Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 7: Extreme Geschwindigkeitsprobleme

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 20.04.2014, 23:24   #1
WireAngel
 
Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Schönen guten Abend,
folgendes ist mein Problem: Sobald ich meinen Computer starte und mich einlogge braucht er etwa 10 Minuten, bis er flüssig läuft. Starte ich ihn jedoch neu bzw. schalte ihn aus und fahre ihn wenige Sekunden später erneut hoch, so entfallen diese 10 Minuten beinahe komplett.
Weiterhin kommt es gelegentlich vor, dass er ohne Vorwarnung und ohne spezielle Bedingung etwa eine Minute hängt, wobei sich sogar der Sound aufhängt. Dies geschieht jedoch meist nur einmal, danach hab ich Ruhe. Nun ist meine Frage: Was kann ich tun, um diese Probleme zu beheben?
Das Problem eilt nicht, ist jedoch schon länger präsent und nun versuche ich, es zu beheben.
MfG. Stephan

Alt 21.04.2014, 19:08   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.


So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 23.04.2014, 16:55   #3
WireAngel
 
Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Hoffentlich ist es so besser:

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-04-2014 02
Ran by Wire at 2014-04-21 00:06:02
Running from C:\Users\Wire\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin 64-bit (HKLM\...\Adobe Flash Player Plugin) (Version: 11.1.102.63 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Any Video Converter 5.5.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Brother MFL-Pro Suite DCP-J125 (HKLM-x32\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
ClocX (1.6.0) (HKLM-x32\...\ClocX) (Version:  - )
Clonk Rage (HKLM-x32\...\Clonk Rage) (Version:  - RedWolf Design GmbH)
Defense Grid: The Awakening (HKLM-x32\...\Steam App 18500) (Version:  - Hidden Path Entertainment)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.2 - Dropbox, Inc.)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.115 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Drive (HKLM-x32\...\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}) (Version: 1.14.6059.644 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
GUILD WARS (HKLM-x32\...\Guild Wars) (Version:  - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hero Siege (HKLM-x32\...\Steam App 269210) (Version:  - Elias Viglione)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.)
Meridian: New World (HKLM-x32\...\Steam App 265120) (Version:  - Elder Games)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 de)) (Version: 24.2.0 - Mozilla)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
NVIDIA 3D Vision Controller-Treiber 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.82 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.82 - NVIDIA Corporation)
NVIDIA Grafiktreiber 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.140.952 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
NVIDIA Update 9.3.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 9.3.21 - NVIDIA Corporation)
NVIDIA Update Components (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation)
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version:  - Roccat GmbH)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version:  - Roccat GmbH)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
Rossmann Fotowelt Software 4.13 (HKLM-x32\...\Rossmann Fotowelt Software) (Version: 4.13 - ORWO Net)
RPGツクール2000 ランタイムパッケージ (HKLM-x32\...\{33F7A957-A66D-45A1-BADF-6576083B14E2}) (Version:  - )
SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version:  - Obsidian Entertainment)
Spotify (HKCU\...\Spotify) (Version: 0.9.8.296.g91f68827 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
The Mighty Quest For Epic Loot (HKLM-x32\...\Steam App 239220) (Version:  - Ubisoft Montreal)
Todoist (HKLM-x32\...\{B1B3C79A-FFD9-4B28-A456-62B6E55E2A5C}_is1) (Version: 2.6.4.0 - Doist Ltd.)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600217) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

Could not list Restore Points. Check "winmgmt" service or repair WMI.


==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

==================== Loaded Modules (whitelisted) =============

2012-01-10 15:41 - 2014-02-10 20:10 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2014-02-16 16:46 - 2007-09-02 14:58 - 00495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: uTorrent => "C:\Users\Wire\Downloads\uTorrent_34_30660.exe"  /MINIMIZED

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/20/2014 11:58:12 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StartScreenSaver

Error: (04/20/2014 11:31:28 PM) (Source: Application Hang) (User: )
Description: Programm Gw2.exe, Version 1.0.0.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 116c

Startzeit: 01cf5cddc8b1d88a

Endzeit: 12

Anwendungspfad: E:\Guild Wars 2\Gw2.exe

Berichts-ID: 1d9e2584-c8d3-11e3-a24a-902b34ad3b61

Error: (04/11/2014 11:17:51 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver

Error: (04/11/2014 07:14:50 AM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver

Error: (04/10/2014 02:59:00 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/09/2014 11:57:15 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StartScreenSaver

Error: (04/09/2014 06:25:31 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/09/2014 03:25:27 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/09/2014 02:49:54 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/08/2014 06:33:19 PM) (Source: BugSplat) (User: )
Description: This event has been logged by the BugSplat crash reporting library (hxxp://www.bugsplatsoftware.com) 
in partnership with your vendor lol_beta_riotgames_com.
A crash report from the application 'LOL_Public' has been successfully logged into the BugSplat database with id=-1.
Please contact your vendor for more information.


System errors:
=============
Error: (04/21/2014 00:01:29 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎20.‎04.‎2014 um 23:58:40 unerwartet heruntergefahren.

Error: (04/20/2014 11:42:43 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Definition Update for Windows Defender - KB915597 (Definition 1.173.27.0)

Error: (04/20/2014 11:34:56 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video5!051d(2558)

Error: (04/20/2014 11:25:06 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80246007 fehlgeschlagen: Windows 7 Service Pack 1 für x64-basierte Systeme (KB976932)

Error: (04/09/2014 00:26:56 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Windows 7 Service Pack 1 für x64-basierte Systeme (KB976932)

Error: (04/09/2014 00:26:49 PM) (Source: Microsoft-Windows-Service Pack Installer) (User: NT-AUTORITÄT)
Description: Fehler bei der Service Pack-Installation. Fehlercode: 0x800f0a12.

Error: (04/08/2014 04:39:12 PM) (Source: Server) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{98BE0671-7976-4BAF-8258-EFCCADA692A5} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.

Error: (04/08/2014 00:16:32 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Windows 7 Service Pack 1 für x64-basierte Systeme (KB976932)

Error: (04/08/2014 00:16:31 AM) (Source: Microsoft-Windows-Service Pack Installer) (User: NT-AUTORITÄT)
Description: Fehler bei der Service Pack-Installation. Fehlercode: 0x800f0a12.

Error: (04/07/2014 04:08:42 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070420


Microsoft Office Sessions:
=========================
Error: (04/20/2014 11:58:12 PM) (Source: EventSystem)(User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StartScreenSaver

Error: (04/20/2014 11:31:28 PM) (Source: Application Hang)(User: )
Description: Gw2.exe1.0.0.1116c01cf5cddc8b1d88a12E:\Guild Wars 2\Gw2.exe1d9e2584-c8d3-11e3-a24a-902b34ad3b61

Error: (04/11/2014 11:17:51 PM) (Source: EventSystem)(User: )
Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver

Error: (04/11/2014 07:14:50 AM) (Source: EventSystem)(User: )
Description: 80070005EventSystem.EventSubscription{5C70CD3A-8913-4D93-94F7-79182EF1B930}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StopScreenSaver

Error: (04/10/2014 02:59:00 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/09/2014 11:57:15 PM) (Source: EventSystem)(User: )
Description: 80070005EventSystem.EventSubscription{60042969-6CCA-46CD-81D4-22A056C989F3}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}HB_StartScreenSaver

Error: (04/09/2014 06:25:31 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/09/2014 03:25:27 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/09/2014 02:49:54 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/08/2014 06:33:19 PM) (Source: BugSplat)(User: )
Description: lol_beta_riotgames_comLOL_Public-1


==================== Memory info =========================== 

Percentage of memory in use: 18%
Total physical RAM: 8173.24 MB
Available physical RAM: 6628.92 MB
Total Pagefile: 16344.62 MB
Available Pagefile: 14786.88 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:46.98 GB) NTFS
Drive d: (HDDRIVE2GO) (Fixed) (Total:931.28 GB) (Free:800.91 GB) FAT32
Drive e: (Games) (Fixed) (Total:833.85 GB) (Free:778.93 GB) NTFS
Drive f: (Programme) (Fixed) (Total:58.59 GB) (Free:58.5 GB) NTFS
Drive g: (Daten) (Fixed) (Total:407.07 GB) (Free:372.36 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================
         

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-04-2014 02
Ran by Wire (ATTENTION: The logged in user is not administrator) on STEPHAN-PC on 21-04-2014 00:05:44
Running from C:\Users\Wire\Desktop
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Spotify Ltd) C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
() C:\Program Files (x86)\puush\puush.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Dropbox, Inc.) C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1064224 2013-11-14] (NVIDIA Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2013-10-25] (ROCCAT GmbH)
HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [540672 2013-10-30] (ROCCAT GmbH)
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [Spotify Web Helper] => C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-11] (Spotify Ltd)
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-02-10] ()
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21822128 2014-01-30] (Google)
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [Spotify] => C:\Users\Wire\AppData\Roaming\Spotify\spotify.exe [6087224 2014-04-11] (Spotify Ltd)
Startup: C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (No File)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Wire\AppData\Roaming\Mozilla\Firefox\Profiles\v4ayw7l7.default
FF Homepage: hxxp://www.tumblr.com/dashboard
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Wire\AppData\Roaming\Mozilla\Firefox\Profiles\v4ayw7l7.default\Extensions\staged [2014-03-30]
FF Extension: DownloadHelper - C:\Users\Wire\AppData\Roaming\Mozilla\Firefox\Profiles\v4ayw7l7.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-02-13]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-07]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-07]

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2014-01-07]
CHR Extension: (Google Docs) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-07]
CHR Extension: (Google Drive) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-07]
CHR Extension: (zzllrr RSS Reader) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aphanomkkjgledipighdfjnilhfenpam [2014-01-07]
CHR Extension: (YouTube) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-07]
CHR Extension: (Google-Suche) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-07]
CHR Extension: (Regentropfen(Non-Aero)) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpagcfbbmlebfnkeogkigellbgmfkjfg [2014-01-07]
CHR Extension: (Stylish) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2014-01-07]
CHR Extension: (AdBlock) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-07]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-01-07]
CHR Extension: (Full Web Tetris) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieicmdpibfnjbmjolkmohnelljmjomoj [2014-01-07]
CHR Extension: (Google Wallet) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-07]
CHR Extension: (Hover Zoom) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2014-01-07]
CHR Extension: (Google Mail) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-07]

