| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Browser laufen extrem langsam!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
09.06.2013, 20:34
| #1 |
| |  Browser laufen extrem langsam! Hallo Leute! Seit einigen Taggen laufen meine Browser extrem langsam. Chrome sowohl auch der IE. Alles andere wie z.B. Outlook oder auch meine XBOX laufen normal. Ich habe mal mit OTL gescannt. Ich hoff ihr könnt mir helfen. Danke und bis dahin! Lg Marco Hier Das Ergibnis der OTL.txt: OTL logfile created on: 09.06.2013 21:03:27 - Run 2 OTL by OldTimer - Version 3.2.57.0 Folder = C:\Users\MAJU2903\Desktop Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16576) Locale: 00000c07 | Country: Österreich | Language: DEA | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 65,85% Memory free 6,00 Gb Paging File | 4,79 Gb Available in Paging File | 79,90% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 149,05 Gb Total Space | 24,49 Gb Free Space | 16,43% Space Free | Partition Type: NTFS Computer Name: MAJU2903-PC | User Name: MAJU2903 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Programme\Spybot - Search & Destroy 2\SDUpdSvc.exe (Safer-Networking Ltd.) PRC - C:\Programme\Spybot - Search & Destroy 2\SDFSSvc.exe (Safer-Networking Ltd.) PRC - C:\Programme\Spybot - Search & Destroy 2\SDWSCSvc.exe (Safer-Networking Ltd.) PRC - C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Programme\AVAST Software\Avast\AvastUI.exe (AVAST Software) PRC - C:\Programme\AVAST Software\Avast\AvastSvc.exe (AVAST Software) PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation) PRC - C:\Programme\Sony\VAIO Update\VAIOUpdt.exe (Sony Corporation) PRC - C:\Programme\Sony\VAIO Update\VUAgent.exe (Sony Corporation) PRC - C:\Users\MAJU2903\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Programme\Canon\IJPLM\ijplmsvc.exe () PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation) PRC - C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) ========== Modules (No Company Name) ========== ========== Win32 Services (SafeList) ========== SRV - (SDWSCService) -- C:\Program Files\Spybot File not found SRV - (SDUpdateService) -- C:\Program Files\Spybot File not found SRV - (SDScannerService) -- C:\Program Files\Spybot File not found SRV - (AdobeARMservice) -- C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (avast! Antivirus) -- C:\Programme\AVAST Software\Avast\AvastSvc.exe (AVAST Software) SRV - (MBAMService) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) SRV - (MBAMScheduler) -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) SRV - (VUAgent) -- C:\Programme\Sony\VAIO Update\VUAgent.exe (Sony Corporation) SRV - (IJPLMSVC) -- C:\Programme\Canon\IJPLM\ijplmsvc.exe () SRV - (WatAdminSvc) -- C:\Windows\System32\Wat\WatAdminSvc.exe (Microsoft Corporation) SRV - (odserv) -- C:\Programme\Common Files\microsoft shared\OFFICE12\ODSERV.EXE (Microsoft Corporation) SRV - (WMPNetworkSvc) -- C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation) SRV - (SwitchBoard) -- C:\Programme\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation) SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation) SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (Microsoft Office Groove Audit Service) -- C:\Programme\Microsoft Office\Office12\GrooveAuditService.exe (Microsoft Corporation) SRV - (ose) -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV - (aswSnx) -- C:\Windows\System32\drivers\aswSnx.sys (AVAST Software) DRV - (aswSP) -- C:\Windows\System32\drivers\aswSP.sys (AVAST Software) DRV - (aswVmm) -- C:\Windows\System32\drivers\aswVmm.sys () DRV - (aswRdr) -- C:\Windows\System32\drivers\aswRdr2.sys (AVAST Software) DRV - (aswTdi) -- C:\Windows\System32\drivers\aswTdi.sys (AVAST Software) DRV - (aswRvrt) -- C:\Windows\System32\drivers\aswRvrt.sys () DRV - (aswMonFlt) -- C:\Windows\System32\drivers\aswMonFlt.sys (AVAST Software) DRV - (aswFsBlk) -- C:\Windows\System32\drivers\aswFsBlk.sys (AVAST Software) DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation) DRV - (ssudmdm) -- C:\Windows\System32\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV - (dg_ssudbus) -- C:\Windows\System32\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr)) DRV - (RdpVideoMiniport) -- C:\Windows\System32\drivers\rdpvideominiport.sys (Microsoft Corporation) DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation) DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation) DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation) DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation) DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation) DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation) DRV - (huawei_enumerator) -- C:\Windows\System32\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.) DRV - (USB28xxOEM) -- C:\Windows\System32\drivers\emOEM.sys (eMPIA Technology, Inc.) DRV - (USB28xxBGA) -- C:\Windows\System32\drivers\emBDA.sys (eMPIA Technology, Inc.) DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.) DRV - (massfilter) -- C:\Windows\System32\drivers\massfilter.sys (MBB Incorporated) DRV - (BthAvrcp) -- C:\Windows\System32\drivers\BthAvrcp.sys (CSR, plc) DRV - (yukonw7) -- C:\Windows\System32\drivers\yk62x86.sys (Marvell) DRV - (netw5v32) -- C:\Windows\System32\drivers\netw5v32.sys (Intel Corporation) DRV - (FiltUSBET) -- C:\Windows\System32\drivers\etFilter.sys (eMPIA Technology Inc.) DRV - (DCamUSBET) -- C:\Windows\System32\drivers\etDevice.sys (eMPIA Technology, Inc.) DRV - (ScanUSBET) -- C:\Windows\System32\drivers\etScan.sys (eMPIA Technology, Inc.) DRV - (SFEP) -- C:\Windows\System32\drivers\SFEP.sys (Sony Corporation) DRV - (NETw4v32) -- C:\Windows\System32\drivers\NETw4v32.sys (Intel Corporation) DRV - (ApfiltrService) -- C:\Windows\System32\drivers\Apfiltr.sys (Alps Electric Co., Ltd.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-at IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 05 11 E0 35 14 01 CD 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = localhost:21320 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) [2013.03.01 08:51:12 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google  riginalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{go ogle:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParam eter} CHR - homepage: hxxp://www.delta-search.com/?affID=119828&babsrc=HP_ss&mntrId=28de45ed0000000000000013a9c336f6 CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\27.0.1453.110\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll O1 HOSTS File: ([2012.08.17 07:32:00 | 000,002,248 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com O1 - Hosts: 127.0.0.1 adobeereg.com O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O1 - Hosts: 127.0.0.1 ereg.adobe.com O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com O1 - Hosts: 127.0.0.1 wip3.adobe.com O1 - Hosts: 127.0.0.1 activate-sea.adobe.com O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com O1 - Hosts: 127.0.0.1 3dns.adobe.com O1 - Hosts: 127.0.0.1 3dns-1.adobe.com O1 - Hosts: 127.0.0.1 3dns-2.adobe.com O1 - Hosts: 127.0.0.1 3dns-3.adobe.com O1 - Hosts: 127.0.0.1 3dns-4.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-1.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-4.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-5.adobe.com O1 - Hosts: 127.0.0.1 hh-software.com O1 - Hosts: 26 more lines... O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Programme\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Programme\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programme\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No CLSID value found. O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.) O4 - HKLM..\Run: [ISBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe (Sony Corporation) O4 - HKLM..\Run: [SDTray] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.) O4 - HKCU..\Run: [AdobeBridge] File not found O4 - HKCU..\Run: [Session-Logger] C:\Programme\IntelligentShutdown\IntelligentShutdown.exe () O4 - HKCU..\Run: [Spybot-S&D Cleaning] C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe (Safer-Networking Ltd.) O4 - Startup: C:\Users\MAJU2903\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk = C:\Programme\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation) O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\MAJU2903\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Nach Microsoft E&xel exportieren - C:\Programme\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programme\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab (Java Plug-in 1.4.2) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7C285CFC-15B8-4300-B69C-D85134539EAA}: DhcpNameServer = 10.0.0.138 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9BDE9971-5247-4D59-9983-AA3F8D4DA393}: DhcpNameServer = 10.0.0.138 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programme\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (systempropertiesperformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.06.09 