Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
unregelmäßige aber stätige Ladefehler von Webseiten

unregelmäßige aber stätige Ladefehler von Webseiten


Plagegeister aller Art und deren Bekämpfung: unregelmäßige aber stätige Ladefehler von Webseiten

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 25.04.2014, 18:46   #1
schrauber
/// the machine
/// TB-Ausbilder
 
unregelmäßige aber stätige Ladefehler von Webseiten - Standard

unregelmäßige aber stätige Ladefehler von Webseiten


Das sind normalerweise versteckte Ordner, alles ok


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 25.04.2014, 20:47   #2
GrenSo
 
unregelmäßige aber stätige Ladefehler von Webseiten - Standard

unregelmäßige aber stätige Ladefehler von Webseiten


Zitat:
Zitat von schrauber Beitrag anzeigen
Das sind normalerweise versteckte Ordner, alles ok
Diese Ordner finde ich schon etwas "komisch", da es ja eigentlich versteckte Systemordner von Windows sind.
Soll ich diese Ordner erst mal so belassen bzw. dessen derzeitige Einstellungen oder werde diese später wieder systemseitig in den ursprünglichen Zustand, wie sie eigentlich von Windows angelegt wurden, versetzt?
Dieses wäre mir doch sehr wichtig zu wissen und dies nicht nur wegen der im Moment geänderten Ordneransicht bzw. -Struktur.

Ach ja, was hat eigentlich dieses
Code:
ATTFilter
HKLM\...\Policies\Explorer: [NoInternetOpenWith] 1
als "Fixlist.txt" bewirkt bzw. gemacht? Will ja schon wissen was die einzelnen Aktionen an meinem System bewirken und auch ändern.

Hier die mbam.txt:
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org


Protection, 25.04.2014 21:07:14, SYSTEM, 790FX-PHENOM-X4, Protection, Malware Protection, Starting, 
Protection, 25.04.2014 21:07:14, SYSTEM, 790FX-PHENOM-X4, Protection, Malware Protection, Started, 
Protection, 25.04.2014 21:07:14, SYSTEM, 790FX-PHENOM-X4, Protection, Malicious Website Protection, Starting, 
Protection, 25.04.2014 21:08:40, SYSTEM, 790FX-PHENOM-X4, Protection, Malicious Website Protection, Started, 

(end)
Hier die AdwCleaner[S10].txt
Code:
ATTFilter
# AdwCleaner v3.202 - Bericht erstellt am 25/04/2014 um 21:12:44
# Aktualisiert 23/04/2014 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : GrenSo - 790FX-PHENOM-X4
# Gestartet von : C:\Users\GrenSo\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0 (de)

[ Datei : C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\prefs.js ]


*************************

AdwCleaner[R10].txt - [1502 octets] - [25/01/2014 15:37:26]
AdwCleaner[R11].txt - [3286 octets] - [20/04/2014 19:06:02]
AdwCleaner[R12].txt - [1304 octets] - [23/04/2014 00:02:51]
AdwCleaner[R13].txt - [1355 octets] - [25/04/2014 21:11:47]
AdwCleaner[R8].txt - [1207 octets] - [24/11/2013 21:36:30]
AdwCleaner[R9].txt - [1436 octets] - [23/12/2013 15:00:32]
AdwCleaner[S10].txt - [1036 octets] - [25/04/2014 21:12:44]
AdwCleaner[S6].txt - [1268 octets] - [24/11/2013 21:40:04]
AdwCleaner[S7].txt - [1447 octets] - [23/12/2013 15:02:13]
AdwCleaner[S8].txt - [1464 octets] - [25/01/2014 15:38:08]
AdwCleaner[S9].txt - [3152 octets] - [20/04/2014 19:07:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S10].txt - [1337 octets] ##########
Hier die JRT.txt:
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Ultimate x64
Ran by GrenSo on 25.04.2014 at 21:27:45,41
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values




~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1996915005-1308554187-4098229939-1000\Software\sweetim



