Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Hacker oder Schleife

Hacker oder Schleife


Plagegeister aller Art und deren Bekämpfung: Hacker oder Schleife

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 29.05.2014, 20:12   #1
HilflosInter
 
Hacker oder Schleife - Icon21

Hacker oder Schleife


Guten Tag Liebe Leute,

Nachdem ich Hilfe von anderen Webseiten (GuteFrage.net) versucht hab zu bekommen, ist es mir immer noch nicht gelungen diese Blöde Dauerschleife aus meinem PC zu entfernen!

Also: Ich hab mir heute Mittag ein Spiel gedownloadet...

Ich habe es installiert und wollte einfach nur spielen. Plötzlich kam eine Meldung: "Eine neue Software ist Verfügbar" (Ich weiß nicht ob das was damit zu tuen hat)

Kurz Danach ging mein Rechner aus und an. Also ein Reboot

Der Bildschirm schwarz mit der Schrift: "PC is cleaning Viren"

Ich dachte mir schon, dass dies ein Versuch war mein Computer zu hacken.
Ich habe schnell Bitdefender (Mein Virenprogramm) angeschaltet (ist es zwar immer aber nur im Hintergrund) und habe einen Systemscan erstellt...

Nach 15minuten warten auf den Scan, ging eine Webseite auf, mit dem folgenden Link :Hack4Metin2 by ZimtFanta

Diese Webseite öffnet sich weiterhin jede Viertelstunde..
Ich habe aber nicht Verstanden woran es liegt...

Also Helft mir bitte wenn ihr könnt Danke
Alt 29.05.2014, 20:33   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Hacker oder Schleife - Standard

Hacker oder Schleife


Hi und

Zitat:
Also: Ich hab mir heute Mittag ein Spiel gedownloadet...
Bitte genauer. Was genau hast du von wo runtergeladen und installiert?
__________________

__________________
Alt 29.05.2014, 20:35   #3
HilflosInter
 
Hacker oder Schleife - Standard

Hacker oder Schleife


Ich habe für Metin2 einen Privat Server gedownloadet Also für ein Spiel von der Webiste Shiro2. ich war auf 2 Seiten die gleich aussahen aber die hatte 2 unterschiedliche namen... Kann es sein, dass es eine Fake seite war?
__________________
Alt 29.05.2014, 20:57   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Hacker oder Schleife - Standard

Hacker oder Schleife


Zitat:
Kann es sein, dass es eine Fake seite war?
Genau das vermute ich hier. Ich hab den Eindruck, dass gerade bei solchen Spielen viele auf Bauernfang sind.

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 29.05.2014, 21:47   #5
HilflosInter
 
Hacker oder Schleife - Standard

Hacker oder Schleife


Zitat: die Addition.txt

ist das auch auf meinem Dekstop?

Außerdem ist ja auch irgentwas auf meinem PC Gespeichert, denn es Wiederholt sich nach genau 15min...