17:51:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2013.06.09 17:51:12 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2013.06.07 06:23:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy [2013.06.07 06:22:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2 [2013.06.07 06:22:11 | 000,015,224 | ---- | C] (Safer Networking Limited) -- C:\Windows\System32\sdnclean.exe [2013.06.07 06:21:28 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy 2 [2013.06.04 13:39:54 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\Anja [2013.06.04 13:34:41 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\2010 [2013.06.03 10:12:26 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\Fotobuch-Dateien [2013.06.03 09:32:52 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\AppData\Local\HappyFoto-Designer [2013.05.31 19:17:16 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\MARCO REINDL HANDY [2013.05.31 15:19:58 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJMIG [2013.05.27 18:50:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free MP4 to AVI Converter [2013.05.27 18:50:01 | 000,000,000 | ---D | C] -- C:\Program Files\pazera-software [2013.05.24 09:33:53 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\video [2013.05.23 04:07:26 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\(39) Facebook_files [2013.05.21 14:28:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XMedia Recode [2013.05.21 14:21:27 | 000,000,000 | ---D | C] -- C:\ProgramData\StaxRip [2013.05.21 05:38:37 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\Desktop\2013 [2013.05.19 08:57:54 | 000,000,000 | ---D | C] -- C:\Users\MAJU2903\AppData\Roaming\Canon [2013.05.19 08:57:50 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJQuickMenu [2013.05.19 08:57:38 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJEGV [2013.05.19 08:55:23 | 000,000,000 | ---D | C] -- C:\ProgramData\CanonIJPLM [2013.05.19 08:24:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series Benutzerregistrierung [2013.05.19 08:23:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\CANON [2013.05.19 08:23:36 | 000,000,000 | ---D | C] -- C:\ProgramData\CanonIJWSpt [2013.05.19 08:16:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities [2013.05.19 08:15:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series Manual [2013.05.19 08:14:21 | 000,000,000 | -H-D | C] -- C:\Windows\System32\CanonIJ Uninstaller Information [2013.05.19 08:14:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP230 series [2013.05.19 08:13:23 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ [2013.05.19 08:12:34 | 000,000,000 | ---D | C] -- C:\Program Files\Canon [2013.05.13 07:20:25 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll [2013.05.13 07:20:25 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2013.05.13 07:19:47 | 000,000,000 | ---D | C] -- C:\Intel ========== Files - Modified Within 30 Days ========== [2013.06.09 21:00:53 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013.06.09 21:00:53 | 000,017,168 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013.06.09 20:53:26 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.06.09 20:53:26 | 000,000,434 | ---- | M] () -- C:\Windows\tasks\Wise Auto Shutdown Task.job [2013.06.09 20:53:05 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.06.09 20:53:00 | 2414,682,112 | -HS- | M] () -- C:\hiberfil.sys [2013.06.09 20:31:04 | 000,001,102 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.06.09 18:05:18 | 000,696,870 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2013.06.09 18:05:18 | 000,652,148 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013.06.09 18:05:18 | 000,148,134 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2013.06.09 18:05:18 | 000,121,080 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013.06.09 17:51:39 | 000,001,071 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.06.09 17:51:18 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013.06.07 06:22:35 | 000,002,123 | ---- | M] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk [2013.06.05 10:47:51 | 001,661,714 | ---- | M] () -- C:\Users\MAJU2903\Documents\20130605_091238.jpg [2013.06.05 07:31:22 | 000,027,785 | ---- | M] () -- C:\Users\MAJU2903\Desktop\Fotobuch.pbf [2013.06.04 21:39:49 | 000,002,129 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.06.01 15:51:22 | 000,380,163 | ---- | M] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370095016640.jpg [2013.05.31 