:02 - 2013-12-29 12:18 - 00211968 _____ () D:\Tools\Genie Timeline\Settings.gtl
2014-03-25 17:02 - 2013-11-20 09:39 - 00089600 _____ () D:\Tools\Genie Timeline\GSEncryption.gtl
2010-01-02 16:42 - 2010-01-02 16:42 - 00098304 _____ () D:\Tools\FileZilla FTP Client\fzshellext_64.dll
2014-02-14 18:50 - 2012-10-29 09:48 - 00927232 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
2013-12-29 12:18 - 2013-12-29 12:18 - 00332800 _____ () D:\Tools\Genie Timeline\OnlineHandler.dll
2013-11-20 09:39 - 2013-11-20 09:39 - 00045568 _____ () D:\Tools\Genie Timeline\GSLogging.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00491520 _____ () D:\Tools\Genie Timeline\GSIndexDB.dll
2012-02-02 11:16 - 2012-02-02 11:16 - 00740864 _____ () D:\Tools\Genie Timeline\sqlite3.dll
2012-04-24 11:29 - 2012-04-24 11:29 - 00011264 _____ () D:\Tools\Genie Timeline\RWLock.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00211968 _____ () D:\Tools\Genie Timeline\Settings.dll
2013-11-20 09:39 - 2013-11-20 09:39 - 00089600 _____ () D:\Tools\Genie Timeline\GSEncryption.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00087040 _____ () D:\Tools\Genie Timeline\QueueManager.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00722944 _____ () D:\Tools\Genie Timeline\GSBackupManager.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00371200 _____ () D:\Tools\Genie Timeline\GSWatcher4.dll
2013-02-11 13:34 - 2013-02-11 13:34 - 00045056 _____ () D:\Tools\Genie Timeline\pcre.dll
2013-02-11 13:34 - 2013-02-11 13:34 - 00097792 _____ () D:\Tools\Genie Timeline\pcrebase.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00054784 _____ () D:\Tools\Genie Timeline\GSLogManager.dll
2012-02-02 11:16 - 2012-02-02 11:16 - 00010752 _____ () D:\Tools\Genie Timeline\VSSEngine_Proxy.dll
2013-11-20 09:39 - 2013-11-20 09:39 - 00058368 _____ () D:\Tools\Genie Timeline\GSLibrariesManager.dll
2012-02-02 11:16 - 2012-02-02 11:16 - 00031232 _____ () D:\Tools\Genie Timeline\VSSEngine_W2K3.dll
2014-03-20 15:44 - 2014-03-20 15:44 - 00675640 _____ () D:\Tools\TuneUp Utilities\avgrepliba.dll
2013-12-29 12:18 - 2013-12-29 12:18 - 00063488 _____ () D:\Tools\Genie Timeline\XBalloonMsgDll.dll
2013-11-20 09:39 - 2013-11-20 09:39 - 00093696 _____ () D:\Tools\Genie Timeline\GSCurl.dll
2014-02-15 12:54 - 2013-10-25 13:08 - 00517408 _____ () C:\Program Files (x86)\IObit\Advanced SystemCare 7\sqlite3.dll
2014-02-14 18:50 - 2014-04-15 12:49 - 00027136 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\PEbiosinterface32.dll
2014-02-14 18:50 - 2012-05-07 18:04 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.01\ATKEX.dll
2014-04-15 12:49 - 2014-04-15 12:49 - 00041984 _____ () c:\users\kolki\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpwnlfie.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\Kolki\AppData\Roaming\Dropbox\bin\libcef.dll
2014-04-01 19:36 - 2013-07-24 09:24 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2014-03-28 11:35 - 2014-03-28 11:35 - 00093696 _____ () D:\Tools\FileZilla FTP Client\fzshellext.dll
2014-02-15 12:57 - 2013-01-15 19:48 - 00348992 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madExcept_.bpl
2014-02-15 12:57 - 2013-01-15 19:48 - 00183616 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madBasic_.bpl
2014-02-15 12:57 - 2013-01-15 19:48 - 00051008 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\madDisAsm_.bpl
2014-02-15 12:57 - 2013-12-12 19:46 - 08001344 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\WebUI.dll
2014-02-15 12:57 - 2013-10-16 23:17 - 00185168 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\libcurl-4.dll
2014-02-15 12:57 - 2013-05-16 20:26 - 00182080 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\unrar.dll
2014-02-15 12:57 - 2013-05-16 20:26 - 00145216 _____ () C:\Program Files (x86)\IObit\IObit Malware Fighter\zlibwapi.dll
2014-03-30 12:33 - 2014-03-30 12:33 - 03642480 _____ () D:\Programme\Firefox\mozjs.dll
2014-04-05 14:47 - 2014-04-05 14:47 - 16276872 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice => ""="Service"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\Services: TuneUp.UtilitiesSvc => 2

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/15/2014 00:51:35 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2014 00:47:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2014 00:44:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2014 11:26:04 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0x970
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (04/15/2014 10:18:44 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0xd48
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (04/15/2014 10:13:03 AM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -2147023838

Error: (04/15/2014 10:04:56 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/14/2014 10:03:49 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/14/2014 10:03:46 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/14/2014 05:50:03 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 28.0.0.5186, Zeitstempel: 0x53240e37
Name des fehlerhaften Moduls: xul.dll, Version: 28.0.0.5186, Zeitstempel: 0x53240e04
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00184729
ID des fehlerhaften Prozesses: 0x1454
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3


System errors:
=============
Error: (04/15/2014 00:49:52 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (04/15/2014 00:49:49 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/15/2014 00:49:48 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (04/15/2014 00:45:27 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (04/15/2014 00:45:26 PM) (Source: ipnathlp) (User: )
Description: 0

Error: (04/15/2014 00:45:20 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/15/2014 00:45:19 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (04/15/2014 00:42:26 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}{BC50CF2A-E12C-4F18-90CE-714CC8600CEE}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (04/15/2014 00:42:20 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT-AUTORITÄT)
Description: Das WLAN-Erweiterungsmodul konnte nicht gestartet werden.