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{0F992F05-6D5C-41D8-91AD-84F1FE59C333}
Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{5642CFB7-BA72-494C-B84F-E26845717F93}
Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{83D5A4DE-5F7D-44E0-9BCD-1405A9052D3D}
Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{878D3B68-6A83-4FC2-B9BD-B82C3423C11B}
Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{B709E822-AD99-4E49-B6DF-765F3B476E34}
Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{D0842B03-A28D-4AFE-B050-6B2E80640E51}
Successfully deleted: [Empty Folder] C:\Users\GrenSo\appdata\local\{D57DAD67-764A-414E-A301-5CA75346760D}



~~~ FireFox

Emptied folder: C:\Users\GrenSo\AppData\Roaming\mozilla\firefox\profiles\0rm2ca40.default\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 25.04.2014 at 21:37:44,86
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Und zu guter Letzt die neue FRST.txt:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-04-2014
Ran by GrenSo (administrator) on 790FX-PHENOM-X4 on 25-04-2014 21:40:47
Running from C:\Users\GrenSo\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
( ) C:\Windows\system32\lxcgcoms.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Windows\System32\tcpsvcs.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(H+H Software GmbH) C:\Program Files (x86)\Virtual CD v10\System\VC10SecS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
() C:\Program Files (x86)\AMD\AMD Power Monitor\AMD Power Monitor.exe
(Lexmark International, Inc.) C:\Program Files (x86)\Lexmark 2300 Series\lxcgmon.exe
(Lexmark International Inc.) C:\Program Files (x86)\Lexmark 2300 Series\ezprint.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ESET) C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
(PeerBlock, LLC) C:\Program Files\PeerBlock\peerblock.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(FastStone Soft) C:\Program Files (x86)\FastStone Capture\FSCapture.exe
() C:\Program Files (x86)\Razer\Diamondback\Razer\Diamondback\razerhid.exe
(Razer USA Ltd.) C:\Program Files (x86)\Razer\Reclusa\razerhid.exe
() C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
() C:\Program Files (x86)\NaturalPoint\TrackIR4\TrackIR.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(H+H Software GmbH) C:\Program Files (x86)\Virtual CD v10\System\VC10Play.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
() C:\Program Files (x86)\Razer\Reclusa\razertra.exe
(Zemana Ltd.) C:\Program Files (x86)\AntiLogger\AntiLogger.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\KeyScrambler.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\Core Temp\Core Temp.exe
(Binarysense) C:\Program Files (x86)\SSDlife\ssdlife.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
(QFX Software Corporation) C:\Program Files (x86)\KeyScrambler\x64\KeyScrambler.exe
(Microsoft Corporation) C:\Program Files (x86)\EMET 4.0\EMET_Agent.exe
() C:\Program Files (x86)\Razer\Diamondback\Razer\Diamondback\razertra.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(H+H Software GmbH) C:\Program Files (x86)\Virtual CD v10\System\VC10Tray.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Diamondback\Razer\Diamondback\razerofa.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_199.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_199.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Power Monitor] => C:\Program Files (x86)\AMD\AMD Power Monitor\AMD Power Monitor.exe [624640 2009-05-21] ()
HKLM\...\Run: [lxcgmon.exe] => C:\Program Files (x86)\Lexmark 2300 Series\lxcgmon.exe [205744 2007-04-29] (Lexmark International, Inc.)
HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark 2300 Series\ezprint.exe [103344 2007-04-29] (Lexmark International Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [517912 2013-02-15] (Acronis)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-04-18] (Realtek Semiconductor)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe [4148664 2013-10-07] (ESET)
HKLM\...\Run: [LXCGCATS] => C:\Windows\system32\spool\DRIVERS\x64\3\LXCGtime.dll [28672 2007-02-22] ()
HKLM-x32\...\Run: [Diamondback] => C:\Program Files (x86)\Razer\Diamondback\Razer\Diamondback\razerhid.exe [226816 2009-10-09] ()
HKLM-x32\...\Run: [Reclusa] => C:\Program Files (x86)\Razer\Reclusa\razerhid.exe [292352 2010-01-12] (Razer USA Ltd.)
HKLM-x32\...\Run: [adm_tray.exe] => C:\Program Files (x86)\Acronis\DriveMonitor\adm_tray.exe [470120 2011-02-24] ()
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [NaturalPoint] => C:\Program Files (x86)\NaturalPoint\TrackIR4\TrackIR.exe [1152592 2012-10-11] ()
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6405376 2013-03-28] (Acronis)
HKLM-x32\...\Run: [VC10Player] => C:\Program Files (x86)\Virtual CD v10\System\VC10Play.exe [411976 2011-10-19] (H+H Software GmbH)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1105848 2013-01-10] (Acronis)
HKLM-x32\...\Run: [AntiLogger] => C:\Program Files (x86)\AntiLogger\AntiLogger.exe [19362728 2014-03-26] (Zemana Ltd.)
HKLM-x32\...\Run: [EMET Agent] => C:\Program Files (x86)\EMET 4.0\EMET_agent.exe [78496 2013-06-14] (Microsoft Corporation)
HKLM-x32\...\Run: [KeyScrambler] => C:\Program Files (x86)\KeyScrambler\keyscrambler.exe [508144 2013-11-14] (QFX Software Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-03-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [1825984 2014-04-24] (Valve Corporation)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM\...\Policies\Explorer: [CDRAutoRun] 0
HKU\S-1-5-21-1996915005-1308554187-4098229939-1000\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKU\S-1-5-21-1996915005-1308554187-4098229939-1000\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-1996915005-1308554187-4098229939-1000\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC)
HKU\S-1-5-21-1996915005-1308554187-4098229939-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [761864 2014-04-16] (Sandboxie Holdings, LLC)
Startup: C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FastStone Capture.lnk