AdditionalFRST Additions Logfile:
[CODE]Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-05-2014 02
Ran by MineBoy at 2014-05-29 22:01:47
Running from C:\Users\MineBoy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y1R730E8
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
ATI Catalyst Install Manager (HKLM\...\{47FDEFC7-BFE6-FD75-41D1-28DD572BD2D9}) (Version: 3.0.715.0 - ATI Technologies, Inc.)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender)
Blender (HKLM\...\Blender) (Version: 2.70 - Blender Foundation)
Brother MFL-Pro Suite MFC-9440CN (HKLM\...\{C83FB11D-9EC6-49D7-99A7-DDDB2264883C}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
Camtasia Studio 8 (HKLM\...\{F5C9BE9A-04C3-4A72-8CD0-BB67C722D608}) (Version: 8.1.2.1344 - TechSmith Corporation)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center HydraVision Full (Version: 2010.0210.2339.42455 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2010.0210.2339.42455 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2010.0210.2339.42455 - ATI) Hidden
CCC Help Chinese Standard (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Czech (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Danish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Dutch (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help English (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Finnish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help French (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help German (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Greek (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Hungarian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Italian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Japanese (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Korean (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Norwegian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Polish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Portuguese (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Russian (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Spanish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Swedish (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Thai (Version: 2010.0210.2338.42455 - ATI) Hidden
CCC Help Turkish (Version: 2010.0210.2338.42455 - ATI) Hidden
ccc-core-static (Version: 2010.0210.2339.42455 - Ihr Firmenname) Hidden
ccc-utility (Version: 2010.0210.2339.42455 - ATI) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{349F73CA-653A-43A6-AE77-970B07D6EDA0}) (Version: - Microsoft)
DisplayLink Core Software (HKLM\...\{3A01AB8A-0C37-423D-BBDB-71FF84408BCB}) (Version: 7.6.55049.0 - DisplayLink Corp.)
DisplayLink Graphics (HKLM\...\{59732D4D-EE62-4320-8264-E364C5618A6C}) (Version: 7.6.55102.0 - DisplayLink Corp.)
Fraps (remove only) (HKLM\...\Fraps) (Version: - )
Gameforge Live 2.0.1 "Baby Genius" (HKLM\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.1 - Gameforge)
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.7 - Google Inc.) Hidden
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Metin2 (HKLM\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Notepad++ (HKLM\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
QuickTime (HKLM\...\QuickTime) (Version: - )
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden
Skins (Version: 2010.0210.2339.42455 - ATI) Hidden
Skype Click to Call (HKLM\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
WinRAR 5.01 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Tanks (HKLM\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
YTD Video Downloader 4.7.4 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.7.4 - GreenTree Applications SRL)

==================== Restore Points =========================

15-05-2014 18:50:43 Installiert MFL-Pro Suite
15-05-2014 19:00:03 Gerätetreiber-Paketinstallation: Brother Bildverarbeitungsgeräte
15-05-2014 19:22:57 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {12FAEA8C-7577-4549-A514-61CFB23B5E65} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-05-02] (Google Inc.)
Task: {87BA8F66-22D4-446E-A470-46D06237BE6F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-05-02] (Google Inc.)
Task: {F2D71A30-BF36-404E-A01F-4F84814DD91B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-04-13 12:44 - 2014-03-15 00:05 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2014-04-13 12:45 - 2014-03-27 19:17 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2014-04-13 12:44 - 2011-11-14 19:17 - 00132176 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2014-04-13 12:45 - 2014-03-27 19:17 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-05-29 16:34 - 2014-05-29 16:34 - 00668840 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00034_003\ashttpbr.mdl
2014-05-29 16:34 - 2014-05-29 16:34 - 00489120 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00034_003\ashttpdsp.mdl
2014-05-29 16:34 - 2014-05-29 16:34 - 02137584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00034_003\ashttpph.mdl
2014-05-29 16:34 - 2014-05-29 16:34 - 01124088 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00034_003\ashttprbl.mdl
2014-05-15 20:56 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2014-05-15 20:56 - 2002-11-26 13:43 - 00106496 ____N () C:\Windows\system32\BrMuSNMP.dll
2014-04-13 12:45 - 2013-03-25 15:16 - 00919136 _____ () C:\Program Files\Bitdefender\Bitdefender SafeBox\System.Data.SQLite.dll
2014-04-13 12:43 - 2013-09-03 13:29 - 00095088 _____ () C:\Program Files\Bitdefender\Bitdefender\bdmetrics.dll
2014-05-29 18:17 - 2014-05-29 18:17 - 00018944 _____ () C:\Users\MineBoy\AppData\Roaming\M2T\Paranormal.exe
2014-03-28 21:51 - 2014-03-28 21:51 - 00014848 _____ () C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
2009-11-24 14:36 - 2009-11-24 14:36 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\MineBoy\Downloads\MFC-9440CN-inst-win7-A2.EXE:BDU
AlternateDataStreams: C:\Users\MineBoy\Downloads\TeamSpeak3-Client-win32-3.0.14.exe:BDU
AlternateDataStreams: C:\Users\MineBoy\Documents\camtasiade_8.1.2.exe:BDU