==================== Services (Whitelisted) =================

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-14] (NVIDIA Corporation)

==================== Drivers (Whitelisted) ====================

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-11-14] (NVIDIA Corporation)
S3 SaiK0CD7; C:\Windows\System32\DRIVERS\SaiK0CD7.sys [180544 2012-09-20] (Saitek)
S3 SaiU0CD7; C:\Windows\System32\DRIVERS\SaiU0CD7.sys [47168 2012-09-20] (Saitek)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-21 00:03 - 2014-04-21 00:05 - 00009671 _____ () C:\Users\Wire\Desktop\FRST.txt
2014-04-20 23:54 - 2014-04-21 00:05 - 00000000 ____D () C:\FRST
2014-04-20 23:53 - 2014-04-20 23:53 - 00000000 _____ () C:\Users\Stephan\defogger_reenable
2014-04-20 23:52 - 2014-04-21 00:03 - 00000476 _____ () C:\Users\Wire\Desktop\defogger_disable.log
2014-04-20 23:51 - 2014-04-20 23:51 - 00000476 _____ () C:\Users\Wire\Downloads\defogger_disable.log
2014-04-20 23:51 - 2014-04-20 23:51 - 00000248 _____ () C:\Users\Wire\Downloads\defogger_enable.log
2014-04-20 23:49 - 2014-04-20 23:49 - 02056704 _____ (Farbar) C:\Users\Wire\Desktop\FRST64.exe
2014-04-20 23:49 - 2014-04-20 23:49 - 00050477 _____ () C:\Users\Wire\Desktop\Defogger.exe
2014-04-20 23:48 - 2014-04-20 23:48 - 00380416 _____ () C:\Users\Wire\Desktop\ppcqt001.exe
2014-04-20 23:27 - 2014-04-20 23:28 - 00613200 _____ (Chip Digital GmbH) C:\Users\Wire\Downloads\HijackThis - CHIP-Downloader.exe
2014-04-20 23:24 - 2014-04-20 23:25 - 00613200 _____ (Chip Digital GmbH) C:\Users\Wire\Downloads\CCleaner - CHIP-Downloader (1).exe
2014-04-09 15:34 - 2014-04-09 15:35 - 00018549 _____ () C:\Windows\DirectX.log
2014-04-08 17:48 - 2014-04-08 17:48 - 00000000 ____D () C:\Users\Wire\Documents\My Games
2014-04-08 17:43 - 2014-04-08 17:43 - 00002126 _____ () C:\Users\Wire\AppData\Local\recently-used.xbel
2014-04-08 16:42 - 2014-04-08 16:42 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-08 16:41 - 2014-04-08 16:42 - 00000202 _____ () C:\Users\Wire\Desktop\South Park The Stick of Truth.url
2014-04-08 16:40 - 2014-04-08 16:40 - 00000046 _____ () C:\Users\Wire\Desktop\Steam.txt
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO.pbk
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO (1).pbk
2014-04-08 12:32 - 2014-04-08 12:32 - 00342430 _____ () C:\Users\Wire\Downloads\lolhentai-1.6.3 (1).sdt
2014-04-07 20:03 - 2014-04-07 20:46 - 00000000 ____D () C:\Users\Wire\Documents\MeridianSaves
2014-04-07 20:02 - 2014-04-07 20:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-04-05 19:36 - 2014-04-05 19:39 - 00000000 ____D () C:\Users\Wire\Desktop\GW2
2014-04-02 20:26 - 2014-04-02 20:26 - 29498592 _____ (TeamSpeak Systems GmbH) C:\Users\Wire\Downloads\TeamSpeak3-Client-win64-3.0.14.exe
2014-04-02 20:26 - 2014-04-02 20:26 - 00001166 _____ () C:\Users\Wire\Desktop\TeamSpeak 3 Client.lnk
2014-04-02 20:26 - 2014-04-02 20:26 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-04-02 20:20 - 2014-04-02 20:20 - 00613200 ____N (Chip Digital GmbH) C:\Users\Wire\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe
2014-03-29 16:31 - 2014-03-29 16:31 - 00342430 _____ () C:\Users\Wire\Downloads\lolhentai-1.6.3.sdt
2014-03-27 18:14 - 2014-03-27 18:14 - 00001829 _____ () C:\Users\Public\Desktop\ClocX.lnk
2014-03-27 18:14 - 2014-03-27 18:14 - 00000000 ____D () C:\Program Files (x86)\ClocX
2014-03-27 18:10 - 2014-03-27 18:11 - 20897282 _____ () C:\Users\Wire\Downloads\ClocX160.exe
2014-03-27 18:08 - 2014-03-27 18:08 - 00004062 _____ () C:\Users\Wire\Downloads\timer.zip
2014-03-26 21:07 - 2014-03-26 21:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-03-26 21:06 - 2014-03-26 21:06 - 00057531 _____ () C:\Users\Wire\Downloads\Volibear_Select.ogg
2014-03-26 15:13 - 2014-04-21 00:01 - 00008180 _____ () C:\Windows\setupact.log
2014-03-26 15:13 - 2014-03-26 15:13 - 00001300 _____ () C:\Windows\PFRO.log
2014-03-26 15:13 - 2014-03-26 15:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 19:46 - 2014-03-25 19:47 - 00026502 _____ () C:\Users\Stephan\Documents\cc_20140325_184656.reg
2014-03-25 19:45 - 2014-03-25 19:45 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-25 19:45 - 2014-03-25 19:45 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-25 19:44 - 2014-03-25 19:44 - 04787368 _____ (Piriform Ltd) C:\Users\Wire\Downloads\ccsetup412.exe
2014-03-25 19:42 - 2014-03-25 19:42 - 00613200 ____N (Chip Digital GmbH) C:\Users\Wire\Downloads\CCleaner - CHIP-Downloader.exe
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\DAEMON Tools Lite
2014-03-25 17:40 - 2014-03-25 19:46 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\DAEMON Tools Lite
2014-03-25 17:40 - 2014-03-25 17:51 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-03-25 17:39 - 2014-03-25 17:43 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-03-25 14:19 - 2014-03-25 14:20 - 01614416 _____ (BitTorrent Inc.) C:\Users\Wire\Downloads\uTorrent_34_30660.exe
2014-03-24 00:29 - 2014-03-24 00:29 - 00000000 _____ () C:\Users\Wire\Sti_Trace.log
2014-03-23 22:23 - 2014-03-23 22:23 - 00002140 _____ () C:\Users\Public\Desktop\Brother Creative Center.lnk
2014-03-23 22:23 - 2014-03-23 22:23 - 00000050 _____ () C:\Windows\system32\BRIDF10A.DAT
2014-03-23 22:22 - 2014-03-23 22:22 - 00000000 ____D () C:\Program Files (x86)\Browny02
2014-03-23 22:22 - 2014-03-23 22:22 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-03-23 22:22 - 2010-03-08 14:50 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll
2014-03-23 22:22 - 2010-02-09 18:11 - 00217088 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll
2014-03-23 22:22 - 2010-02-05 12:42 - 00180224 ____N (Brother Industries, Ltd.) C:\Windows\SysWOW64\BroSNMP.dll
2014-03-23 22:22 - 2007-12-13 23:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll
2014-03-23 22:22 - 2007-12-13 23:16 - 00005632 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll
2014-03-23 22:21 - 2014-03-23 22:21 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\InstallShield
2014-03-23 22:21 - 2014-03-23 22:21 - 00000000 ____D () C:\ProgramData\Brother
2014-03-23 22:20 - 2014-03-23 22:20 - 00000000 ____D () C:\Users\Wire\Downloads\install
2014-03-23 21:42 - 2014-03-23 21:43 - 119661016 _____ (A.I.SOFT,INC.) C:\Users\Wire\Downloads\dcp-j125-inst-B1-cd1.EXE