Modulpfad: C:\Windows\system32\Rtlihvs.dll
Fehlercode: 126

Error: (04/15/2014 10:03:16 AM) (Source: ipnathlp) (User: )
Description: 0


Microsoft Office Sessions:
=========================
Error: (04/15/2014 00:51:35 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2014 00:47:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2014 00:44:05 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/15/2014 11:26:04 AM) (Source: Application Error)(User: )
Description: firefox.exe28.0.0.518653240e37xul.dll28.0.0.518653240e04c00000050018472997001cf588caa5dfbf5D:\Programme\Firefox\firefox.exeD:\Programme\Firefox\xul.dl lf6e7e452-c47f-11e3-a17a-d850e64cace3

Error: (04/15/2014 10:18:44 AM) (Source: Application Error)(User: )
Description: firefox.exe28.0.0.518653240e37xul.dll28.0.0.518653240e04c000000500184729d4801cf58816cb92a18D:\Programme\Firefox\firefox.exeD:\Programme\Firefox\xul.dl l8efcd101-c476-11e3-a17a-d850e64cace3

Error: (04/15/2014 10:13:03 AM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -2147023838

Error: (04/15/2014 10:04:56 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/14/2014 10:03:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestd:\Tools\genie timeline\x86\GenieTimeLineAgent.exe

Error: (04/14/2014 10:03:46 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (04/14/2014 05:50:03 PM) (Source: Application Error)(User: )
Description: firefox.exe28.0.0.518653240e37xul.dll28.0.0.518653240e04c000000500184729145401cf57f918ff5fd8D:\Programme\Firefox\firefox.exeD:\Programme\Firefox\xul.d ll70df0ea6-c3ec-11e3-955a-d850e64cace3


==================== Memory info ===========================

Percentage of memory in use: 21%
Total physical RAM: 16031.7 MB
Available physical RAM: 12632.23 MB
Total Pagefile: 32061.57 MB
Available Pagefile: 28608.18 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Start) (Fixed) (Total:111.45 GB) (Free:58.64 GB) NTFS
Drive d: (Daten) (Fixed) (Total:1863.01 GB) (Free:1677.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0A24532E)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 112 GB) (Disk ID: 842D90D7)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111 GB) - (Type=07 NTFS)

==================== End Of Log ============================


Danke,

Vauh

Deinstalliere mal alles an Security Software, vor allem IOBIT und Norton, und benutze nur ein AV PRogramm.


Hosts-Datei auf Standard zurücksetzen
Die HOSTS-Datei ist eine lokale Textdatei, welche der Aufgabe von DNS-Informationen nahe kommt. Diese Datei dient der festen Zuordnung von Hostnamen mit IP-Adressen. Über die Hosts-Datei kannst Du regeln, welche Webseiten nicht besucht werden können, weil sie z. B. boshaften Code enthalten. Das tut Spybot S&D z. B. über die Funktion "Immunisierung". Dabei werden diese als boshaft bekannten Websites auf "localhost" umgeleitet und können dadurch nicht mehr besucht werden. Aus diesem Grund ist eine "immunisierte" Hosts-Datei manchmal irre lang und enthälte 1000de von Website-URLs.

Andererseits kann eine Hosts-Datei auch von Malware so manipuliert werden, dass Du z. B. nicht mehr auf die Windows-Update-Seite, Antiviren- oder sonstige wichtige Seiten kommst. Aus diesem Grund werden wir Deine Hosts-Datei mit dem folgenden Tool auf den Standard zurücksetzen.

Lade Dir HostsXpert http://www.funkytoad.com/content/view/13/31/
auf dem Desktop speichern und entpacken

• Ordner HostsXpert öffnen
• HostsXpert.exe doppelklicken
• klicke auf Restore Microsoft's Hosts File, dann OK

Wenn sich die hosts Datei nicht ändern lässt:
C:\Windows\system32\DRIVERS\ETC\hosts =>
Rechte Maustaste auf die Datei hosts => Eigenschaften => dann "Schreibgeschützt" deaktivieren.

Hi Schrauber,

würde ich gerne machen, bekomme aber folgende Meldung


Not Found

The requested URL /content/view/13/31/ was not found on this server.

Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.

Vauh

Hi


Habe mir von einer anderen Webseite das Programm hosts-expert 4.4 geholt.
Die host Datei ist nicht schreibgeschützt.

Wenn ich das Programm starte kommt die folgende Meldung


error: cannot create file c:\windows\system32\drivers/etc/hosts

Wieso "create".

Bitte um Kommentar.

Vauh

Weil er ne neue schreiben will. Egal. Öffne mal bitte die Datei hosts unter dem angegebenen Pfad, lösch alle Einträge raus sodass nur das drin steht:

Huiii,

das war ein Problem.

Die Hosts Datei lässt sich nur im abgesicherten Modus ändern.
Im Normalmodus lässt sich die auch nicht als Adsmin ändern.

So, alles geändert und alles funktioniert wieder.

Ich nehme an, irgendwann kommt das Problem evtl. wieder, wenn die Hosts Datei wieder voll ist, oder?

Gruss

Vauh

Die wird nur voll durch irgend ne Sicherheitssoftware, die da was rein schreibt.