==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============

Name: SCSI-Controller
Description: SCSI-Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/29/2014 10:02:21 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 22:02:21.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 10:01:08 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 22:01:08.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:59:57 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:59:57.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:58:46 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:58:46.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:57:34 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:57:34.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:56:21 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:56:21.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:55:08 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:55:08.115]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:53:57 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:53:57.115]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:52:46 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:52:46.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:51:34 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STI BrtSTI: [2014/05/29 21:51:34.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]


System errors:
=============
Error: (05/29/2014 07:59:19 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Netman erreicht.

Error: (05/29/2014 07:59:19 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (05/29/2014 07:03:59 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/29/2014 06:28:38 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/29/2014 06:15:26 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/29/2014 04:25:27 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/29/2014 10:23:33 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/28/2014 07:36:02 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/28/2014 02:10:39 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/27/2014 08:03:54 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)


Microsoft Office Sessions:
=========================
Error: (05/29/2014 10:02:21 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 22:02:21.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 10:01:08 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 22:01:08.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:59:57 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:59:57.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:58:46 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:58:46.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:57:34 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:57:34.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:56:21 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:56:21.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:55:08 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:55:08.115]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:53:57 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:53:57.115]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:52:46 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:52:46.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]

Error: (05/29/2014 09:51:34 PM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: STIBrtSTI: [2014/05/29 21:51:34.114]: [00002112]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[192.168.178.99]


==================== Memory info ===========================

Percentage of memory in use: 39%
Total physical RAM: 3070.16 MB
Available physical RAM: 1853.96 MB
Total Pagefile: 6138.62 MB
Available Pagefile: 4674.79 MB
Total Virtual: 2799.88 MB
Available Virtual: 2641.71 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:149 GB) (Free:54.61 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: BD296E65)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End Of Log ============================


FRST
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-05-2014 02
Ran by MineBoy (administrator) on PC-LUKAS on 29-05-2014 21:59:57
Running from C:\Users\MineBoy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Y1R730E8
Platform: Microsoft Windows 7 Professional  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
(DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Safebox\safeboxservice.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
() C:\Users\MineBoy\AppData\Roaming\M2T\Paranormal.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\odscanui.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil32_13_0_0_214_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StartCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2010-02-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [98304 2014-03-29] (Apple Computer, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1835288 2014-05-27] (Bitdefender)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM\...\Run: [Paranormal] => C:\Users\MineBoy\AppData\Roaming\M2T\Paranormal.exe [18944 2014-05-29] ()
HKU\.DEFAULT\...\Run: [Bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482904 2014-05-27] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-05-27] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender Wallet Application Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482904 2014-05-27] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-05-27] (Bitdefender)
HKU\.DEFAULT\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
HKU\S-1-5-21-4224756477-1649413957-3298938220-1000\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482904 2014-05-27] (Bitdefender)
HKU\S-1-5-21-4224756477-1649413957-3298938220-1000\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-05-27] (Bitdefender)
HKU\S-1-5-21-4224756477-1649413957-3298938220-1000\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
HKU\S-1-5-21-4224756477-1649413957-3298938220-1000\...\Policies\system: [DisableTaskMgr] 1
HKU\S-1-5-21-4224756477-1649413957-3298938220-1000\...\Policies\system: [DisableRegistryTools] 1

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.de/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Handler: http - No CLSID Value - 
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\ffpwdman\
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\ffpwdman\ []
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2014-04-13]