18:39:36 | 000,390,484 | ---- | M] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370018712305.jpg [2013.05.31 18:34:34 | 000,397,555 | ---- | M] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370017743933.jpg [2013.05.31 15:42:45 | 000,026,726 | ---- | M] () -- C:\Users\MAJU2903\Desktop\anzeige.jpg [2013.05.31 15:22:00 | 000,287,883 | ---- | M] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370003952977.jpg [2013.05.30 13:07:04 | 001,975,600 | ---- | M] () -- C:\Users\MAJU2903\Documents\20130527_140025.jpg [2013.05.28 19:54:16 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2013.05.27 18:50:05 | 000,001,233 | ---- | M] () -- C:\Users\Public\Desktop\Pazera Free MP4 to AVI Converter.lnk [2013.05.23 04:07:26 | 000,954,945 | ---- | M] () -- C:\Users\MAJU2903\Desktop\(39) Facebook.htm [2013.05.22 19:20:03 | 006,744,772 | ---- | M] () -- C:\Users\MAJU2903\Desktop\when love.psd [2013.05.19 08:23:43 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Canon Quick Menu.lnk [2013.05.19 08:15:43 | 000,002,302 | ---- | M] () -- C:\Users\Public\Desktop\Canon MP230 series Online-Handbuch.lnk [2013.05.16 03:31:16 | 003,933,968 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013.05.13 00:27:52 | 000,777,334 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 23.09.06.jpg [2013.05.13 00:27:47 | 000,718,840 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 23.09.11.jpg [2013.05.13 00:27:06 | 000,939,996 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.03.09.jpg [2013.05.13 00:27:02 | 000,818,027 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.01.01.jpg [2013.05.13 00:26:11 | 000,745,472 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.34.40.jpg [2013.05.13 00:25:55 | 000,774,144 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.34.20.jpg [2013.05.13 00:25:49 | 000,720,896 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.13.53.jpg [2013.05.13 00:25:45 | 000,827,392 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.03.29.jpg [2013.05.13 00:25:39 | 000,716,800 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.35.23.jpg [2013.05.13 00:25:24 | 000,688,128 | ---- | M] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.35.19.jpg [2013.05.11 19:04:18 | 081,806,230 | ---- | M] () -- C:\Users\MAJU2903\Documents\20130511_185651.mp4 ========== Files Created - No Company Name ========== [2013.06.09 17:51:18 | 000,000,969 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2013.06.07 06:22:35 | 000,002,135 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk [2013.06.07 06:22:35 | 000,002,123 | ---- | C] () -- C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk [2013.06.05 10:47:40 | 001,661,714 | ---- | C] () -- C:\Users\MAJU2903\Documents\20130605_091238.jpg [2013.06.03 10:12:53 | 000,027,785 | ---- | C] () -- C:\Users\MAJU2903\Desktop\Fotobuch.pbf [2013.06.01 15:51:20 | 000,380,163 | ---- | C] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370095016640.jpg [2013.05.31 18:39:33 | 000,390,484 | ---- | C] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370018712305.jpg [2013.05.31 18:34:32 | 000,397,555 | ---- | C] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370017743933.jpg [2013.05.31 15:43:15 | 000,026,726 | ---- | C] () -- C:\Users\MAJU2903\Desktop\anzeige.jpg [2013.05.31 15:18:50 | 000,287,883 | ---- | C] () -- C:\Users\MAJU2903\Documents\PhotoGrid_1370003952977.jpg [2013.05.30 13:06:52 | 001,975,600 | ---- | C] () -- C:\Users\MAJU2903\Documents\20130527_140025.jpg [2013.05.28 19:54:17 | 000,174,664 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys [2013.05.28 19:54:16 | 000,049,376 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys [2013.05.27 18:50:05 | 000,001,233 | ---- | C] () -- C:\Users\Public\Desktop\Pazera Free MP4 to AVI Converter.lnk [2013.05.23 04:07:25 | 000,954,945 | ---- | C] () -- C:\Users\MAJU2903\Desktop\(39) Facebook.htm [2013.05.22 19:20:00 | 006,744,772 | ---- | C] () -- C:\Users\MAJU2903\Desktop\when love.psd [2013.05.19 08:23:43 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Canon Quick Menu.lnk [2013.05.19 08:15:43 | 000,002,302 | ---- | C] () -- C:\Users\Public\Desktop\Canon MP230 series Online-Handbuch.lnk [2013.05.19 08:14:14 | 000,073,984 | ---- | C] () -- C:\Windows\System32\CNC175FD.TBL [2013.05.13 00:26:07 | 000,745,472 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.34.40.jpg [2013.05.13 00:26:01 | 000,939,996 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.03.09.jpg [2013.05.13 00:25:55 | 000,818,027 