ShortcutTarget: FastStone Capture.lnk -> C:\Program Files (x86)\FastStone Capture\FSCapture.exe (FastStone Soft)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/de-de/default.aspx
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xACD295AE5894CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit)
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Handler: livecall - No CLSID Value - 
Handler: msnim - No CLSID Value - 
Handler-x32: livecall - No CLSID Value - 
Handler-x32: msnim - No CLSID Value - 
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.66.1

FireFox:
========
FF ProfilePath: C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default
FF NewTab: google.de
FF Homepage: hxxp://www.winboard.org/|hxxp://www.fcenergie.de/content/home
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_199.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.5.2 - C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_199.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1210150.dll (Adobe Systems, Inc.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.5.2 - C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.5.2 - C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll No File
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Roomy Bookmarks Toolbar - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\ALone-live@ya.ru [2014-04-18]
FF Extension: Wörterbuch Deutsch (de-DE), Hunspell-unterstützt - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\de_DE@dicts.j3e.de [2014-04-18]
FF Extension: United States English Spellchecker - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\en-US@dictionaries.addons.mozilla.org [2014-04-18]
FF Extension: MinimizeToTray revived (MinTrayR) - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\mintrayr@tn123.ath.cx [2014-04-18]
FF Extension: Forecastfox - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2014-04-18]
FF Extension: FoxClocks - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1} [2014-04-18]
FF Extension: about:addons Launcher - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\aboutaddons@about-addons-launcher.org.xpi [2014-04-18]
FF Extension: Locationbar² - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\locationbar2@design-noir.de.xpi [2014-04-18]
FF Extension: Long URL Please Mod - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\longurlplease@tseng.xpi [2014-04-18]
FF Extension: Secure Login - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\secureLogin@blueimp.net.xpi [2014-04-18]
FF Extension: Slim Add-ons Manager - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\slimaddonmanager@opendfki.de.xpi [2014-04-18]
FF Extension: Tab Scope - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\tabscope@xuldev.org.xpi [2014-04-18]
FF Extension: Flagfox - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2014-04-18]
FF Extension: NoScript - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-04-18]
FF Extension: Tab Mix Plus - C:\Users\GrenSo\AppData\Roaming\Mozilla\Firefox\Profiles\0rm2ca40.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2014-04-18]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird
FF Extension: ESET Endpoint Security Extension - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird [2014-04-18]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird
FF Extension: ESET Endpoint Security Extension - C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird [2014-04-18]

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-03-12] (Advanced Micro Devices, Inc.)
S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137584 2014-01-08] ()
S3 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
S4 CLHNServiceForPowerDVD; C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [85104 2012-09-18] ()
S4 CyberLink PowerDVD 11.0 Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [78352 2012-09-19] (CyberLink)
S4 CyberLink PowerDVD 11.0 Service; C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [295440 2012-09-19] (CyberLink)
S3 EhttpSrv; C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe [42048 2013-10-07] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [1025584 2013-10-07] (ESET)
R2 ESHASRV; C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [191368 2013-10-07] (ESET)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [520416 2014-02-28] (Futuremark)
R2 iprip; C:\Windows\System32\iprip.dll [35328 2009-07-14] (Microsoft Corporation)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2153792 2014-03-14] (IObit)
R2 lxcg_device; C:\Windows\system32\lxcgcoms.exe [566704 2007-04-29] ( )
R2 lxcg_device; C:\Windows\SysWOW64\lxcgcoms.exe [537520 2007-04-29] ( )
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S4 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [189960 2014-04-16] (Sandboxie Holdings, LLC)
S4 SNMP; C:\Windows\System32\snmp.exe [49664 2010-11-20] (Microsoft Corporation)
S4 SNMP; C:\Windows\SysWOW64\snmp.exe [47616 2010-11-20] (Microsoft Corporation)
R2 VC10SecS; C:\Program Files (x86)\Virtual CD v10\System\VC10SecS.exe [144712 2011-10-19] (H+H Software GmbH)
S2 PnkBstrA; No ImagePath
S2 PnkBstrB; No ImagePath

==================== Drivers (Whitelisted) ====================

R1 A2DDA; C:\PROGRAM FILES (X86)\EMSISOFT EMERGENCY KIT\RUN\a2ddax64.sys [26176 2013-08-20] (Emsisoft GmbH)
R1 AntiLog32; C:\Windows\system32\drivers\AntiLog64.sys [49752 2014-04-18] (Zemana Ltd.)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-11-04] (Advanced Micro Devices)
R2 AODDriver4.3.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [59624 2014-01-08] (Advanced Micro Devices)
S3 atillk64; No ImagePath
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2012-10-03] ()
S3 cleanhlp; C:\PROGRAM FILES (X86)\EMSISOFT EMERGENCY KIT\RUN\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [219184 2013-10-25] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [185224 2013-09-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [155896 2013-09-09] (ESET)