Chrome: 
=======
CHR HomePage: hxxp://ww.google.de/
CHR Extension: (Google Docs) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-28]
CHR Extension: (Google Drive) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-02]
CHR Extension: (YouTube) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-02]
CHR Extension: (Bitdefender Wallet) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-05-02]
CHR Extension: (Google-Suche) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-02]
CHR Extension: (Google Wallet) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-02]
CHR Extension: (Google Mail) - C:\Users\MineBoy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-02]
CHR HKLM\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\pmbxcr.crx [2014-04-13]

========================== Services (Whitelisted) =================

S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [69880 2014-03-15] (Bitdefender)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [8364336 2014-04-22] (DisplayLink Corp.)
S2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [81704 2013-07-08] (Bitdefender)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [54424 2014-03-15] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1251296 2014-05-27] (Bitdefender)

==================== Drivers (Whitelisted) ====================

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [778032 2013-12-02] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [242504 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [516936 2013-12-02] (BitDefender)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2014-02-25] (Avira Operations GmbH & Co. KG)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [77632 2014-05-27] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [90704 2011-11-14] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [108008 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [66832 2013-11-04] (BitDefender SRL)
R1 bdselfpr; C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [135600 2013-07-26] (BitDefender LLC)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [72704 2012-04-17] (BitDefender)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [165744 2013-08-23] (BitDefender LLC)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [360376 2013-08-07] (BitDefender S.R.L.)
S3 EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-29 21:59 - 2014-05-29 21:59 - 00000000 ____D () C:\FRST
2014-05-29 20:40 - 2014-05-29 20:40 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-29 20:39 - 2014-05-29 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-29 20:38 - 2014-05-29 20:39 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-29 20:38 - 2014-05-29 20:38 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-29 20:38 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-29 20:38 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-29 20:38 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-29 18:12 - 2014-05-29 18:12 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Hack4M2T_RELOADED
2014-05-29 17:55 - 2014-05-29 18:17 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\M2T
2014-05-15 21:31 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-15 21:31 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-15 21:31 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-15 21:26 - 2014-05-15 21:26 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-15 21:21 - 2014-04-12 04:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-15 21:21 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-15 21:21 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-15 21:21 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-15 21:21 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-15 21:21 - 2014-04-12 04:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-15 21:21 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-15 21:21 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-05-15 21:21 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-15 21:21 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-15 21:21 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-15 21:21 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-15 21:20 - 2014-05-15 21:20 - 00000244 _____ () C:\Windows\Brpfx04a.ini
2014-05-15 21:20 - 2014-05-15 21:20 - 00000093 _____ () C:\Windows\brpcfx.ini
2014-05-15 21:20 - 2014-05-15 21:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-05-15 21:20 - 2014-05-09 09:06 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-15 21:20 - 2014-05-09 09:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-15 21:20 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-15 21:17 - 2014-05-17 19:06 - 00000432 _____ () C:\Windows\BRWMARK.INI