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.01.01.jpg [2013.05.13 00:25:50 | 000,774,144 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.34.20.jpg [2013.05.13 00:25:45 | 000,720,896 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.13.53.jpg [2013.05.13 00:25:39 | 000,827,392 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.03.29.jpg [2013.05.13 00:25:35 | 000,716,800 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.35.23.jpg [2013.05.13 00:25:29 | 000,777,334 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 23.09.06.jpg [2013.05.13 00:25:25 | 000,718,840 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 23.09.11.jpg [2013.05.13 00:25:20 | 000,688,128 | ---- | C] () -- C:\Users\MAJU2903\Documents\2013-05-12 22.35.19.jpg [2013.05.11 18:55:43 | 081,806,230 | ---- | C] () -- C:\Users\MAJU2903\Documents\20130511_185651.mp4 [2013.02.11 07:57:49 | 000,016,070 | ---- | C] () -- C:\Windows\German2.ini [2012.12.06 19:59:58 | 000,000,926 | ---- | C] () -- C:\Windows\posteriza.INI [2012.10.29 20:18:46 | 000,000,132 | ---- | C] () -- C:\Users\MAJU2903\AppData\Roaming\Adobe AIFF Format CS5 Prefs [2012.07.18 19:53:59 | 000,001,456 | ---- | C] () -- C:\Users\MAJU2903\AppData\Local\Adobe Für Web speichern 13.0 Prefs [2012.04.13 18:55:20 | 000,000,000 | ---- | C] () -- C:\Windows\iPlayer.INI [2012.04.06 17:26:15 | 000,000,410 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2012.03.27 21:32:24 | 000,001,456 | ---- | C] () -- C:\Users\MAJU2903\AppData\Local\Adobe Für Web speichern 12.0 Prefs [2012.03.16 08:19:31 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe [2012.03.16 08:18:05 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe ========== LOP Check ========== [2012.07.26 17:12:09 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\Amazon [2013.01.04 09:35:23 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\Apowersoft [2013.03.01 08:58:13 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\ASCON Installer [2013.04.02 20:34:01 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\Audacity [2013.05.04 13:18:26 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\Avery [2012.10.04 17:11:23 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\AVG [2013.05.31 15:15:55 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\Canon [2012.07.15 18:33:03 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant [2013.03.01 13:09:56 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\DesktopIconForAmazon [2013.03.01 08:50:48 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\DSite [2012.11.06 22:08:50 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\DVDVideoSoft [2012.04.29 17:34:38 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\DVDVideoSoftIEHelpers [2013.02.11 08:29:12 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\IN-MEDIAKG [2012.08.18 08:42:58 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\IrfanView [2012.03.13 21:36:42 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\MAGIX [2013.02.11 08:29:12 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\mresreg [2013.03.01 08:56:44 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\OCS [2012.11.06 22:08:32 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\OpenCandy [2013.03.01 08:56:58 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\Opera [2012.07.18 18:47:31 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\PDAppFlex [2012.03.24 08:04:13 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\RBotPlus [2012.10.21 18:57:52 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012.11.06 22:10:57 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\TuneUp Software [2013.06.09 17:55:02 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\uTorrent [2013.01.04 17:57:51 | 000,000,000 | ---D | M] -- C:\Users\MAJU2903\AppData\Roaming\XMedia Recode [2013.03.14 05:36:15 | 000,032,630 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2013.06.09 20:53:26 | 000,000,434 | ---- | M] () -- C:\Windows\Tasks\Wise Auto Shutdown Task.job ========== Purity Check ========== ========== Alternate Data Streams ========== @Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:0C6951A3 < End of report > |
| Themen zu Browser laufen extrem langsam! |
| adobe, antivirus, aswrvrt.sys, autorun, avast, bho, browser, canon, converter, defender, down, explorer, firefox, format, helper, homepage, langsam, logfile, mp3, object, plug-in, programme, registry, safer networking, senden, software, taskhost.exe, windows, windows xp, wmp |
Baum-Darstellung