S3 ENTECH; C:\Windows\SysWow64\Drivers\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan)
R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [147096 2013-09-09] (ESET)
S1 ESProtectionDriver; No ImagePath
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [422400 2012-03-16] (Huawei Technologies Co., Ltd.)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2013-02-06] ()
S3 HH10Help.sys; C:\Windows\system32\drivers\HH10Help.sys [24088 2009-07-09] (H+H Software GmbH)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [227840 2012-03-16] (Huawei Technologies Co., Ltd.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-10-16] (REALiX(tm))
R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [222200 2013-05-31] (QFX Software Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2012-10-03] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-25] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
S3 MEMSWEEP2; No ImagePath
R3 MTKSCVAD; C:\Windows\System32\drivers\mtkvadx.sys [44544 2012-07-16] (Ralink Technology, Corp.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 npusbio; C:\Windows\System32\Drivers\npusbio_x64.sys [38400 2012-07-10] ()
R0 ocz10xx; C:\Windows\System32\DRIVERS\ocz10xx.sys [75056 2014-03-07] (OCZ Storage Solutions)
R0 ocztrimfilter; C:\Windows\System32\DRIVERS\ocztrimfilter.sys [18400 2014-03-07] (OCZ Storage Solutions)
R3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [22600 2014-01-14] ()
R3 Razerlow; C:\Windows\System32\drivers\Razerlow.sys [11136 2013-11-05] (Razer (Asia-Pacific) Pte Ltd)
R3 RecFltr; C:\Windows\System32\drivers\RecFltr.sys [44800 2010-01-04] (Razer USA Ltd.)
S3 SANDRA; No ImagePath
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [202248 2014-04-16] (Sandboxie Holdings, LLC)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2013-04-06] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [183224 2013-04-06] (Acronis)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-02-20] (Oracle Corporation)
R1 vdrv1000; C:\Windows\System32\DRIVERS\vdrv1000.sys [223256 2011-04-19] (H+H Software GmbH)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2013-04-06] (Acronis International GmbH)
S3 WinRing0_1_2_0; No ImagePath
S3 WN111v2; C:\Windows\System32\DRIVERS\WN111v2w7x.sys [767488 2009-10-21] (Atheros Communications, Inc.)
R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312}; C:\Program Files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [146928 2012-09-19] (CyberLink Corp.)
R3 ALSysIO; \??\C:\Users\GrenSo\AppData\Local\Temp\ALSysIO64.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
U0 Partizan; system32\drivers\Partizan.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-25 21:40 - 2014-04-25 21:40 - 00005374 _____ () C:\Users\GrenSo\Desktop\FRST.txt
2014-04-25 21:37 - 2014-04-25 21:37 - 00001720 _____ () C:\Users\GrenSo\Desktop\JRT.txt
2014-04-25 21:17 - 2014-04-25 21:17 - 00000000 ____D () C:\Windows\ERUNT
2014-04-25 21:15 - 2014-04-25 21:15 - 00001418 _____ () C:\Users\GrenSo\Desktop\AdwCleaner[S10].txt
2014-04-25 21:09 - 2014-04-25 21:09 - 00000486 _____ () C:\Users\GrenSo\Desktop\mbam.txt
2014-04-25 19:51 - 2014-04-25 19:51 - 01016261 _____ (Thisisu) C:\Users\GrenSo\Desktop\JRT.exe
2014-04-25 00:49 - 2014-04-25 00:49 - 00000000 _____ () C:\Windows\SysWOW64\FAP50E4.tmp
2014-04-25 00:48 - 2014-04-25 00:48 - 00000000 _____ () C:\Windows\SysWOW64\FAPB99.tmp
2014-04-25 00:46 - 2014-04-25 00:46 - 00000000 _____ () C:\Windows\SysWOW64\FAP49DE.tmp
2014-04-25 00:34 - 2014-04-25 00:34 - 00000000 _____ () C:\Windows\SysWOW64\FAP3B4C.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAPD68F.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAPC435.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAPB796.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAP7D04.tmp
2014-04-25 00:27 - 2014-04-25 00:27 - 00000000 _____ () C:\Windows\SysWOW64\FAPBDB9.tmp
2014-04-25 00:27 - 2014-04-25 00:27 - 00000000 _____ () C:\Windows\SysWOW64\FAP7D1F.tmp
2014-04-25 00:17 - 2014-04-25 00:17 - 00000000 _____ () C:\Windows\SysWOW64\FAP69EB.tmp
2014-04-25 00:11 - 2014-04-25 00:11 - 00000000 ____D () C:\Users\GrenSo\AppData\Local\CrashRpt
2014-04-24 20:40 - 2014-04-24 20:40 - 00000000 ____D () C:\Users\GrenSo\Desktop\ComboFix
2014-04-24 20:18 - 2014-04-24 20:18 - 00047211 _____ () C:\ComboFix.txt
2014-04-24 19:48 - 2014-04-24 20:18 - 00000000 ____D () C:\Qoobox
2014-04-24 19:48 - 2014-04-24 20:18 - 00000000 ____D () C:\ComboFix
2014-04-24 19:48 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-24 19:48 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-24 19:48 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-24 19:48 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-24 19:48 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-24 19:48 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-24 19:48 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-24 19:48 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-24 19:47 - 2014-04-24 20:13 - 00000000 ____D () C:\Windows\erdnt
2014-04-24 19:44 - 2014-04-24 19:44 - 05196870 ____R (Swearware) C:\Users\GrenSo\Desktop\ComboFix.exe
2014-04-24 19:44 - 2014-04-24 19:44 - 00000000 ____D () C:\Users\GrenSo\Desktop\FRST
2014-04-23 23:58 - 2014-04-24 20:12 - 00001844 _____ () C:\Windows\PFRO.log
2014-04-23 19:26 - 2014-04-25 21:40 - 00000000 ____D () C:\FRST
2014-04-23 19:24 - 2014-04-24 19:42 - 02061824 _____ (Farbar) C:\Users\GrenSo\Desktop\FRST64.exe
2014-04-23 18:57 - 2014-04-23 18:57 - 00000000 ____D () C:\Program Files (x86)\TP-LINK
2014-04-23 07:54 - 2014-04-25 21:27 - 00000728 _____ () C:\Windows\setupact.log
2014-04-23 07:54 - 2014-04-23 07:54 - 05153400 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-23 07:54 - 2014-04-23 07:54 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-23 01:17 - 2014-04-23 01:17 - 00146320 _____ () C:\Users\GrenSo\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-22 23:36 - 2014-04-22 23:36 - 00000000 _____ () C:\Users\GrenSo\defogger_reenable
