Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Windows 7 öffnet machne Webseiten nicht mehr ! (https://www.trojaner-board.de/142997-windows-7-oeffnet-machne-webseiten-mehr.html)

ichbins2000 14.10.2013 06:07
Windows 7 öffnet machne Webseiten nicht mehr !
 
Hallo liebes Trojaner Board.
Ich habe seit diesem Wochenende Probleme mit meinem Laptop.
Ich kann sehr viele Seiten nicht mehr öffnen z.b google , da angeblich google keine vertrauenswürdige Seite ist . Habe Windows 7 auch schon neuinstalliert , jedoch bringt es nichts . Der quatsch mit den nicht vertrauenswürdigen Seiten kommt erst seit der Neuinstallation von Windows 7 . Kommischerweiße hatte ich nach der Neuinstallation noch nie Probleme . (Die Kiste wurde wegen einem Malwarebefall Neuinstalliert )!
Hoffe es kann mir jemand helfen !
L.g

schrauber 14.10.2013 07:33
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


ichbins2000 14.10.2013 14:11

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013
Ran by julian (administrator) on JULIAN-PC on 10-06-2010 15:09:28
Running from C:\Users\julian\Downloads
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
() C:\Program Files (x86)\Opera\17.0.1241.45\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\17.0.1241.45\opera.exe

==================== Registry (Whitelisted) ==================


==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x002274B98506CB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO-x32: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1