2014-05-15 21:17 - 2014-05-15 21:17 - 00000026 _____ () C:\Windows\BRPP2KA.INI
2014-05-15 20:56 - 2014-05-15 21:17 - 00000065 _____ () C:\Windows\system32\bd9440cn.dat
2014-05-15 20:56 - 2014-05-15 20:56 - 00000066 _____ () C:\Windows\Brfaxrx.ini
2014-05-15 20:56 - 2014-05-15 20:56 - 00000000 ____D () C:\Users\Public\Documents\BrFaxRx
2014-05-15 20:56 - 2009-07-21 15:31 - 01534464 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWia09b.dll
2014-05-15 20:56 - 2009-05-21 00:00 - 00111928 _____ (Brother Industries Ltd) C:\Windows\system32\BRRBTOOL.EXE
2014-05-15 20:56 - 2009-02-24 13:59 - 00072192 ____N (Brother Industries, Ltd.) C:\Windows\system32\BrNetSti.dll
2014-05-15 20:56 - 2009-02-24 12:51 - 00073216 ____N (Brother Industries,Ltd.) C:\Windows\system32\BrWiaNCp.dll
2014-05-15 20:56 - 2009-02-24 12:51 - 00046592 ____N (Brother Industries,Ltd) C:\Windows\system32\Brnsplg.dll
2014-05-15 20:56 - 2009-01-15 19:20 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2S.dll
2014-05-15 20:56 - 2008-10-17 20:02 - 00126976 ____N (Brother Industries, Ltd.) C:\Windows\system32\BrfxD05b.dll
2014-05-15 20:56 - 2008-08-23 19:17 - 00118784 ____N (Brother Industries,LTD.) C:\Windows\system32\BrMfNt.dll
2014-05-15 20:56 - 2007-12-13 22:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2.dll
2014-05-15 20:56 - 2007-12-13 22:16 - 00005632 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2L.dll
2014-05-15 20:56 - 2006-12-21 11:23 - 00176128 _____ (Brother Industries, Ltd.) C:\Windows\system32\BROSNMP.DLL
2014-05-15 20:56 - 2006-07-07 12:40 - 00073728 ____N (Brother Industories Ltd. P&S Company) C:\Windows\system32\BRCrypt.dll
2014-05-15 20:56 - 2005-01-17 16:10 - 00045056 _____ () C:\Windows\system32\BRTCPCON.DLL
2014-05-15 20:56 - 2004-08-09 15:42 - 00077824 _____ (Brother Industries, Ltd.) C:\Windows\system32\BRLMW03A.DLL
2014-05-15 20:56 - 2003-11-28 18:57 - 00000000 _____ () C:\Windows\brdfxspd.dat
2014-05-15 20:56 - 2002-11-26 13:43 - 00106496 ____N () C:\Windows\system32\BrMuSNMP.dll
2014-05-15 20:56 - 1999-10-27 01:00 - 00000050 _____ () C:\Windows\system32\BAOCH06A.DAT
2014-05-15 20:55 - 2014-05-15 20:56 - 00000000 ____D () C:\Program Files\Brother
2014-05-15 20:55 - 2014-05-15 20:55 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-05-15 20:55 - 2008-06-17 15:33 - 00167936 ____N (brother) C:\Windows\system32\NSSearch.dll
2014-05-15 20:55 - 2007-01-16 00:00 - 00024223 _____ (Brother Industries, Ltd) C:\Windows\system32\BRLM03A.DLL
2014-05-15 20:55 - 2004-08-09 16:00 - 00000114 _____ () C:\Windows\system32\BRLMW03A.INI
2014-05-15 20:49 - 2014-05-15 20:49 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\InstallShield
2014-05-15 20:49 - 2014-05-15 20:49 - 00000000 ____D () C:\ProgramData\Brother
2014-05-15 20:44 - 2014-05-15 20:48 - 45521895 _____ (A.I.SOFT,INC.) C:\Users\MineBoy\Downloads\MFC-9440CN-inst-win7-A2.EXE
2014-05-15 18:57 - 2014-05-15 18:57 - 00276270 _____ () C:\Users\MineBoy\Documents\Blauer.xps
2014-05-05 17:55 - 2014-05-05 17:55 - 00006006 _____ () C:\Users\MineBoy\Documents\Stundenplan.odt
2014-05-05 17:42 - 2014-05-16 13:07 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-05 17:42 - 2014-05-05 17:42 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-05-05 17:42 - 2014-05-05 17:42 - 00000000 ____D () C:\Program Files\Adobe
2014-05-05 17:41 - 2014-05-05 17:46 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-05 14:23 - 2014-05-08 15:36 - 00000000 ____D () C:\Users\MineBoy\Documents\Rechner
2014-05-03 23:08 - 2014-05-15 21:47 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-03 17:14 - 2014-05-03 17:14 - 00000000 ____D () C:\Program Files\DisplayLink Graphics
2014-05-03 17:11 - 2014-05-03 17:12 - 00004830 _____ () C:\Windows\DPINST.LOG
2014-05-03 17:10 - 2014-05-03 17:11 - 00000000 ____D () C:\Program Files\DisplayLink Core Software
2014-05-03 17:07 - 2014-05-03 17:07 - 00000000 _____ () C:\Windows\system32\dlumd9.dll
2014-05-03 17:07 - 2014-05-03 17:07 - 00000000 _____ () C:\Windows\system32\dlumd11.dll
2014-05-03 17:07 - 2014-05-03 17:07 - 00000000 _____ () C:\Windows\system32\dlumd10.dll
2014-05-02 21:26 - 2014-05-29 21:42 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-02 21:26 - 2014-05-29 19:03 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-02 21:26 - 2014-05-02 21:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-02 21:25 - 2014-05-02 21:25 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Deployment
2014-05-02 21:25 - 2014-05-02 21:25 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Apps\2.0
2014-04-30 18:22 - 2014-04-30 18:22 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\Wargaming.net