2014-04-22 23:04 - 2014-04-22 23:04 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-04-22 23:04 - 2014-04-22 23:04 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Apple Computer
2014-04-22 23:01 - 2014-04-22 23:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-22 23:01 - 2014-04-14 04:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-22 23:01 - 2014-04-14 04:19 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-21 20:07 - 2014-04-21 19:57 - 00002122 _____ () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Endpoint Antivirus.lnk
2014-04-18 21:08 - 2014-04-18 21:08 - 00000000 ____D () C:\ProgramData\ESET
2014-04-18 21:08 - 2014-04-18 21:08 - 00000000 ____D () C:\Program Files\ESET
2014-04-18 20:41 - 2014-04-18 20:41 - 00000000 __SHD () C:\Users\GrenSo\AppData\Local\EmieUserList
2014-04-18 20:41 - 2014-04-18 20:41 - 00000000 __SHD () C:\Users\GrenSo\AppData\Local\EmieSiteList
2014-04-18 19:18 - 2014-04-18 19:18 - 00901848 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-04-18 19:18 - 2014-04-18 19:18 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 03872984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-04-18 19:04 - 2014-04-18 19:04 - 02792152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 02037336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 01033304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 01024216 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 00946392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 00757301 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-04-18 19:04 - 2014-04-18 19:04 - 00624344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-04-18 17:44 - 2014-04-18 17:44 - 00002181 _____ () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-04-18 17:39 - 2014-03-25 15:27 - 00254240 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-04-18 17:39 - 2014-03-25 15:24 - 00128288 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-04-18 17:35 - 2014-04-18 17:35 - 00000000 __HDC () C:\ProgramData\{727C5CC8-3A5E-4517-BA8B-35A93F9B2EBD}
2014-04-18 17:28 - 2014-04-18 17:28 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-18 17:28 - 2014-04-18 17:28 - 00176040 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-18 17:28 - 2014-04-18 17:28 - 00176040 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-18 17:28 - 2014-04-18 17:28 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-18 16:51 - 2014-04-18 16:48 - 00000513 _____ () C:\Users\GrenSo\Documents\indexfile.txt
2014-04-17 21:52 - 2014-03-06 12:21 - 23549440 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-17 21:52 - 2014-03-06 11:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-17 21:52 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-17 21:52 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-17 21:52 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-17 21:52 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-17 21:52 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-17 21:52 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-17 21:52 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-17 21:52 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-17 21:52 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-17 21:52 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-17 21:52 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-17 21:52 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-17 21:52 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-17 21:52 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-17 21:52 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-17 21:52 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-17 21:52 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-17 21:52 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-04-17 21:52 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-17 21:52 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-04-17 21:52 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-17 21:52 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-17 21:52 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-17 21:52 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-17 21:52 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-17 21:52 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-17 21:52 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-17 21:52 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-04-17 21:52 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-04-17 21:52 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-04-17 21:52 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-04-17 21:52 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-17 21:52 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-04-17 21:52 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-17 21:52 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-17 21:52 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-04-17 21:52 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-17 21:52 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-17 21:52 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-04-17 21:52 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-17 21:52 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-17 21:52 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-17 21:52 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-17 21:52 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-04-17 21:52 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-17 21:52 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-17 21:46 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-17 21:46 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-17 21:46 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-17 21:46 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-17 21:46 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-17 21:46 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-17 21:46 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-17 21:46 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-17 21:46 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-17 21:46 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-17 21:46 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-17 21:38 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-17 21:38 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-17 21:38 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-17 21:38 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-17 21:38 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-17 21:38 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-16 05:02 - 2014-04-16 05:02 - 00354656 _____ (DivX, Inc.) C:\Windows\SysWOW64\DivXControlPanelApplet.cpl