==================== One Month Modified Files and Folders =======

2014-04-21 00:05 - 2014-04-21 00:03 - 00009671 _____ () C:\Users\Wire\Desktop\FRST.txt
2014-04-21 00:05 - 2014-04-20 23:54 - 00000000 ____D () C:\FRST
2014-04-21 00:03 - 2014-04-20 23:52 - 00000476 _____ () C:\Users\Wire\Desktop\defogger_disable.log
2014-04-21 00:02 - 2014-02-17 21:32 - 00000000 ___RD () C:\Users\Wire\Google Drive
2014-04-21 00:02 - 2014-01-29 19:48 - 00000000 ___RD () C:\Users\Wire\Dropbox
2014-04-21 00:02 - 2014-01-29 19:44 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Dropbox
2014-04-21 00:02 - 2014-01-07 19:59 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Spotify
2014-04-21 00:01 - 2014-03-26 15:13 - 00008180 _____ () C:\Windows\setupact.log
2014-04-21 00:01 - 2014-01-07 18:55 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-21 00:01 - 2014-01-07 13:43 - 00000000 ____D () C:\Users\UpdatusUser.Stephan-PC
2014-04-21 00:01 - 2014-01-07 12:57 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-21 00:01 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-20 23:57 - 2014-01-07 13:55 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Skype
2014-04-20 23:53 - 2014-04-20 23:53 - 00000000 _____ () C:\Users\Stephan\defogger_reenable
2014-04-20 23:53 - 2014-01-07 10:20 - 00000000 ____D () C:\Users\Stephan
2014-04-20 23:51 - 2014-04-20 23:51 - 00000476 _____ () C:\Users\Wire\Downloads\defogger_disable.log
2014-04-20 23:51 - 2014-04-20 23:51 - 00000248 _____ () C:\Users\Wire\Downloads\defogger_enable.log
2014-04-20 23:49 - 2014-04-20 23:49 - 02056704 _____ (Farbar) C:\Users\Wire\Desktop\FRST64.exe
2014-04-20 23:49 - 2014-04-20 23:49 - 00050477 _____ () C:\Users\Wire\Desktop\Defogger.exe
2014-04-20 23:48 - 2014-04-20 23:48 - 00380416 _____ () C:\Users\Wire\Desktop\ppcqt001.exe
2014-04-20 23:28 - 2014-04-20 23:27 - 00613200 _____ (Chip Digital GmbH) C:\Users\Wire\Downloads\HijackThis - CHIP-Downloader.exe
2014-04-20 23:28 - 2009-07-14 06:45 - 00013216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-20 23:28 - 2009-07-14 06:45 - 00013216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-20 23:26 - 2014-01-07 10:15 - 01638602 _____ () C:\Windows\WindowsUpdate.log
2014-04-20 23:25 - 2014-04-20 23:24 - 00613200 _____ (Chip Digital GmbH) C:\Users\Wire\Downloads\CCleaner - CHIP-Downloader (1).exe
2014-04-20 23:23 - 2014-03-09 18:55 - 00000000 ____D () C:\Users\Stephan\AppData\Local\PMB Files
2014-04-20 23:23 - 2014-03-09 18:55 - 00000000 ____D () C:\ProgramData\PMB Files
2014-04-20 23:19 - 2014-01-07 18:56 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-20 23:17 - 2014-01-07 19:59 - 00000000 ____D () C:\Users\Wire\AppData\Local\Spotify
2014-04-11 21:32 - 2014-01-08 21:29 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\TS3Client
2014-04-10 15:22 - 2014-03-09 00:16 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\vlc
2014-04-10 13:16 - 2014-01-07 11:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 13:13 - 2014-01-07 11:51 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 21:09 - 2014-02-14 20:24 - 00000000 ____D () C:\Users\Wire\AppData\Local\Battle.net
2014-04-09 15:35 - 2014-04-09 15:34 - 00018549 _____ () C:\Windows\DirectX.log
2014-04-08 17:48 - 2014-04-08 17:48 - 00000000 ____D () C:\Users\Wire\Documents\My Games
2014-04-08 17:43 - 2014-04-08 17:43 - 00002126 _____ () C:\Users\Wire\AppData\Local\recently-used.xbel
2014-04-08 17:43 - 2014-01-13 08:33 - 00000000 ____D () C:\Users\Wire\AppData\Local\gtk-2.0
2014-04-08 17:43 - 2014-01-09 01:10 - 00000000 ____D () C:\Users\Wire\.gimp-2.8
2014-04-08 16:42 - 2014-04-08 16:42 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-08 16:42 - 2014-04-08 16:41 - 00000202 _____ () C:\Users\Wire\Desktop\South Park The Stick of Truth.url
2014-04-08 16:40 - 2014-04-08 16:40 - 00000046 _____ () C:\Users\Wire\Desktop\Steam.txt
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO.pbk
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO (1).pbk
2014-04-08 12:32 - 2014-04-08 12:32 - 00342430 _____ () C:\Users\Wire\Downloads\lolhentai-1.6.3 (1).sdt
2014-04-07 20:46 - 2014-04-07 20:03 - 00000000 ____D () C:\Users\Wire\Documents\MeridianSaves
2014-04-07 20:02 - 2014-04-07 20:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-04-07 20:02 - 2014-01-07 13:40 - 01589442 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-07 20:02 - 2009-07-14 19:58 - 00696620 _____ () C:\Windows\system32\perfh007.dat
2014-04-07 20:02 - 2009-07-14 19:58 - 00147916 _____ () C:\Windows\system32\perfc007.dat
2014-04-07 20:02 - 2009-07-14 07:13 - 01589442 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-05 19:39 - 2014-04-05 19:36 - 00000000 ____D () C:\Users\Wire\Desktop\GW2
2014-04-02 20:26 - 2014-04-02 20:26 - 29498592 _____ (TeamSpeak Systems GmbH) C:\Users\Wire\Downloads\TeamSpeak3-Client-win64-3.0.14.exe
2014-04-02 20:26 - 2014-04-02 20:26 - 00001166 _____ () C:\Users\Wire\Desktop\TeamSpeak 3 Client.lnk
2014-04-02 20:26 - 2014-04-02 20:26 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-04-02 20:26 - 2014-01-08 21:29 - 00000000 ____D () C:\Users\Wire\AppData\Local\TeamSpeak 3 Client
2014-04-02 20:20 - 2014-04-02 20:20 - 00613200 ____N (Chip Digital GmbH) C:\Users\Wire\Downloads\TeamSpeak 3 64 Bit - CHIP-Downloader.exe
2014-03-31 09:35 - 2014-01-07 11:17 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-03-30 16:45 - 2014-03-17 00:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-30 15:49 - 2014-02-13 18:56 - 00000000 ____D () C:\Users\Wire\dwhelper
2014-03-29 16:31 - 2014-03-29 16:31 - 00342430 _____ () C:\Users\Wire\Downloads\lolhentai-1.6.3.sdt
2014-03-27 18:14 - 2014-03-27 18:14 - 00001829 _____ () C:\Users\Public\Desktop\ClocX.lnk
2014-03-27 18:14 - 2014-03-27 18:14 - 00000000 ____D () C:\Program Files (x86)\ClocX
2014-03-27 18:11 - 2014-03-27 18:10 - 20897282 _____ () C:\Users\Wire\Downloads\ClocX160.exe
2014-03-27 18:08 - 2014-03-27 18:08 - 00004062 _____ () C:\Users\Wire\Downloads\timer.zip
2014-03-26 21:07 - 2014-03-26 21:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-03-26 21:06 - 2014-03-26 21:06 - 00057531 _____ () C:\Users\Wire\Downloads\Volibear_Select.ogg
2014-03-26 15:13 - 2014-03-26 15:13 - 00001300 _____ () C:\Windows\PFRO.log
2014-03-26 15:13 - 2014-03-26 15:13 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-25 19:48 - 2014-03-21 17:58 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\MindMaple
2014-03-25 19:48 - 2014-03-21 17:58 - 00000000 ____D () C:\ProgramData\MindMaple
2014-03-25 19:48 - 2014-03-21 17:58 - 00000000 ____D () C:\Program Files (x86)\MindMaple
2014-03-25 19:47 - 2014-03-25 19:46 - 00026502 _____ () C:\Users\Stephan\Documents\cc_20140325_184656.reg
2014-03-25 19:46 - 2014-03-25 17:40 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\DAEMON Tools Lite
2014-03-25 19:46 - 2014-02-13 19:08 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\uTorrent
2014-03-25 19:46 - 2014-01-07 10:12 - 00000000 ____D () C:\Windows\Panther
2014-03-25 19:45 - 2014-03-25 19:45 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-03-25 19:45 - 2014-03-25 19:45 - 00000000 ____D () C:\Program Files\CCleaner
2014-03-25 19:44 - 2014-03-25 19:44 - 04787368 _____ (Piriform Ltd) C:\Users\Wire\Downloads\ccsetup412.exe
2014-03-25 19:42 - 2014-03-25 19:42 - 00613200 ____N (Chip Digital GmbH) C:\Users\Wire\Downloads\CCleaner - CHIP-Downloader.exe
2014-03-25 19:31 - 2014-01-20 08:48 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\DVDVideoSoft
2014-03-25 17:52 - 2014-02-13 19:08 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\uTorrent
2014-03-25 17:51 - 2014-03-25 17:40 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\DAEMON Tools Lite
2014-03-25 17:43 - 2014-03-25 17:39 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-03-25 14:20 - 2014-03-25 14:19 - 01614416 _____ (BitTorrent Inc.) C:\Users\Wire\Downloads\uTorrent_34_30660.exe
2014-03-24 20:58 - 2009-07-14 07:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-24 00:29 - 2014-03-24 00:29 - 00000000 _____ () C:\Users\Wire\Sti_Trace.log
2014-03-24 00:29 - 2014-01-07 10:37 - 00000000 ____D () C:\Users\Wire
2014-03-23 22:23 - 2014-03-23 22:23 - 00002140 _____ () C:\Users\Public\Desktop\Brother Creative Center.lnk
2014-03-23 22:23 - 2014-03-23 22:23 - 00000050 _____ () C:\Windows\system32\BRIDF10A.DAT
2014-03-23 22:22 - 2014-03-23 22:22 - 00000000 ____D () C:\Program Files (x86)\Browny02
2014-03-23 22:22 - 2014-03-23 22:22 - 00000000 ____D () C:\Program Files (x86)\Brother
2014-03-23 22:22 - 2014-01-07 10:39 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-03-23 22:21 - 2014-03-23 22:21 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\InstallShield
2014-03-23 22:21 - 2014-03-23 22:21 - 00000000 ____D () C:\ProgramData\Brother
2014-03-23 22:20 - 2014-03-23 22:20 - 00000000 ____D () C:\Users\Wire\Downloads\install
2014-03-23 21:43 - 2014-03-23 21:42 - 119661016 _____ (A.I.SOFT,INC.) C:\Users\Wire\Downloads\dcp-j125-inst-B1-cd1.EXE

Some content of TEMP:
====================
C:\Users\Wire\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp39elxf.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
         
--- --- ---

--- --- ---

--- --- ---


Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-04-21 00:16:53
Windows 6.1.7600  x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HD103SJ rev.1AJ10001 931,51GB
Running: ppcqt001.exe; Driver: C:\Users\Stephan\AppData\Local\Temp\fwdirfoc.sys


---- User code sections - GMER 2.1 ----

.text    C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1620] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter                                                                                                        000000007685d03c 4 bytes [C2, 04, 00, 00]
.text    C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1620] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                             0000000076481465 2 bytes [48, 76]
.text    C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[1620] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                            00000000764814bb 2 bytes [48, 76]
.text    ...                                                                                                                                                                                                                              * 2
.text    C:\Program Files (x86)\RocketDock\RocketDock.exe[2732] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                   0000000076481465 2 bytes [48, 76]
.text    C:\Program Files (x86)\RocketDock\RocketDock.exe[2732] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                  00000000764814bb 2 bytes [48, 76]
.text    ...                                                                                                                                                                                                                              * 2
.text    C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe[1348] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 69                                                                                                              0000000076481465 2 bytes [48, 76]
.text    C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe[1348] C:\Windows\syswow64\Psapi.dll!GetModuleInformation + 155                                                                                                             00000000764814bb 2 bytes [48, 76]
.text    ...                                                                                                                                                                                                                              * 2
.text    C:\Program Files (x86)\Google\Drive\googledrivesync.exe[4056] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                            0000000076481465 2 bytes [48, 76]
.text    C:\Program Files (x86)\Google\Drive\googledrivesync.exe[4056] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                           00000000764814bb 2 bytes [48, 76]
.text    ...                                                                                                                                                                                                                              * 2
---- Processes - GMER 2.1 ----