==================== One Month Modified Files and Folders =======

2014-05-29 21:59 - 2014-05-29 21:59 - 00000000 ____D () C:\FRST
2014-05-29 21:44 - 2014-03-28 21:08 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-29 21:42 - 2014-05-02 21:26 - 00001100 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-29 20:53 - 2014-03-28 21:23 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\.minecraft
2014-05-29 20:40 - 2014-05-29 20:40 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-29 20:39 - 2014-05-29 20:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-05-29 20:39 - 2014-05-29 20:38 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-05-29 20:38 - 2014-05-29 20:38 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-29 20:38 - 2014-04-14 11:46 - 00000000 ____D () C:\Users\MineBoy\Desktop\Dokumente
2014-05-29 20:06 - 2014-03-28 20:32 - 01931122 _____ () C:\Windows\WindowsUpdate.log
2014-05-29 19:10 - 2009-07-14 06:34 - 00026752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-29 19:10 - 2009-07-14 06:34 - 00026752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-29 19:03 - 2014-05-02 21:26 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-29 19:02 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-29 19:02 - 2009-07-14 06:39 - 00033897 _____ () C:\Windows\setupact.log
2014-05-29 19:00 - 2014-04-13 12:48 - 00000309 ____H () C:\bdr-cf01
2014-05-29 18:17 - 2014-05-29 17:55 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\M2T
2014-05-29 18:13 - 2010-11-20 23:48 - 00278828 _____ () C:\Windows\PFRO.log
2014-05-29 18:12 - 2014-05-29 18:12 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Hack4M2T_RELOADED
2014-05-28 19:46 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-05-26 15:44 - 2014-03-28 21:08 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\Skype
2014-05-24 18:03 - 2014-04-11 20:20 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\TS3Client
2014-05-22 16:55 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-05-17 19:06 - 2014-05-15 21:17 - 00000432 _____ () C:\Windows\BRWMARK.INI
2014-05-16 13:29 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-16 13:07 - 2014-05-05 17:42 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-15 21:47 - 2014-05-03 23:08 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-15 21:47 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-05-15 21:31 - 2014-04-04 18:15 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-15 21:28 - 2014-04-04 18:15 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-15 21:26 - 2014-05-15 21:26 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-15 21:26 - 2014-04-04 18:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-15 21:21 - 2014-04-14 11:46 - 00000000 ____D () C:\Users\MineBoy\Desktop\Ordner
2014-05-15 21:20 - 2014-05-15 21:20 - 00000244 _____ () C:\Windows\Brpfx04a.ini
2014-05-15 21:20 - 2014-05-15 21:20 - 00000093 _____ () C:\Windows\brpcfx.ini
2014-05-15 21:20 - 2014-05-15 21:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-05-15 21:17 - 2014-05-15 21:17 - 00000026 _____ () C:\Windows\BRPP2KA.INI
2014-05-15 21:17 - 2014-05-15 20:56 - 00000065 _____ () C:\Windows\system32\bd9440cn.dat
2014-05-15 21:02 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32
2014-05-15 20:56 - 2014-05-15 20:56 - 00000066 _____ () C:\Windows\Brfaxrx.ini
2014-05-15 20:56 - 2014-05-15 20:56 - 00000000 ____D () C:\Users\Public\Documents\BrFaxRx
2014-05-15 20:56 - 2014-05-15 20:55 - 00000000 ____D () C:\Program Files\Brother
2014-05-15 20:55 - 2014-05-15 20:55 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-05-15 20:49 - 2014-05-15 20:49 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\InstallShield