2014-03-30 18:28 - 2014-03-07 16:38 - 00132608 _____ (OCZ Storage Solutions) C:\Windows\system32\OczTrimCoinstaller.dll
2014-03-30 18:28 - 2014-03-07 16:38 - 00075056 _____ (OCZ Storage Solutions) C:\Windows\system32\Drivers\ocz10xx.sys
2014-03-30 18:28 - 2014-03-07 16:38 - 00018400 _____ (OCZ Storage Solutions) C:\Windows\system32\Drivers\ocztrimfilter.sys

==================== One Month Modified Files and Folders =======

2014-04-25 21:41 - 2014-04-25 21:40 - 00026396 _____ () C:\Users\GrenSo\Desktop\FRST.txt
2014-04-25 21:40 - 2014-04-23 19:26 - 00000000 ____D () C:\FRST
2014-04-25 21:37 - 2014-04-25 21:37 - 00001720 _____ () C:\Users\GrenSo\Desktop\JRT.txt
2014-04-25 21:37 - 2009-07-14 19:58 - 00786872 _____ () C:\Windows\system32\perfh007.dat
2014-04-25 21:37 - 2009-07-14 19:58 - 00181826 _____ () C:\Windows\system32\perfc007.dat
2014-04-25 21:37 - 2009-07-14 07:13 - 01837466 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-25 21:35 - 2009-07-14 06:45 - 00015120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-25 21:35 - 2009-07-14 06:45 - 00015120 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-25 21:34 - 2012-09-16 19:50 - 00000000 ____D () C:\Program Files (x86)\SRWare Iron
2014-04-25 21:29 - 2013-10-15 19:15 - 00048949 _____ () C:\Users\GrenSo\IP_Log_Data.js
2014-04-25 21:28 - 2014-02-09 20:32 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-25 21:28 - 2012-09-16 23:01 - 00000000 ____D () C:\Program Files\PeerBlock
2014-04-25 21:27 - 2014-04-23 07:54 - 00000728 _____ () C:\Windows\setupact.log
2014-04-25 21:27 - 2013-03-06 20:38 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-04-25 21:27 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-25 21:25 - 2014-01-07 20:47 - 01873690 _____ () C:\Windows\WindowsUpdate.log
2014-04-25 21:25 - 2013-03-04 09:36 - 00000026 _____ () C:\Users\GrenSo\AppData\Roaming\Network Meter_Usage.ini
2014-04-25 21:17 - 2014-04-25 21:17 - 00000000 ____D () C:\Windows\ERUNT
2014-04-25 21:15 - 2014-04-25 21:15 - 00001418 _____ () C:\Users\GrenSo\Desktop\AdwCleaner[S10].txt
2014-04-25 21:12 - 2013-11-24 21:36 - 00000000 ____D () C:\AdwCleaner
2014-04-25 21:11 - 2013-09-25 18:55 - 00000000 ____D () C:\Program Files (x86)\AdwCleaner
2014-04-25 21:09 - 2014-04-25 21:09 - 00000486 _____ () C:\Users\GrenSo\Desktop\mbam.txt
2014-04-25 21:00 - 2013-03-04 09:00 - 00115679 _____ () C:\Users\GrenSo\Network_Meter_Data.js
2014-04-25 19:51 - 2014-04-25 19:51 - 01016261 _____ (Thisisu) C:\Users\GrenSo\Desktop\JRT.exe
2014-04-25 19:24 - 2013-03-23 22:12 - 00000000 ____D () C:\Program Files\McAfee AVERT Stinger
2014-04-25 00:53 - 2012-09-17 08:12 - 00000000 ____D () C:\Users\GrenSo\SecurityScans
2014-04-25 00:49 - 2014-04-25 00:49 - 00000000 _____ () C:\Windows\SysWOW64\FAP50E4.tmp
2014-04-25 00:48 - 2014-04-25 00:48 - 00000000 _____ () C:\Windows\SysWOW64\FAPB99.tmp
2014-04-25 00:46 - 2014-04-25 00:46 - 00000000 _____ () C:\Windows\SysWOW64\FAP49DE.tmp
2014-04-25 00:34 - 2014-04-25 00:34 - 00000000 _____ () C:\Windows\SysWOW64\FAP3B4C.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAPD68F.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAPC435.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAPB796.tmp
2014-04-25 00:29 - 2014-04-25 00:29 - 00000000 _____ () C:\Windows\SysWOW64\FAP7D04.tmp
2014-04-25 00:27 - 2014-04-25 00:27 - 00000000 _____ () C:\Windows\SysWOW64\FAPBDB9.tmp
2014-04-25 00:27 - 2014-04-25 00:27 - 00000000 _____ () C:\Windows\SysWOW64\FAP7D1F.tmp
2014-04-25 00:17 - 2014-04-25 00:17 - 00000000 _____ () C:\Windows\SysWOW64\FAP69EB.tmp
2014-04-25 00:11 - 2014-04-25 00:11 - 00000000 ____D () C:\Users\GrenSo\AppData\Local\CrashRpt
2014-04-25 00:11 - 2011-01-01 15:00 - 00000000 ____D () C:\Users\GrenSo\Documents\My Games
2014-04-24 23:30 - 2012-09-16 23:06 - 00000000 ____D () C:\Program Files\Paint.NET
2014-04-24 23:19 - 2013-11-05 00:56 - 00000000 ____D () C:\ProgramData\ProductData
2014-04-24 20:40 - 2014-04-24 20:40 - 00000000 ____D () C:\Users\GrenSo\Desktop\ComboFix
2014-04-24 20:18 - 2014-04-24 20:18 - 00047211 _____ () C:\ComboFix.txt
2014-04-24 20:18 - 2014-04-24 19:48 - 00000000 ____D () C:\Qoobox
2014-04-24 20:18 - 2014-04-24 19:48 - 00000000 ____D () C:\ComboFix
2014-04-24 20:13 - 2014-04-24 19:47 - 00000000 ____D () C:\Windows\erdnt
2014-04-24 20:12 - 2014-04-23 23:58 - 00001844 _____ () C:\Windows\PFRO.log
2014-04-24 20:12 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-04-24 19:44 - 2014-04-24 19:44 - 05196870 ____R (Swearware) C:\Users\GrenSo\Desktop\ComboFix.exe
2014-04-24 19:44 - 2014-04-24 19:44 - 00000000 ____D () C:\Users\GrenSo\Desktop\FRST
2014-04-24 19:42 - 2014-04-23 19:24 - 02061824 _____ (Farbar) C:\Users\GrenSo\Desktop\FRST64.exe
2014-04-24 19:37 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-24 18:59 - 2012-09-16 22:32 - 00000000 ____D () C:\ProgramData\DivX
2014-04-24 18:58 - 2012-09-16 22:33 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-04-24 18:56 - 2012-09-16 22:22 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-24 00:26 - 2012-09-17 01:59 - 00000000 ____D () C:\Program Files (x86)\AIDA64 Extreme Edition
2014-04-24 00:23 - 2013-04-06 15:44 - 00000000 ____D () C:\Program Files (x86)\Rufus
2014-04-23 23:58 - 2012-09-16 19:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-23 23:58 - 2012-09-16 18:15 - 00000000 ____D () C:\Program Files\WinRAR