Library  C:\Users\Wire\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll (*** suspicious ***) @ C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe [1348](2013-12-18 02:25:54)                                                              0000000003d60000
Library  c:\users\wire\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp39elxf.dll (*** suspicious ***) @ C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe [1348](2014-04-20 22:02:21)                0000000002480000
Library  C:\Users\Wire\AppData\Roaming\Dropbox\bin\libcef.dll (*** suspicious ***) @ C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe [1348](2013-10-18 23:55:02)                                                                    0000000067320000
Library  C:\Users\Wire\AppData\Roaming\Dropbox\bin\icudt.dll (*** suspicious ***) @ C:\Users\Wire\AppData\Roaming\Dropbox\bin\Dropbox.exe [1348] (ICU Data DLL/The ICU Project)(2013-10-18 23:55:00)                                      0000000066990000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\python27.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (Python Core/Python Software Foundation)(2014-04-20 22:01:47)                      000000001e000000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32api.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                               000000001e8c0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\pywintypes27.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:47)                                                           000000001e7a0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\pythoncom27.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:43)                                                            0000000000370000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\_socket.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                                0000000000270000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\_ssl.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:47)                                                                   0000000002900000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32com.shell.shell.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:43)                                                   000000001e800000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\_hashlib.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:47)                                                               0000000002020000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._core_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:43)                                                              0000000003130000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wxbase294u_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (wxWidgets for MSW/wxWidgets development team)(2014-04-20 22:01:47)         0000000003260000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wxbase294u_net_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (wxWidgets for MSW/wxWidgets development team)(2014-04-20 22:01:48)     00000000002b0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wxmsw294u_core_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (wxWidgets for MSW/wxWidgets development team)(2014-04-20 22:01:48)     0000000003450000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wxmsw294u_adv_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (wxWidgets for MSW/wxWidgets development team)(2014-04-20 22:01:48)      00000000038f0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._gdi_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:47)                                                               0000000003b30000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._windows_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                           0000000003c00000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wxmsw294u_html_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (wxWidgets for MSW/wxWidgets development team)(2014-04-20 22:01:48)     0000000000490000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._controls_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:45)                                                          0000000004730000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._misc_.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:43)                                                              0000000004840000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\_elementtree.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                           000000001d100000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\pyexpat.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:45)                                                                0000000001ee0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\pysqlite2._sqlite.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                      0000000004510000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\_ctypes.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                                000000001d1a0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32file.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                              000000001ea10000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32security.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                          000000001ec80000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32event.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:45)                                                             000000001e9b0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32inet.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                              000000001eaa0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._wizard.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:42)                                                             0000000002870000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wx._html2.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                              00000000028a0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\wxmsw294u_webview_vc90.dll (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056] (wxWidgets for MSW/wxWidgets development team)(2014-04-20 22:01:48)  0000000002a30000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\_multiprocessing.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:47)                                                       0000000003cd0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\select.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:45)                                                                 0000000003ce0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32pipe.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                              000000001eb90000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\unicodedata.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:45)                                                            0000000005ba0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32pdh.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                               000000001eb60000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32crypt.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:43)                                                             000000001e980000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32process.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:46)                                                           000000001ebf0000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32profile.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:44)                                                           000000001ec20000
Library  C:\Users\Wire\AppData\Local\Temp\_MEI29322\win32ts.pyd (*** suspicious ***) @ C:\Program Files (x86)\Google\Drive\googledrivesync.exe [4056](2014-04-20 22:01:43)                                                                000000001ed40000

---- EOF - GMER 2.1 ----
         
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 00:03 on 21/04/2014 (Stephan)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
__________________

Alt 24.04.2014, 11:13   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Unsere Tools brauchen immer Adminrechte.


Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 26.04.2014, 10:47   #5
WireAngel
 
Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Code:
ATTFilter
ComboFix 14-04-20.01 - Stephan 26.04.2014  11:38:07.2.6 - x64
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.49.1031.18.8173.5706 [GMT 2:00]
ausgeführt von:: c:\users\Wire\Desktop\ComboFix.exe
AV: ESET Smart Security 7.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Personal Firewall *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 7.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
- REDUZIERTER FUNKTIONALITÄTSMODUS -
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-03-26 bis 2014-04-26  ))))))))))))))))))))))))))))))
.
.
2014-04-26 09:38 . 2014-04-26 09:38	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2014-04-26 09:38 . 2014-04-26 09:38	--------	d-----w-	c:\users\UpdatusUser.Stephan-PC\AppData\Local\temp
2014-04-26 09:38 . 2014-04-26 09:38	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-04-25 12:42 . 2014-04-17 03:31	10651704	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{9D7E427C-D116-4687-A31A-CB038502727B}\mpengine.dll
2014-04-24 19:12 . 2014-04-24 19:12	--------	d-----w-	c:\program files (x86)\BlueStacks
2014-04-24 19:12 . 2014-04-24 19:12	--------	d-----w-	c:\programdata\BlueStacks
2014-04-24 19:11 . 2014-04-24 19:11	--------	d-----w-	c:\users\Stephan\AppData\Local\Bluestacks
2014-04-24 19:11 . 2014-04-24 19:11	--------	d-----w-	c:\users\Wire\AppData\Local\Bluestacks
2014-04-22 10:24 . 2014-04-26 09:21	--------	d-----w-	c:\users\Wire\AppData\Roaming\Skype
2014-04-21 11:09 . 2014-04-21 11:09	--------	d-----w-	c:\users\Stephan\AppData\Roaming\Curse Advertising
2014-04-21 11:04 . 2014-04-21 13:20	--------	d-----w-	c:\users\Stephan\AppData\Roaming\Curse Client
2014-04-21 11:00 . 2014-04-21 11:00	--------	d-----w-	c:\users\Wire\AppData\Roaming\Curse Advertising
2014-04-21 10:59 . 2014-04-21 11:04	--------	d-----w-	c:\users\Wire\AppData\Roaming\Curse Client
2014-04-21 10:58 . 2014-04-21 10:58	--------	d-----w-	c:\users\Wire\AppData\Roaming\Curse
2014-04-20 22:33 . 2014-04-20 22:33	--------	d-----w-	c:\users\Stephan\AppData\Local\Skype
2014-04-20 22:33 . 2014-04-26 03:01	--------	d-----w-	c:\users\Stephan\AppData\Roaming\Skype
2014-04-20 21:54 . 2014-04-20 22:06	--------	d-----w-	C:\FRST
2014-04-07 18:02 . 2014-04-07 18:02	--------	d-----w-	c:\program files (x86)\Microsoft XNA
2014-03-27 16:14 . 2014-03-27 16:14	--------	d-----w-	c:\program files (x86)\ClocX
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-10 11:13 . 2014-01-07 09:51	90655440	----a-w-	c:\windows\system32\MRT.exe
2014-03-31 07:35 . 2014-01-07 09:17	270496	------w-	c:\windows\system32\MpSigStub.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RoccatKoneXTD"="c:\program files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE" [2013-10-25 552960]
"RoccatIskuFX"="c:\program files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe" [2013-10-30 540672]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2014-04-13 819984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BrYNSvc;BrYNSvc;c:\program files (x86)\Browny02\BrYNSvc.exe;c:\program files (x86)\Browny02\BrYNSvc.exe [x]
R3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
R3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 SaiK0CD7;SaiK0CD7;c:\windows\system32\DRIVERS\SaiK0CD7.sys;c:\windows\SYSNATIVE\DRIVERS\SaiK0CD7.sys [x]
R3 SaiU0CD7;SaiU0CD7;c:\windows\system32\DRIVERS\SaiU0CD7.sys;c:\windows\SYSNATIVE\DRIVERS\SaiU0CD7.sys [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Webcam C270(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-10 11:21	1077576	----a-w-	c:\program files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-04-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-07 16:55]
.
2014-04-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-07 16:55]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Wire\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-11-14 1064224]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2013-09-12 5618456]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - 
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}]
@DACL=(02 0000)
@="Dropbox Autoplay COM Server"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-04-26  11:40:23
ComboFix-quarantined-files.txt  2014-04-26 09:40
ComboFix2.txt  2014-04-26 09:29
.
Vor Suchlauf: 11 Verzeichnis(se), 49.537.843.200 Bytes frei
Nach Suchlauf: 12 Verzeichnis(se), 49.482.559.488 Bytes frei
.
- - End Of File - - E3349ECCC8921013C6CB649677096402
A36C5E4F47E84449FF07ED3517B43A31
         


Alt 26.04.2014, 18:30   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Combofix löschen und neu laden, und nochmal laufen lassen bitte.
__________________
--> Windows 7: Extreme Geschwindigkeitsprobleme