2014-05-15 20:49 - 2014-05-15 20:49 - 00000000 ____D () C:\ProgramData\Brother
2014-05-15 20:48 - 2014-05-15 20:44 - 45521895 _____ (A.I.SOFT,INC.) C:\Users\MineBoy\Downloads\MFC-9440CN-inst-win7-A2.EXE
2014-05-15 18:57 - 2014-05-15 18:57 - 00276270 _____ () C:\Users\MineBoy\Documents\Blauer.xps
2014-05-14 16:52 - 2014-04-14 11:45 - 00000000 ____D () C:\Users\MineBoy\Desktop\Schule
2014-05-13 20:45 - 2014-03-28 21:08 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-13 20:45 - 2014-03-28 21:08 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-12 07:26 - 2014-05-29 20:38 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-05-12 07:25 - 2014-05-29 20:38 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-05-12 07:25 - 2014-05-29 20:38 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-05-09 09:06 - 2014-05-15 21:20 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:04 - 2014-05-15 21:20 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 17:19 - 2014-04-11 12:49 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\CrashDumps
2014-05-08 15:36 - 2014-05-05 14:23 - 00000000 ____D () C:\Users\MineBoy\Documents\Rechner
2014-05-06 05:25 - 2014-05-15 21:31 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 05:07 - 2014-05-15 21:31 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 04:10 - 2014-05-15 21:31 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-05 17:55 - 2014-05-05 17:55 - 00006006 _____ () C:\Users\MineBoy\Documents\Stundenplan.odt
2014-05-05 17:46 - 2014-05-05 17:41 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-05 17:46 - 2014-03-28 21:09 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\Adobe
2014-05-05 17:46 - 2014-03-28 21:07 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Adobe
2014-05-05 17:43 - 2014-03-28 21:08 - 00000000 ____D () C:\ProgramData\Google
2014-05-05 17:43 - 2014-03-28 21:08 - 00000000 ____D () C:\Program Files\Google
2014-05-05 17:42 - 2014-05-05 17:42 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-05-05 17:42 - 2014-05-05 17:42 - 00000000 ____D () C:\Program Files\Adobe
2014-05-03 17:14 - 2014-05-03 17:14 - 00000000 ____D () C:\Program Files\DisplayLink Graphics
2014-05-03 17:12 - 2014-05-03 17:11 - 00004830 _____ () C:\Windows\DPINST.LOG
2014-05-03 17:11 - 2014-05-03 17:10 - 00000000 ____D () C:\Program Files\DisplayLink Core Software
2014-05-03 17:07 - 2014-05-03 17:07 - 00000000 _____ () C:\Windows\system32\dlumd9.dll
2014-05-03 17:07 - 2014-05-03 17:07 - 00000000 _____ () C:\Windows\system32\dlumd11.dll
2014-05-03 17:07 - 2014-05-03 17:07 - 00000000 _____ () C:\Windows\system32\dlumd10.dll
2014-05-02 21:26 - 2014-05-02 21:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-02 21:25 - 2014-05-02 21:25 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Deployment
2014-05-02 21:25 - 2014-05-02 21:25 - 00000000 ____D () C:\Users\MineBoy\AppData\Local\Apps\2.0
2014-05-02 13:11 - 2010-11-20 23:01 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-30 18:22 - 2014-04-30 18:22 - 00000000 ____D () C:\Users\MineBoy\AppData\Roaming\Wargaming.net

Some content of TEMP:
====================
C:\Users\MineBoy\AppData\Local\Temp\avgnt.exe
C:\Users\MineBoy\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\MineBoy\AppData\Local\Temp\ose00000.exe
C:\Users\MineBoy\AppData\Local\Temp\ose00001.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe
[2014-05-15 21:21] - [2014-03-04 11:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67

C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-22 16:48

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

--- --- ---

du bist inaktiv?