2014-04-23 23:09 - 2014-02-07 14:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-23 20:42 - 2012-09-28 18:47 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hardware
2014-04-23 20:37 - 2012-09-16 21:04 - 00000000 ____D () C:\Program Files\Lx_cats
2014-04-23 18:57 - 2014-04-23 18:57 - 00000000 ____D () C:\Program Files (x86)\TP-LINK
2014-04-23 07:54 - 2014-04-23 07:54 - 05153400 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-23 07:54 - 2014-04-23 07:54 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-23 01:17 - 2014-04-23 01:17 - 00146320 _____ () C:\Users\GrenSo\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-23 00:00 - 2012-10-19 19:07 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-04-22 23:58 - 2012-09-28 18:47 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System
2014-04-22 23:36 - 2014-04-22 23:36 - 00000000 _____ () C:\Users\GrenSo\defogger_reenable
2014-04-22 23:36 - 2012-09-16 17:23 - 00000000 ____D () C:\Users\GrenSo
2014-04-22 23:25 - 2012-11-20 20:09 - 00000000 ____D () C:\Program Files (x86)\AnvilBenchmark
2014-04-22 23:04 - 2014-04-22 23:04 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-04-22 23:04 - 2014-04-22 23:04 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Apple Computer
2014-04-22 23:01 - 2014-04-22 23:01 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-04-21 20:56 - 2012-09-16 19:00 - 00000000 ____D () C:\Users\GrenSo\AppData\Local\Adobe
2014-04-21 20:09 - 2012-09-19 21:14 - 00000000 ____D () C:\Program Files (x86)\XMedia Recode
2014-04-21 19:57 - 2014-04-21 20:07 - 00002122 _____ () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Endpoint Antivirus.lnk
2014-04-21 19:47 - 2014-01-17 19:50 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\ProductData
2014-04-21 19:47 - 2013-10-06 20:30 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\vlc
2014-04-21 19:47 - 2013-09-27 20:00 - 00000000 ____D () C:\Program Files (x86)\AntiLogger
2014-04-21 19:47 - 2013-02-08 20:15 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\QFX Software
2014-04-21 19:47 - 2013-02-08 20:15 - 00000000 ____D () C:\ProgramData\QFX Software
2014-04-21 19:47 - 2013-01-11 23:56 - 00000000 ____D () C:\ProgramData\Package Cache
2014-04-21 19:47 - 2012-09-16 19:49 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\TeraCopy
2014-04-21 19:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-04-18 21:08 - 2014-04-18 21:08 - 00000000 ____D () C:\ProgramData\ESET
2014-04-18 21:08 - 2014-04-18 21:08 - 00000000 ____D () C:\Program Files\ESET
2014-04-18 20:47 - 2012-09-16 18:22 - 00000000 ____D () C:\ProgramData\Razer
2014-04-18 20:46 - 2012-09-18 21:49 - 00000000 ____D () C:\Program Files (x86)\Alternative Flash Player Auto-Updater
2014-04-18 20:41 - 2014-04-18 20:41 - 00000000 __SHD () C:\Users\GrenSo\AppData\Local\EmieUserList
2014-04-18 20:41 - 2014-04-18 20:41 - 00000000 __SHD () C:\Users\GrenSo\AppData\Local\EmieSiteList
2014-04-18 20:18 - 2012-09-16 18:58 - 00001485 _____ () C:\Users\GrenSo\AppData\Roaming\Network Meter_Settings.ini
2014-04-18 19:18 - 2014-04-18 19:18 - 00901848 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-04-18 19:18 - 2014-04-18 19:18 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-04-18 19:18 - 2012-09-16 18:17 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-04-18 19:05 - 2013-11-12 23:10 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-04-18 19:04 - 2014-04-18 19:04 - 03872984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-04-18 19:04 - 2014-04-18 19:04 - 02792152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 02037336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 01033304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 01024216 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 00946392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-04-18 19:04 - 2014-04-18 19:04 - 00757301 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-04-18 19:04 - 2014-04-18 19:04 - 00624344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-04-18 19:01 - 2012-11-23 21:14 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\TeamViewer
2014-04-18 19:01 - 2012-09-28 19:09 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Editoren
2014-04-18 19:01 - 2012-09-28 18:47 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bildbearbeitung
2014-04-18 19:01 - 2012-09-28 18:46 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Download
2014-04-18 19:01 - 2012-09-19 21:26 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3D Animation
2014-04-18 17:57 - 2012-09-16 20:26 - 00000000 ____D () C:\Users\GrenSo\.VirtualBox
2014-04-18 17:50 - 2012-10-14 12:42 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Adobe Master Collection CS6
2014-04-18 17:44 - 2014-04-18 17:44 - 00002181 _____ () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2014-04-18 17:42 - 2013-02-12 19:48 - 00000000 ____D () C:\Program Files\FreeFixer
2014-04-18 17:41 - 2012-12-27 15:43 - 00000000 ____D () C:\ProgramData\IObit
2014-04-18 17:37 - 2013-10-18 11:59 - 00000000 ____D () C:\Program Files\Wireshark
2014-04-18 17:37 - 2012-09-16 17:23 - 00000000 ___RD () C:\Users\GrenSo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-18 17:35 - 2014-04-18 17:35 - 00000000 __HDC () C:\ProgramData\{727C5CC8-3A5E-4517-BA8B-35A93F9B2EBD}
2014-04-18 17:35 - 2013-09-27 20:00 - 00049752 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\AntiLog64.sys
2014-04-18 17:33 - 2014-03-20 00:05 - 00313256 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-18 17:33 - 2014-01-15 01:54 - 00191400 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-18 17:33 - 2014-01-15 01:54 - 00190888 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-18 17:33 - 2014-01-15 01:54 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-04-18 17:32 - 2012-09-24 11:09 - 00000000 ____D () C:\Program Files\Adobe
2014-04-18 17:29 - 2013-09-13 20:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-18 17:29 - 2013-03-05 09:11 - 00000000 ____D () C:\Program Files\Java