Alt 28.04.2014, 18:15   #7
WireAngel
 
Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Code:
ATTFilter
ComboFix 14-04-26.01 - Stephan 28.04.2014  11:14:33.3.6 - x64
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.49.1031.18.8173.5758 [GMT 2:00]
ausgeführt von:: c:\users\Wire\Downloads\ComboFix.exe
AV: ESET Smart Security 7.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Personal Firewall *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 7.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-03-28 bis 2014-04-28  ))))))))))))))))))))))))))))))
.
.
2014-04-28 09:19 . 2014-04-28 09:19	--------	d-----w-	c:\users\UpdatusUser\AppData\Local\temp
2014-04-28 09:19 . 2014-04-28 09:19	--------	d-----w-	c:\users\UpdatusUser.Stephan-PC\AppData\Local\temp
2014-04-28 09:19 . 2014-04-28 09:19	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-04-28 09:19 . 2014-04-28 09:19	--------	d-----w-	c:\users\Stephan\AppData\Local\temp
2014-04-25 12:42 . 2014-04-17 03:31	10651704	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{9D7E427C-D116-4687-A31A-CB038502727B}\mpengine.dll
2014-04-24 19:12 . 2014-04-24 19:12	--------	d-----w-	c:\program files (x86)\BlueStacks
2014-04-24 19:12 . 2014-04-24 19:12	--------	d-----w-	c:\programdata\BlueStacks
2014-04-24 19:11 . 2014-04-24 19:11	--------	d-----w-	c:\users\Stephan\AppData\Local\Bluestacks
2014-04-24 19:11 . 2014-04-24 19:11	--------	d-----w-	c:\users\Wire\AppData\Local\Bluestacks
2014-04-22 10:24 . 2014-04-26 09:21	--------	d-----w-	c:\users\Wire\AppData\Roaming\Skype
2014-04-21 11:09 . 2014-04-21 11:09	--------	d-----w-	c:\users\Stephan\AppData\Roaming\Curse Advertising
2014-04-21 11:04 . 2014-04-21 13:20	--------	d-----w-	c:\users\Stephan\AppData\Roaming\Curse Client
2014-04-21 11:00 . 2014-04-21 11:00	--------	d-----w-	c:\users\Wire\AppData\Roaming\Curse Advertising
2014-04-21 10:59 . 2014-04-21 11:04	--------	d-----w-	c:\users\Wire\AppData\Roaming\Curse Client
2014-04-21 10:58 . 2014-04-21 10:58	--------	d-----w-	c:\users\Wire\AppData\Roaming\Curse
2014-04-20 22:33 . 2014-04-20 22:33	--------	d-----w-	c:\users\Stephan\AppData\Local\Skype
2014-04-20 22:33 . 2014-04-28 02:51	--------	d-----w-	c:\users\Stephan\AppData\Roaming\Skype
2014-04-20 21:54 . 2014-04-20 22:06	--------	d-----w-	C:\FRST
2014-04-07 18:02 . 2014-04-07 18:02	--------	d-----w-	c:\program files (x86)\Microsoft XNA
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-10 11:13 . 2014-01-07 09:51	90655440	----a-w-	c:\windows\system32\MRT.exe
2014-03-31 07:35 . 2014-01-07 09:17	270496	------w-	c:\windows\system32\MpSigStub.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RoccatKoneXTD"="c:\program files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE" [2013-10-25 552960]
"RoccatIskuFX"="c:\program files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe" [2013-10-30 540672]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2014-04-13 819984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BrYNSvc;BrYNSvc;c:\program files (x86)\Browny02\BrYNSvc.exe;c:\program files (x86)\Browny02\BrYNSvc.exe [x]
R3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
R3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 SaiK0CD7;SaiK0CD7;c:\windows\system32\DRIVERS\SaiK0CD7.sys;c:\windows\SYSNATIVE\DRIVERS\SaiK0CD7.sys [x]
R3 SaiU0CD7;SaiU0CD7;c:\windows\system32\DRIVERS\SaiU0CD7.sys;c:\windows\SYSNATIVE\DRIVERS\SaiU0CD7.sys [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
S3 LVUVC64;Logitech HD Webcam C270(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-27 17:20	1078088	----a-w-	c:\program files (x86)\Google\Chrome\Application\34.0.1847.131\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-04-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-07 16:55]
.
2014-04-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-01-07 16:55]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54	164016	----a-w-	c:\users\Wire\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-01-30 14:05	777032	----a-w-	c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-11-14 1064224]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2013-09-12 5618456]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - 
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID]
@DACL=(02 0000)
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}]
@DACL=(02 0000)
@="Dropbox Autoplay COM Server"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_USERS\S-1-5-21-3540725014-2610926065-471326441-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
@DACL=(02 0000)
@="DropboxExt"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
   00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2014-04-28  11:21:06
ComboFix-quarantined-files.txt  2014-04-28 09:21
ComboFix2.txt  2014-04-26 09:40
ComboFix3.txt  2014-04-26 09:29
.
Vor Suchlauf: 11 Verzeichnis(se), 50.460.475.392 Bytes frei
Nach Suchlauf: 12 Verzeichnis(se), 50.253.127.680 Bytes frei
.
- - End Of File - - 4B538D2A4354BEAE0D833AF7BD9F6869
A36C5E4F47E84449FF07ED3517B43A31
         

Alt 29.04.2014, 17:11   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 04.05.2014, 09:28   #9
WireAngel
 
Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme



Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 04.05.2014
Suchlauf-Zeit: 09:46:05
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.1.1004
Malware Datenbank: v2014.05.04.03
Rootkit Datenbank: v2014.03.27.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Chameleon: Deaktiviert

Betriebssystem: Windows 7
CPU: x64
Dateisystem: NTFS
Benutzer: Stephan

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 343763
Verstrichene Zeit: 13 Min, 25 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Shuriken: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)
         
Code:
ATTFilter
# AdwCleaner v3.205 - Bericht erstellt am 04/05/2014 um 10:00:47
# Aktualisiert 28/04/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium  (64 bits)
# Benutzername : Stephan - STEPHAN-PC
# Gestartet von : C:\Users\Wire\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Windows\SysWOW64\AI_RecycleBin

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\OCS

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16526


-\\ Google Chrome v34.0.1847.131

[ Datei : C:\Users\Stephan\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ Datei : C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1012 octets] - [04/05/2014 09:58:43]
AdwCleaner[S0].txt - [891 octets] - [04/05/2014 10:00:47]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [950 octets] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Stephan on 04.05.2014 at 10:09:36,34
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04.05.2014 at 10:16:17,14
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-05-2014
Ran by Wire (ATTENTION: The logged in user is not administrator) on STEPHAN-PC on 04-05-2014 10:26:35
Running from C:\Users\Wire\Desktop\FRST-OlderVersion
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Spotify Ltd) C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
() C:\Program Files (x86)\puush\puush.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Spotify Ltd) C:\Users\Wire\AppData\Roaming\Spotify\spotify.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
() C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap64.dll [1064224 2013-11-14] (NVIDIA Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5618456 2013-09-12] (ESET)
HKLM-x32\...\Run: [RoccatKoneXTD] => C:\Program Files (x86)\ROCCAT\Kone XTD Mouse\KoneXTDMonitor.EXE [552960 2013-10-25] (ROCCAT GmbH)
HKLM-x32\...\Run: [RoccatIskuFX] => C:\Program Files (x86)\ROCCAT\Isku FX Keyboard\IskuFXMonitor.exe [540672 2013-10-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [819984 2014-04-13] (BlueStack Systems, Inc.)
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [Spotify Web Helper] => C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-11] (Spotify Ltd)
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [567880 2014-02-10] ()
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21822128 2014-01-30] (Google)
HKU\S-1-5-21-3540725014-2610926065-471326441-1001\...\Run: [Spotify] => C:\Users\Wire\AppData\Roaming\Spotify\spotify.exe [6087224 2014-04-11] (Spotify Ltd)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Wire\AppData\Roaming\Mozilla\Firefox\Profiles\v4ayw7l7.default
FF Homepage: hxxp://www.tumblr.com/dashboard
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll ()
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DownloadHelper - C:\Users\Wire\AppData\Roaming\Mozilla\Firefox\Profiles\v4ayw7l7.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-04-25]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-07]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2014-01-07]

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/"
CHR Extension: (Magic Actions for YouTube™) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2014-01-07]
CHR Extension: (Plants vs. Zombies 2) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahpiajokkfhfkfhfofichlpedgafkmia [2014-04-24]
CHR Extension: (Google Docs) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-07]
CHR Extension: (Google Drive) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-07]
CHR Extension: (zzllrr RSS Reader) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\aphanomkkjgledipighdfjnilhfenpam [2014-01-07]
CHR Extension: (YouTube) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-07]
CHR Extension: (Google-Suche) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-07]
CHR Extension: (Regentropfen(Non-Aero)) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpagcfbbmlebfnkeogkigellbgmfkjfg [2014-01-07]
CHR Extension: (Stylish) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjnbnpbmkenffdnngjfgmeleoegfcffe [2014-01-07]
CHR Extension: (AdBlock) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-07]
CHR Extension: (TweetDeck by Twitter) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2014-01-07]
CHR Extension: (Full Web Tetris) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieicmdpibfnjbmjolkmohnelljmjomoj [2014-01-07]
CHR Extension: (Google Wallet) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-07]
CHR Extension: (Hover Zoom) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2014-01-07]
CHR Extension: (Google Mail) - C:\Users\Wire\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-07]

==================== Services (Whitelisted) =================

R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-04-13] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-04-13] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [770832 2014-04-13] (BlueStack Systems, Inc.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1337752 2013-09-12] (ESET)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-14] (NVIDIA Corporation)