Alt 30.05.2014, 13:18   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Hacker oder Schleife - Standard

Hacker oder Schleife


Zitat:
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
Einer davon muss umgehend runter! Am besten Avira, das empfehlen wir schon lange nicht mehr

Bevor du das deinstallierst bitte nach Logs mit Funden Ausschau halten und posten. Auch von Malwarebytes. Siehe http://www.trojaner-board.de/125889-...tml#post941520
__________________
--> Hacker oder Schleife

Antwort

Themen zu Hacker oder Schleife
bildschirm, bildschirm schwarz, bitdefender, computer, defender, einfach, entfernen, folge, gen, hacker, hilfe, hintergrund, keineahnung, leute, link, meldung, metin2, neue, plötzlich, programm, rechner, schleife, schnell, software, spiele, viren, webseite, webseiten, öffnet


« Windows 7: Win32:Dropper-gen [Drp] nach download gefunden | Telekom Trojaner jetzt auch bei mir :( »


Ähnliche Themen: Hacker oder Schleife


  1. Evtl. Hacker oder Schädling auf dem Pc
    Plagegeister aller Art und deren Bekämpfung - 17.06.2014 (17)
  2. Android-Bug provoziert Reboot-Schleife
    Nachrichten - 25.03.2014 (0)
  3. Rescue Scan hängt in einer Schleife
    Log-Analyse und Auswertung - 06.01.2014 (1)
  4. Windows XP: Neustart Schleife
    Alles rund um Windows - 30.01.2013 (5)
  5. E-Mail Konto (Trojaner oder Hacker) ?
    Plagegeister aller Art und deren Bekämpfung - 27.12.2012 (33)
  6. lost+found: Hacker-Fehlalarm, Hacker-Sündenbock, Captcha-Hacker, Hacker-Apps
    Nachrichten - 02.11.2012 (0)
  7. Update-Schleife unter Windows XP
    Nachrichten - 29.05.2012 (0)
  8. Update-Schleife unter Windows XP
    Nachrichten - 23.05.2012 (0)
  9. Virus oder Hacker?
    Log-Analyse und Auswertung - 19.05.2012 (3)
  10. css hack steam hacker oder akzeptabel
    Plagegeister aller Art und deren Bekämpfung - 20.04.2011 (2)
  11. Windows startup in Endlos-Schleife
    Alles rund um Windows - 13.07.2009 (1)
  12. Trojaner oder Hacker?? PC spinnt
    Log-Analyse und Auswertung - 12.07.2009 (3)
  13. Hacker????oder was ist das
    Log-Analyse und Auswertung - 10.03.2009 (1)
  14. sp.exe - Trojaner, Virus oder Hacker??? -> Help :(
    Plagegeister aller Art und deren Bekämpfung - 31.05.2007 (58)
  15. Hacker Alarm--- oder nur show?
    Plagegeister aller Art und deren Bekämpfung - 03.09.2006 (3)
  16. Endlos Torjaner Schleife AURORA?
    Plagegeister aller Art und deren Bekämpfung - 13.08.2005 (1)
  17. wurm oder hacker atacke???
    Plagegeister aller Art und deren Bekämpfung - 06.03.2005 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Hacker oder Schleife - Guten Tag Liebe Leute, Nachdem ich Hilfe von anderen Webseiten (GuteFrage.net) versucht hab zu bekommen, ist es mir immer noch nicht gelungen diese Blöde Dauerschleife aus meinem PC zu entfernen! - Hacker oder Schleife...
Archiv
Du betrachtest: Hacker oder Schleife auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129