2014-04-18 17:29 - 2013-01-14 01:01 - 00000000 ____D () C:\Program Files (x86)\Java
2014-04-18 17:28 - 2014-04-18 17:28 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-04-18 17:28 - 2014-04-18 17:28 - 00176040 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-04-18 17:28 - 2014-04-18 17:28 - 00176040 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-04-18 17:28 - 2014-04-18 17:28 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-04-18 17:26 - 2012-09-16 22:57 - 00000000 ____D () C:\Program Files (x86)\EditPlus 3
2014-04-18 17:23 - 2014-01-10 19:54 - 00000000 ____D () C:\Program Files (x86)\AppRemover
2014-04-18 17:22 - 2013-04-20 10:58 - 00000000 ____D () C:\Program Files (x86)\UnHackMe
2014-04-18 17:20 - 2012-09-26 20:50 - 00000000 ____D () C:\Program Files\Network Scanner
2014-04-18 17:18 - 2012-09-24 11:09 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-04-18 17:18 - 2012-09-17 20:02 - 00000000 ____D () C:\Program Files (x86)\Passbild-Generator
2014-04-18 17:17 - 2012-09-16 23:05 - 00000000 ____D () C:\Program Files (x86)\XnView
2014-04-18 17:15 - 2013-07-02 20:48 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-04-18 17:15 - 2012-09-16 19:00 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-18 17:15 - 2012-09-16 18:35 - 00000000 ____D () C:\Users\GrenSo\AppData\Roaming\Adobe
2014-04-18 17:14 - 2013-11-03 12:34 - 00000000 ____D () C:\Program Files\CrystalDiskInfo
2014-04-18 17:13 - 2013-03-09 15:59 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-18 17:13 - 2013-03-09 15:59 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-18 16:48 - 2014-04-18 16:51 - 00000513 _____ () C:\Users\GrenSo\Documents\indexfile.txt
2014-04-17 22:47 - 2013-05-24 20:01 - 00000000 ____D () C:\ProgramData\Vodafone
2014-04-17 22:32 - 2014-02-09 20:32 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-17 22:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-04-17 21:52 - 2013-07-09 20:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-17 21:46 - 2012-09-16 20:01 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-17 21:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-16 05:02 - 2014-04-16 05:02 - 00354656 _____ (DivX, Inc.) C:\Windows\SysWOW64\DivXControlPanelApplet.cpl
2014-04-14 04:24 - 2014-04-22 23:01 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-04-14 04:19 - 2014-04-22 23:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-04-03 09:51 - 2014-02-09 20:32 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-02-09 20:32 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2012-09-17 19:04 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

Files to move or delete:
====================
C:\Users\GrenSo\IP_Log_Data.js
C:\Users\GrenSo\Network_Meter_Data.js


Some content of TEMP:
====================
C:\Users\GrenSo\AppData\Local\Temp\NEventMessages.dll
C:\Users\GrenSo\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\GrenSo\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-24 00:15

==================== End Of Log ============================
--- --- ---
__________________

Geändert von GrenSo (25.04.2014 um 20:55 Uhr)

Antwort

Themen zu unregelmäßige aber stätige Ladefehler von Webseiten
64 bit, anderen, anti-malware, browser, erneut, internet, komische, ladefehler, netzwerkkarte, neu, neuinstallation, nichts, opera, parallel, platte, problem, probleme, router, seiten, störung, surfen, system, tablet, thema, unregelmäßige, verbindung, webseite, webseiten, windows 7, woche, öffnen


« Iminent - richtig enfernt? | Chrome plötzlich voll mit pop up werbung und es öffnen sich beim Klicken auf Links falsche Seiten mit Werbung »


Ähnliche Themen: unregelmäßige aber stätige Ladefehler von Webseiten


  1. Virus? Unregelmäßige Hintergrundklänge und Stimmen unbekannten ursprungs.
    Plagegeister aller Art und deren Bekämpfung - 28.05.2015 (13)
  2. Virus öffnet schädliche Webseiten und Werbeseiten + Webseiten voller Werbung
    Log-Analyse und Auswertung - 27.10.2014 (10)
  3. Windows 7: unregelmäßige Tasterturverzögerungen + unregelmäßiges Freeze
    Log-Analyse und Auswertung - 15.08.2014 (15)
  4. Seiten-ladefehler
    Plagegeister aller Art und deren Bekämpfung - 23.06.2013 (1)
  5. Unregelmäßige Selbstneustarts
    Log-Analyse und Auswertung - 28.09.2012 (34)
  6. Seiten Ladefehler DRINGEND
    Plagegeister aller Art und deren Bekämpfung - 28.09.2012 (7)
  7. unregelmäßige Abstürze - C:\Windows\Minidump\092012-49280-01.dmp
    Plagegeister aller Art und deren Bekämpfung - 24.09.2012 (1)
  8. Youtube Seiten-Ladefehler
    Antiviren-, Firewall- und andere Schutzprogramme - 02.06.2012 (4)
  9. unregelmäßige Bluescreens bei Youtube-Videos
    Alles rund um Windows - 29.08.2011 (19)
  10. Probleme beim Pc-Start, unregelmäßige Abstürze des Systems
    Log-Analyse und Auswertung - 01.08.2010 (8)
  11. Seiten-Ladefehler bei Firefox
    Plagegeister aller Art und deren Bekämpfung - 11.08.2009 (8)
  12. Seiten Ladefehler
    Diskussionsforum - 16.07.2009 (2)
  13. Unregelmäßige, häufige, ?grundlose? Disconnects - Hilfe
    Alles rund um Windows - 11.01.2009 (0)
  14. Unregelmäßige Probleme nach FF3 Update mit SP3
    Plagegeister aller Art und deren Bekämpfung - 01.10.2008 (1)
  15. unregelmäßige Internet-Ausfälle
    Antiviren-, Firewall- und andere Schutzprogramme - 29.06.2008 (9)
  16. unregelmäßige I-Netausfälle
    Log-Analyse und Auswertung - 14.08.2006 (21)
  17. Unregelmäßige Löschung des Verlaufes
    Plagegeister aller Art und deren Bekämpfung - 12.07.2006 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema unregelmäßige aber stätige Ladefehler von Webseiten - Das sind normalerweise versteckte Ordner, alles ok Downloade Dir bitte Malwarebytes Anti-Malware Installiere das Programm in den vorgegebenen Pfad. ( Bebilderte Anleitung zu MBAM ) Starte Malwarebytes' Anti-Malware (MBAM). Klicke - unregelmäßige aber stätige Ladefehler von Webseiten...
Archiv
Du betrachtest: unregelmäßige aber stätige Ladefehler von Webseiten auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131