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [121616 2014-04-13] (BlueStack Systems)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [220232 2013-09-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44120 2013-09-17] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62136 2013-09-17] (ESET)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-11-14] (NVIDIA Corporation)
S3 SaiK0CD7; C:\Windows\System32\DRIVERS\SaiK0CD7.sys [180544 2012-09-20] (Saitek)
S3 SaiU0CD7; C:\Windows\System32\DRIVERS\SaiU0CD7.sys [47168 2012-09-20] (Saitek)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-04 10:20 - 2014-05-04 10:26 - 00000000 ____D () C:\Users\Wire\Desktop\FRST-OlderVersion
2014-05-04 10:16 - 2014-05-04 10:16 - 00000627 _____ () C:\Users\Stephan\Desktop\JRT.txt
2014-05-04 10:09 - 2014-05-04 10:09 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 10:00 - 2014-05-04 10:02 - 00001027 _____ () C:\Users\Wire\Desktop\AdwCleaner[S0].txt
2014-05-04 09:59 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-04 09:58 - 2014-05-04 10:08 - 00000000 ____D () C:\AdwCleaner
2014-05-04 09:56 - 2014-05-04 09:56 - 00001134 _____ () C:\Users\Wire\Desktop\mbam.txt
2014-05-04 09:30 - 2014-05-04 09:31 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-04 09:30 - 2014-05-04 09:30 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-04 09:30 - 2014-05-04 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-04 09:30 - 2014-05-04 09:30 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-04 09:30 - 2014-05-04 09:30 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-04 09:30 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-04 09:30 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-04 09:30 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-03 21:32 - 2014-05-03 21:32 - 00396367 _____ () C:\Users\Wire\Downloads\natural_nidalee.zip
2014-05-03 21:32 - 2014-05-03 21:32 - 00092140 _____ () C:\Users\Wire\Downloads\Ashe topless skin.rar
2014-05-03 21:31 - 2014-05-03 21:32 - 01860741 _____ () C:\Users\Wire\Downloads\DATA.zip
2014-05-03 21:31 - 2014-05-03 21:31 - 01551408 _____ () C:\Users\Wire\Downloads\Riven_Bunny_100%_Topless.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 01381272 _____ () C:\Users\Wire\Downloads\Fiora_100.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 00524782 _____ () C:\Users\Wire\Downloads\Leblanc_winterbell_bigboobs50_Topless.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 00410584 _____ () C:\Users\Wire\Downloads\Succubus Leblanc.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 00215098 _____ () C:\Users\Wire\Downloads\Janna_100breast_Topless.rar
2014-05-03 17:37 - 2014-05-03 17:37 - 00076841 _____ () C:\Users\Stephan\Documents\ts3_clientui-win64-1394624943-2014-05-03 17_37_40.971437.dmp
2014-05-03 13:42 - 2014-05-03 13:42 - 01310621 _____ () C:\Users\Wire\Desktop\adwcleaner.exe
2014-05-03 13:42 - 2014-05-03 13:42 - 01016261 _____ (Thisisu) C:\Users\Wire\Desktop\JRT.exe
2014-05-03 13:41 - 2014-05-03 13:41 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Wire\Downloads\mbam-setup-2.0.1.1004 (1).exe
2014-05-03 13:40 - 2014-05-03 13:41 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Wire\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-02 16:08 - 2014-05-02 16:09 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-05-02 16:08 - 2014-05-02 16:08 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-05-02 16:08 - 2014-05-02 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-05-02 16:08 - 2010-03-27 19:14 - 00000000 ____D () C:\Users\Wire\Desktop\Virtual Audio Cable 4.10 (Full)
2014-05-02 04:52 - 2014-05-02 04:52 - 00380841 _____ () C:\Users\Wire\Desktop\Virtual Audio Cable 4.10 (Full).rar
2014-04-30 06:33 - 2014-04-30 06:33 - 01711429 _____ () C:\Users\Wire\Desktop\Wild West - 1st Wave.ogg
2014-04-30 06:33 - 2014-04-30 06:33 - 00000000 ____D () C:\Users\Wire\Downloads\BRSTM Converter 3.4.1
2014-04-30 06:30 - 2014-04-30 06:32 - 06328300 _____ () C:\Users\Wire\Downloads\BRSTM Converter 3.4.1.zip
2014-04-30 06:28 - 2014-04-30 06:28 - 03741152 _____ () C:\Users\Wire\Downloads\Wild West - 1st Wave.brstm
2014-04-28 11:21 - 2014-04-28 11:21 - 00012363 _____ () C:\ComboFix.txt
2014-04-28 11:13 - 2014-04-28 11:21 - 00000000 ____D () C:\ComboFix
2014-04-28 11:11 - 2014-04-28 11:11 - 00001105 _____ () C:\Users\Wire\Desktop\ComboFix - Verknüpfung.lnk
2014-04-27 15:23 - 2014-04-27 15:23 - 05196309 ____R (Swearware) C:\Users\Wire\Downloads\ComboFix.exe
2014-04-26 11:24 - 2014-04-28 11:21 - 00000000 ____D () C:\Qoobox
2014-04-26 11:24 - 2014-04-26 11:28 - 00000000 ____D () C:\Windows\erdnt
2014-04-26 11:24 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-26 11:24 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-26 11:24 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-26 11:24 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-26 11:24 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-26 11:24 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-26 11:24 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-26 11:24 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-24 21:13 - 2014-04-24 21:13 - 00001807 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-04-24 21:13 - 2014-04-24 21:13 - 00001780 _____ () C:\Users\Public\Desktop\Apps.lnk
2014-04-24 21:12 - 2014-04-24 21:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2014-04-24 21:12 - 2014-04-24 21:12 - 00000000 ____D () C:\ProgramData\BlueStacks
2014-04-24 21:12 - 2014-04-24 21:12 - 00000000 ____D () C:\Program Files (x86)\BlueStacks
2014-04-24 21:11 - 2014-04-24 21:18 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-04-24 21:11 - 2014-04-24 21:11 - 00000000 ____D () C:\Users\Wire\AppData\Local\Bluestacks
2014-04-24 21:11 - 2014-04-24 21:11 - 00000000 ____D () C:\Users\Stephan\AppData\Local\Bluestacks
2014-04-24 21:10 - 2014-04-24 21:10 - 10486864 _____ (BlueStack Systems Inc.) C:\Users\Wire\Downloads\BlueStacks-SplitInstaller_native.exe
2014-04-23 12:58 - 2014-04-24 13:45 - 00000100 _____ () C:\Users\Wire\Documents\PC.txt
2014-04-22 13:23 - 2014-04-22 13:23 - 00000123 _____ () C:\Users\Wire\Documents\Mathe.txt
2014-04-22 13:17 - 2014-04-27 15:21 - 00001218 _____ () C:\Users\Wire\Documents\Physik.txt
2014-04-22 12:24 - 2014-05-02 22:32 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Skype
2014-04-22 01:25 - 2014-04-22 01:26 - 57316684 _____ () C:\Users\Wire\Downloads\[Official Video] Daft Punk - Pentatonix.mp4
2014-04-21 13:09 - 2014-04-21 13:09 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\Curse Advertising
2014-04-21 13:04 - 2014-04-21 15:20 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\Curse Client
2014-04-21 13:00 - 2014-04-21 13:00 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Curse Advertising
2014-04-21 12:59 - 2014-04-21 13:04 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Curse Client
2014-04-21 12:59 - 2014-04-21 12:59 - 00000991 _____ () C:\Users\Wire\Desktop\Curse.lnk
2014-04-21 12:59 - 2014-04-21 12:59 - 00000977 _____ () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2014-04-21 12:58 - 2014-04-21 12:58 - 37404936 _____ (Curse) C:\Users\Wire\Downloads\CurseClientSetup.exe
2014-04-21 12:58 - 2014-04-21 12:58 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Curse
2014-04-21 00:33 - 2014-05-04 09:58 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\Skype
2014-04-21 00:33 - 2014-04-21 00:33 - 00000000 ____D () C:\Users\Stephan\AppData\Local\Skype
2014-04-21 00:16 - 2014-04-21 00:16 - 00014347 _____ () C:\Users\Wire\Desktop\Gmer.txt
2014-04-21 00:06 - 2014-04-21 00:06 - 00019907 _____ () C:\Users\Wire\Desktop\Addition.txt
2014-04-21 00:03 - 2014-05-04 10:22 - 00033688 _____ () C:\Users\Wire\Desktop\FRST.txt
2014-04-20 23:54 - 2014-05-04 10:26 - 00000000 ____D () C:\FRST
2014-04-20 23:53 - 2014-04-20 23:53 - 00000000 _____ () C:\Users\Stephan\defogger_reenable
2014-04-20 23:52 - 2014-04-21 00:03 - 00000476 _____ () C:\Users\Wire\Desktop\defogger_disable.log
2014-04-20 23:51 - 2014-04-20 23:51 - 00000476 _____ () C:\Users\Wire\Downloads\defogger_disable.log
2014-04-20 23:51 - 2014-04-20 23:51 - 00000248 _____ () C:\Users\Wire\Downloads\defogger_enable.log
2014-04-20 23:49 - 2014-05-04 10:20 - 02062336 _____ (Farbar) C:\Users\Wire\Desktop\FRST64.exe
2014-04-20 23:49 - 2014-04-20 23:49 - 00050477 _____ () C:\Users\Wire\Desktop\Defogger.exe
2014-04-20 23:48 - 2014-04-20 23:48 - 00380416 _____ () C:\Users\Wire\Desktop\ppcqt001.exe
2014-04-09 15:34 - 2014-04-09 15:35 - 00018549 _____ () C:\Windows\DirectX.log
2014-04-08 17:48 - 2014-04-08 17:48 - 00000000 ____D () C:\Users\Wire\Documents\My Games
2014-04-08 17:43 - 2014-04-08 17:43 - 00002126 _____ () C:\Users\Wire\AppData\Local\recently-used.xbel
2014-04-08 16:42 - 2014-04-08 16:42 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-08 16:41 - 2014-04-08 16:42 - 00000202 _____ () C:\Users\Wire\Desktop\South Park The Stick of Truth.url
2014-04-08 16:40 - 2014-04-08 16:40 - 00000046 _____ () C:\Users\Wire\Desktop\Steam.txt
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO.pbk
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO (1).pbk
2014-04-07 20:03 - 2014-04-07 20:46 - 00000000 ____D () C:\Users\Wire\Documents\MeridianSaves
2014-04-07 20:02 - 2014-04-07 20:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-04-05 19:36 - 2014-04-05 19:39 - 00000000 ____D () C:\Users\Wire\Desktop\GW2

==================== One Month Modified Files and Folders =======

2014-05-04 10:26 - 2014-05-04 10:20 - 00000000 ____D () C:\Users\Wire\Desktop\FRST-OlderVersion
2014-05-04 10:26 - 2014-04-20 23:54 - 00000000 ____D () C:\FRST
2014-05-04 10:25 - 2009-07-14 06:45 - 00013216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-04 10:25 - 2009-07-14 06:45 - 00013216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-04 10:23 - 2014-01-07 19:59 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Spotify
2014-05-04 10:22 - 2014-04-21 00:03 - 00033688 _____ () C:\Users\Wire\Desktop\FRST.txt
2014-05-04 10:21 - 2014-01-07 10:15 - 01253193 _____ () C:\Windows\WindowsUpdate.log
2014-05-04 10:20 - 2014-04-20 23:49 - 02062336 _____ (Farbar) C:\Users\Wire\Desktop\FRST64.exe
2014-05-04 10:19 - 2014-02-17 21:32 - 00000000 ___RD () C:\Users\Wire\Google Drive
2014-05-04 10:19 - 2014-01-07 18:56 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-04 10:19 - 2014-01-07 18:55 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-04 10:18 - 2014-03-26 15:13 - 00012035 _____ () C:\Windows\setupact.log
2014-05-04 10:18 - 2014-01-07 12:57 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-05-04 10:18 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-04 10:16 - 2014-05-04 10:16 - 00000627 _____ () C:\Users\Stephan\Desktop\JRT.txt
2014-05-04 10:09 - 2014-05-04 10:09 - 00000000 ____D () C:\Windows\ERUNT
2014-05-04 10:08 - 2014-05-04 09:58 - 00000000 ____D () C:\AdwCleaner
2014-05-04 10:04 - 2014-03-26 15:13 - 00003156 _____ () C:\Windows\PFRO.log
2014-05-04 10:02 - 2014-05-04 10:00 - 00001027 _____ () C:\Users\Wire\Desktop\AdwCleaner[S0].txt
2014-05-04 09:58 - 2014-04-21 00:33 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\Skype
2014-05-04 09:56 - 2014-05-04 09:56 - 00001134 _____ () C:\Users\Wire\Desktop\mbam.txt
2014-05-04 09:31 - 2014-05-04 09:30 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-04 09:30 - 2014-05-04 09:30 - 00001102 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-05-04 09:30 - 2014-05-04 09:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-04 09:30 - 2014-05-04 09:30 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-04 09:30 - 2014-05-04 09:30 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-05-03 21:32 - 2014-05-03 21:32 - 00396367 _____ () C:\Users\Wire\Downloads\natural_nidalee.zip
2014-05-03 21:32 - 2014-05-03 21:32 - 00092140 _____ () C:\Users\Wire\Downloads\Ashe topless skin.rar
2014-05-03 21:32 - 2014-05-03 21:31 - 01860741 _____ () C:\Users\Wire\Downloads\DATA.zip
2014-05-03 21:31 - 2014-05-03 21:31 - 01551408 _____ () C:\Users\Wire\Downloads\Riven_Bunny_100%_Topless.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 01381272 _____ () C:\Users\Wire\Downloads\Fiora_100.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 00524782 _____ () C:\Users\Wire\Downloads\Leblanc_winterbell_bigboobs50_Topless.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 00410584 _____ () C:\Users\Wire\Downloads\Succubus Leblanc.rar
2014-05-03 21:31 - 2014-05-03 21:31 - 00215098 _____ () C:\Users\Wire\Downloads\Janna_100breast_Topless.rar
2014-05-03 17:37 - 2014-05-03 17:37 - 00076841 _____ () C:\Users\Stephan\Documents\ts3_clientui-win64-1394624943-2014-05-03 17_37_40.971437.dmp
2014-05-03 17:37 - 2014-01-08 21:29 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\TS3Client
2014-05-03 17:37 - 2014-01-08 21:29 - 00000000 ____D () C:\Users\Wire\AppData\Local\TeamSpeak 3 Client
2014-05-03 17:37 - 2014-01-07 10:20 - 00000000 ____D () C:\Users\Stephan
2014-05-03 13:42 - 2014-05-03 13:42 - 01310621 _____ () C:\Users\Wire\Desktop\adwcleaner.exe
2014-05-03 13:42 - 2014-05-03 13:42 - 01016261 _____ (Thisisu) C:\Users\Wire\Desktop\JRT.exe
2014-05-03 13:41 - 2014-05-03 13:41 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Wire\Downloads\mbam-setup-2.0.1.1004 (1).exe
2014-05-03 13:41 - 2014-05-03 13:40 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Wire\Downloads\mbam-setup-2.0.1.1004.exe
2014-05-03 13:07 - 2014-03-09 00:16 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\vlc
2014-05-02 22:32 - 2014-04-22 12:24 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Skype
2014-05-02 16:14 - 2014-03-09 18:55 - 00000000 ____D () C:\Users\Stephan\AppData\Local\PMB Files
2014-05-02 16:09 - 2014-05-02 16:08 - 00000000 ____D () C:\Program Files\Virtual Audio Cable
2014-05-02 16:08 - 2014-05-02 16:08 - 00066728 _____ (Eugene V. Muzychenko) C:\Windows\system32\Drivers\vrtaucbl.sys
2014-05-02 16:08 - 2014-05-02 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Virtual Audio Cable
2014-05-02 04:52 - 2014-05-02 04:52 - 00380841 _____ () C:\Users\Wire\Desktop\Virtual Audio Cable 4.10 (Full).rar
2014-04-30 12:36 - 2014-01-07 13:43 - 00000000 ____D () C:\Users\UpdatusUser.Stephan-PC
2014-04-30 06:33 - 2014-04-30 06:33 - 01711429 _____ () C:\Users\Wire\Desktop\Wild West - 1st Wave.ogg
2014-04-30 06:33 - 2014-04-30 06:33 - 00000000 ____D () C:\Users\Wire\Downloads\BRSTM Converter 3.4.1
2014-04-30 06:32 - 2014-04-30 06:30 - 06328300 _____ () C:\Users\Wire\Downloads\BRSTM Converter 3.4.1.zip
2014-04-30 06:28 - 2014-04-30 06:28 - 03741152 _____ () C:\Users\Wire\Downloads\Wild West - 1st Wave.brstm
2014-04-28 11:22 - 2014-01-07 18:55 - 00000000 ____D () C:\Users\Stephan\AppData\Local\Google
2014-04-28 11:21 - 2014-04-28 11:21 - 00012363 _____ () C:\ComboFix.txt
2014-04-28 11:21 - 2014-04-28 11:13 - 00000000 ____D () C:\ComboFix
2014-04-28 11:21 - 2014-04-26 11:24 - 00000000 ____D () C:\Qoobox
2014-04-28 11:19 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-04-28 11:11 - 2014-04-28 11:11 - 00001105 _____ () C:\Users\Wire\Desktop\ComboFix - Verknüpfung.lnk
2014-04-28 11:04 - 2014-01-07 19:59 - 00000000 ____D () C:\Users\Wire\AppData\Local\Spotify
2014-04-27 15:23 - 2014-04-27 15:23 - 05196309 ____R (Swearware) C:\Users\Wire\Downloads\ComboFix.exe
2014-04-27 15:21 - 2014-04-22 13:17 - 00001218 _____ () C:\Users\Wire\Documents\Physik.txt
2014-04-26 11:41 - 2014-01-29 19:48 - 00000000 ___RD () C:\Users\Wire\Dropbox
2014-04-26 11:29 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-04-26 11:28 - 2014-04-26 11:24 - 00000000 ____D () C:\Windows\erdnt
2014-04-26 11:28 - 2014-01-07 10:38 - 00000000 ___RD () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-26 11:17 - 2014-01-29 19:44 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Dropbox
2014-04-26 11:14 - 2014-01-07 13:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-25 02:37 - 2014-01-29 19:45 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-04-24 21:18 - 2014-04-24 21:11 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-04-24 21:13 - 2014-04-24 21:13 - 00001807 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-04-24 21:13 - 2014-04-24 21:13 - 00001780 _____ () C:\Users\Public\Desktop\Apps.lnk
2014-04-24 21:13 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-04-24 21:12 - 2014-04-24 21:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2014-04-24 21:12 - 2014-04-24 21:12 - 00000000 ____D () C:\ProgramData\BlueStacks
2014-04-24 21:12 - 2014-04-24 21:12 - 00000000 ____D () C:\Program Files (x86)\BlueStacks
2014-04-24 21:11 - 2014-04-24 21:11 - 00000000 ____D () C:\Users\Wire\AppData\Local\Bluestacks
2014-04-24 21:11 - 2014-04-24 21:11 - 00000000 ____D () C:\Users\Stephan\AppData\Local\Bluestacks
2014-04-24 21:10 - 2014-04-24 21:10 - 10486864 _____ (BlueStack Systems Inc.) C:\Users\Wire\Downloads\BlueStacks-SplitInstaller_native.exe
2014-04-24 13:45 - 2014-04-23 12:58 - 00000100 _____ () C:\Users\Wire\Documents\PC.txt
2014-04-22 13:23 - 2014-04-22 13:23 - 00000123 _____ () C:\Users\Wire\Documents\Mathe.txt
2014-04-22 01:26 - 2014-04-22 01:25 - 57316684 _____ () C:\Users\Wire\Downloads\[Official Video] Daft Punk - Pentatonix.mp4
2014-04-22 00:58 - 2014-03-09 18:55 - 00000000 ____D () C:\ProgramData\PMB Files
2014-04-21 15:20 - 2014-04-21 13:04 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\Curse Client
2014-04-21 13:09 - 2014-04-21 13:09 - 00000000 ____D () C:\Users\Stephan\AppData\Roaming\Curse Advertising
2014-04-21 13:04 - 2014-04-21 12:59 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Curse Client
2014-04-21 13:00 - 2014-04-21 13:00 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Curse Advertising
2014-04-21 12:59 - 2014-04-21 12:59 - 00000991 _____ () C:\Users\Wire\Desktop\Curse.lnk
2014-04-21 12:59 - 2014-04-21 12:59 - 00000977 _____ () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Curse.lnk
2014-04-21 12:58 - 2014-04-21 12:58 - 37404936 _____ (Curse) C:\Users\Wire\Downloads\CurseClientSetup.exe
2014-04-21 12:58 - 2014-04-21 12:58 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Curse
2014-04-21 11:55 - 2014-01-07 13:55 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\s_o
2014-04-21 00:33 - 2014-04-21 00:33 - 00000000 ____D () C:\Users\Stephan\AppData\Local\Skype
2014-04-21 00:16 - 2014-04-21 00:16 - 00014347 _____ () C:\Users\Wire\Desktop\Gmer.txt
2014-04-21 00:06 - 2014-04-21 00:06 - 00019907 _____ () C:\Users\Wire\Desktop\Addition.txt
2014-04-21 00:03 - 2014-04-20 23:52 - 00000476 _____ () C:\Users\Wire\Desktop\defogger_disable.log
2014-04-20 23:53 - 2014-04-20 23:53 - 00000000 _____ () C:\Users\Stephan\defogger_reenable
2014-04-20 23:51 - 2014-04-20 23:51 - 00000476 _____ () C:\Users\Wire\Downloads\defogger_disable.log
2014-04-20 23:51 - 2014-04-20 23:51 - 00000248 _____ () C:\Users\Wire\Downloads\defogger_enable.log
2014-04-20 23:49 - 2014-04-20 23:49 - 00050477 _____ () C:\Users\Wire\Desktop\Defogger.exe
2014-04-20 23:48 - 2014-04-20 23:48 - 00380416 _____ () C:\Users\Wire\Desktop\ppcqt001.exe
2014-04-10 13:16 - 2014-01-07 11:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 13:13 - 2014-01-07 11:51 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 21:09 - 2014-02-14 20:24 - 00000000 ____D () C:\Users\Wire\AppData\Local\Battle.net
2014-04-09 15:35 - 2014-04-09 15:34 - 00018549 _____ () C:\Windows\DirectX.log
2014-04-08 17:48 - 2014-04-08 17:48 - 00000000 ____D () C:\Users\Wire\Documents\My Games
2014-04-08 17:43 - 2014-04-08 17:43 - 00002126 _____ () C:\Users\Wire\AppData\Local\recently-used.xbel
2014-04-08 17:43 - 2014-01-13 08:33 - 00000000 ____D () C:\Users\Wire\AppData\Local\gtk-2.0
2014-04-08 17:43 - 2014-01-09 01:10 - 00000000 ____D () C:\Users\Wire\.gimp-2.8
2014-04-08 16:42 - 2014-04-08 16:42 - 00000000 ____D () C:\Users\Wire\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-08 16:42 - 2014-04-08 16:41 - 00000202 _____ () C:\Users\Wire\Desktop\South Park The Stick of Truth.url
2014-04-08 16:40 - 2014-04-08 16:40 - 00000046 _____ () C:\Users\Wire\Desktop\Steam.txt
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO.pbk
2014-04-08 16:38 - 2014-04-08 16:38 - 00053717 _____ () C:\Users\Wire\Downloads\USAIPDEMO (1).pbk
2014-04-07 20:46 - 2014-04-07 20:03 - 00000000 ____D () C:\Users\Wire\Documents\MeridianSaves
2014-04-07 20:02 - 2014-04-07 20:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft XNA
2014-04-07 20:02 - 2014-01-07 13:40 - 01589442 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-04-07 20:02 - 2009-07-14 19:58 - 00696620 _____ () C:\Windows\system32\perfh007.dat
2014-04-07 20:02 - 2009-07-14 19:58 - 00147916 _____ () C:\Windows\system32\perfc007.dat
2014-04-07 20:02 - 2009-07-14 07:13 - 01589442 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-05 19:39 - 2014-04-05 19:36 - 00000000 ____D () C:\Users\Wire\Desktop\GW2

Some content of TEMP:
====================
C:\Users\Stephan\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-05-2014
Ran by Wire at 2014-05-04 10:26:57
Running from C:\Users\Wire\Desktop\FRST-OlderVersion
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: ESET Smart Security 7.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET Smart Security 7.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
FW: ESET Personal Firewall (Enabled) {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin 64-bit (HKLM\...\Adobe Flash Player Plugin) (Version: 11.1.102.63 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Any Video Converter 5.5.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.8.8006 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{689FD579-0642-4D3E-AB61-F63B79C5075A}) (Version: 0.8.8.8006 - BlueStack Systems, Inc.)
Brother MFL-Pro Suite DCP-J125 (HKLM-x32\...\{FB83EAC4-E3F6-4666-B45B-44522F2344B6}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
Castle Crashers (HKLM-x32\...\Steam App 204360) (Version:  - The Behemoth)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
ClocX (1.6.0) (HKLM-x32\...\ClocX) (Version:  - )
Clonk Rage (HKLM-x32\...\Clonk Rage) (Version:  - RedWolf Design GmbH)
Curse (HKLM-x32\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 6.0.0.0 - Curse)
Defense Grid: The Awakening (HKLM-x32\...\Steam App 18500) (Version:  - Hidden Path Entertainment)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.31 - Dropbox, Inc.)
ESET Smart Security (HKLM\...\{F5A3E880-A737-48F2-A124-6F5D4CEA6AB4}) (Version: 7.0.302.26 - ESET, spol s r. o.)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.115 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Drive (HKLM-x32\...\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}) (Version: 1.14.6059.644 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
GUILD WARS (HKLM-x32\...\Guild Wars) (Version:  - )
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hero Siege (HKLM-x32\...\Steam App 269210) (Version:  - Elias Viglione)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
LibreOffice 4.1.4.2 (HKLM-x32\...\{94E11973-ED58-47A0-907C-ABF6D95C5DD8}) (Version: 4.1.4.2 - The Document Foundation)
Logitech Gaming Software (Version: 8.45.88 - Logitech Inc.) Hidden
Logitech Gaming Software 8.51 (HKLM\...\Logitech Gaming Software) (Version: 8.51.5 - Logitech Inc.)
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Meridian: New World (HKLM-x32\...\Steam App 265120) (Version:  - Elder Games)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 de)) (Version: 24.2.0 - Mozilla)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
NVIDIA 3D Vision Controller-Treiber 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 331.82 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.82 - NVIDIA Corporation)
NVIDIA Grafiktreiber 331.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.82 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.140.952 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 331.82 (Version: 331.82 - NVIDIA Corporation) Hidden
NVIDIA Update 9.3.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 9.3.21 - NVIDIA Corporation)
NVIDIA Update Components (Version: 9.3.21 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.9 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.9 - NVIDIA Corporation)
osu! (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.49.927.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
ROCCAT Isku FX Keyboard Driver (HKLM-x32\...\{DC69933C-E7B0-455D-8E54-FAC1EEF046FF}) (Version:  - Roccat GmbH)
ROCCAT Kone XTD Mouse Driver (HKLM-x32\...\{7133137D-DF48-4522-AD88-13C82B7D0A63}) (Version:  - Roccat GmbH)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
Rossmann Fotowelt Software 4.13 (HKLM-x32\...\Rossmann Fotowelt Software) (Version: 4.13 - ORWO Net)
RPGツクール2000 ランタイムパッケージ (HKLM-x32\...\{33F7A957-A66D-45A1-BADF-6576083B14E2}) (Version:  - )
SHIELD Streaming (Version: 1.6.53 - NVIDIA Corporation) Hidden
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
South Park™: The Stick of Truth™ (HKLM-x32\...\Steam App 213670) (Version:  - Obsidian Entertainment)
Spotify (HKCU\...\Spotify) (Version: 0.9.8.296.g91f68827 - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Super Hexagon (HKLM-x32\...\Steam App 221640) (Version:  - Terry Cavanagh)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
The Binding of Isaac (HKLM-x32\...\Steam App 113200) (Version:  - Edmund McMillen and Florian Himsl)
The Mighty Quest For Epic Loot (HKLM-x32\...\Steam App 239220) (Version:  - Ubisoft Montreal)
Todoist (HKLM-x32\...\{B1B3C79A-FFD9-4B28-A456-62B6E55E2A5C}_is1) (Version: 2.6.4.0 - Doist Ltd.)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600217) (Version: 1 - Microsoft Corporation)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

Could not list Restore Points. Check "winmgmt" service or repair WMI.


==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?

==================== Loaded Modules (whitelisted) =============

2012-01-10 15:41 - 2014-02-10 20:10 - 00567880 _____ () C:\Program Files (x86)\puush\puush.exe
2014-02-16 16:46 - 2007-09-02 14:58 - 00495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2014-01-07 19:59 - 2014-04-11 11:42 - 00602680 _____ () C:\Users\Wire\AppData\Roaming\Spotify\Data\SpotifyHelper.exe

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: BrStsMon00 => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: Launch LCore => C:\Program Files\Logitech Gaming Software\LCore.exe /minimized
MSCONFIG\startupreg: uTorrent => "C:\Users\Wire\Downloads\uTorrent_34_30660.exe"  /MINIMIZED

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 35%
Total physical RAM: 8173.24 MB
Available physical RAM: 5300.73 MB
Total Pagefile: 16344.62 MB
Available Pagefile: 13041.6 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.56 GB) (Free:45.89 GB) NTFS
Drive d: (HDDRIVE2GO) (Fixed) (Total:931.28 GB) (Free:800.91 GB) FAT32
Drive e: (Games) (Fixed) (Total:833.85 GB) (Free:777.43 GB) NTFS
Drive f: (Programme) (Fixed) (Total:58.59 GB) (Free:58.5 GB) NTFS
Drive g: (Daten) (Fixed) (Total:407.07 GB) (Free:372.36 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================
         

Alt 04.05.2014, 11:00   #10
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7: Extreme Geschwindigkeitsprobleme - Standard

Windows 7: Extreme Geschwindigkeitsprobleme




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Windows 7: Extreme Geschwindigkeitsprobleme
beheben, brauch, computer, erneut, frage, geschieht, guten, hängt, länger, minute, minuten, neu, problem, probleme, schöne, schönen, sekunden, sobald, sound, spezielle, starte, versuche, wenige, windows, windows 7



Ähnliche Themen: Windows 7: Extreme Geschwindigkeitsprobleme


  1. Extreme Anzahl an Popups/Ads Windows 8
    Plagegeister aller Art und deren Bekämpfung - 03.06.2015 (10)
  2. Windows Explorer stürzt ab, extreme Leistungsprobleme!
    Log-Analyse und Auswertung - 15.04.2015 (3)
  3. Windows 7 extreme: Pc stürzt andauernd ab und laggt.
    Log-Analyse und Auswertung - 22.11.2014 (27)
  4. (Windows 7) Bluescreen, extreme Verlangsamung und kompletter "Stillstand"
    Plagegeister aller Art und deren Bekämpfung - 01.11.2013 (3)
  5. Bka Trojaner EXTREME pls help
    Log-Analyse und Auswertung - 21.08.2012 (2)
  6. Sprunghafte extreme CPU-Auslastung!
    Alles rund um Windows - 12.09.2011 (3)
  7. CMD.exe sorgt für extreme CPU Auslastung
    Log-Analyse und Auswertung - 28.01.2011 (8)
  8. Internet-Geschwindigkeitsprobleme
    Log-Analyse und Auswertung - 15.07.2009 (2)
  9. Soundkarte (X-Fi Extreme Music) fliegt plötzlich nach paar minuten immer ausm windows
    Netzwerk und Hardware - 01.06.2009 (0)
  10. Soundkarte (X-Fi Extreme Music) fliegt plötzlich nach paar minuten immer ausm windows
    Plagegeister aller Art und deren Bekämpfung - 01.06.2009 (28)
  11. Extreme PingProbleme
    Plagegeister aller Art und deren Bekämpfung - 01.01.2008 (0)
  12. Geschwindigkeitsprobleme: Malware??
    Log-Analyse und Auswertung - 10.04.2007 (11)
  13. Extreme Leistungsverlust
    Alles rund um Windows - 30.01.2007 (1)
  14. PCI Extreme?
    Netzwerk und Hardware - 14.09.2006 (1)
  15. Extreme Grafikprobleme
    Netzwerk und Hardware - 09.09.2006 (2)
  16. extreme Latenz Probleme
    Log-Analyse und Auswertung - 25.03.2006 (8)

Zum Thema Windows 7: Extreme Geschwindigkeitsprobleme - Schönen guten Abend, folgendes ist mein Problem: Sobald ich meinen Computer starte und mich einlogge braucht er etwa 10 Minuten, bis er flüssig läuft. Starte ich ihn jedoch neu bzw. - Windows 7: Extreme Geschwindigkeitsprobleme...
Archiv
Du betrachtest: Windows 7: Extreme Geschwindigkeitsprobleme auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.