==================== Services (Whitelisted) =================


==================== Drivers (Whitelisted) ====================


==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2011-07-25 12:40 - 2010-06-08 13:59 - 00300832 _____ (Sysinternals - www.sysinternals.com) C:\Users\julian\Desktop\Tcpview.exe
2010-06-10 15:08 - 2010-06-10 15:08 - 01954124 _____ (Farbar) C:\Users\julian\Downloads\FRST64.exe
2010-06-10 15:08 - 2010-06-10 15:08 - 00000000 ____D C:\FRST
2010-06-09 17:18 - 2012-05-15 11:56 - 00000029 _____ C:\Users\julian\Desktop\Serial (Not needed for installation).txt
2010-06-09 17:17 - 2010-06-09 17:17 - 00000000 ____D C:\Program Files\7-Zip
2010-06-09 14:30 - 2010-06-09 14:30 - 00000000 ____D C:\Users\julian\AppData\Roaming\TrueCrypt
2010-06-09 14:29 - 2010-06-09 14:29 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys
2010-06-09 14:29 - 2010-06-09 14:29 - 00000875 _____ C:\Users\Public\Desktop\TrueCrypt.lnk
2010-06-09 14:29 - 2010-06-09 14:29 - 00000000 ____D C:\Program Files\TrueCrypt
2010-06-09 14:28 - 2010-06-09 14:29 - 03466248 _____ (TrueCrypt Foundation) C:\Users\julian\Downloads\TrueCrypt Setup 7.1a.exe
2010-06-09 14:28 - 2010-06-09 14:28 - 01376768 _____ C:\Users\julian\Downloads\7z920-x64 (1).msi
2010-06-09 14:07 - 2010-06-09 14:08 - 02074056 _____ C:\Users\julian\Downloads\winrar-x64-500d.exe
2010-06-09 14:07 - 2010-06-09 14:07 - 01376768 _____ C:\Users\julian\Downloads\7z920-x64.msi
2010-06-09 12:13 - 2010-06-09 12:13 - 01333344 _____ (Uniblue Systems Ltd                                        ) C:\Users\julian\Downloads\speedupmypc.exe
2010-06-09 12:01 - 2010-06-09 12:01 - 04745728 _____ (AVAST Software) C:\Users\julian\Downloads\aswMBR.exe
2010-06-08 23:09 - 2010-06-08 23:09 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2010-06-08 23:09 - 2010-06-08 23:09 - 00001238 _____ C:\Users\Public\Desktop\Find Drivers with BIOSAgentPlus.lnk
2010-06-08 23:09 - 2010-06-08 23:09 - 00000000 ____D C:\Users\julian\AppData\Local\eSupport.com
2010-06-08 23:09 - 2010-06-08 23:09 - 00000000 ____D C:\Program Files (x86)\eSupport.com
2010-06-08 23:07 - 2010-06-08 23:08 - 05510712 _____ (Copyright © 2013 eSupport.com, Inc • All Rights Reserved    ) C:\Users\julian\Downloads\biosagentplus_setup_avg_1218.exe
2010-06-08 23:06 - 2010-06-08 23:07 - 01461568 _____ (                                                            ) C:\Users\julian\Downloads\cpu-z_1.67-setup-en (1).exe
2010-06-08 23:06 - 2010-06-08 23:06 - 00000869 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2010-06-08 23:06 - 2010-06-08 23:06 - 00000000 ____D C:\Program Files\CPUID
2010-06-08 23:05 - 2010-06-08 23:05 - 01461568 _____ (                                                            ) C:\Users\julian\Downloads\cpu-z_1.67-setup-en.exe
2010-06-08 21:49 - 2010-06-08 21:49 - 01605632 _____ C:\Users\julian\Desktop\Bootchecker.iso
2010-06-08 21:25 - 2010-06-08 21:25 - 01283592 _____ (Avira Operations GmbH & Co. KG) C:\Users\julian\Downloads\AviraDNSRepairDE.exe
2010-06-08 21:24 - 2010-06-08 21:25 - 03313664 _____ (Avira GmbH) C:\Users\julian\Downloads\bootwizard.exe
2010-06-08 21:22 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2010-06-08 21:22 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2010-06-08 21:22 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2010-06-08 21:22 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2010-06-08 20:58 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2010-06-08 20:58 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2010-06-08 20:58 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2010-06-08 20:58 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2010-06-08 20:58 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2010-06-08 20:34 - 2010-06-09 12:53 - 00001945 _____ C:\Windows\epplauncher.mif
2010-06-08 20:14 - 2010-04-09 13:06 - 01898376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2010-06-08 20:14 - 2010-04-09 13:06 - 00374664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2010-06-08 20:10 - 2010-06-08 20:13 - 13842112 _____ (Microsoft Corporation) C:\Users\julian\Downloads\mseinstall.exe
2010-06-08 20:06 - 2010-06-08 20:09 - 00000000 ____D C:\Users\julian\AppData\Roaming\UseNeXT
2010-06-08 20:06 - 2010-06-08 20:06 - 00001857 _____ C:\Users\julian\Desktop\UseNeXT.lnk
2010-06-08 20:06 - 2010-06-08 20:06 - 00000000 ____D C:\Users\julian\Documents\UseNeXT
2010-06-08 20:06 - 2010-06-08 20:06 - 00000000 ____D C:\Program Files (x86)\UseNeXT
2010-06-08 20:03 - 2010-06-08 20:03 - 00614816 _____ C:\Users\julian\Downloads\UseNeXT5.28.exe
2010-06-08 19:36 - 2010-06-08 19:44 - 48227088 _____ C:\Users\julian\Downloads\WXPVOL_DE.ISO
2010-06-08 17:26 - 2010-06-08 17:27 - 00864784 _____ (Microsoft Corporation) C:\Users\julian\Downloads\mssstool32.exe
2010-06-08 17:24 - 2010-06-08 17:31 - 40828928 _____ C:\Users\julian\Downloads\fd11src.iso
2010-06-08 16:41 - 2010-06-08 18:18 - 00000078 _____ C:\Users\julian\Desktop\link.txt
2010-06-08 16:39 - 2010-06-08 16:39 - 00075204 _____ C:\Users\julian\Downloads\uf140.zip
2010-06-08 15:50 - 2010-06-08 15:50 - 00001129 _____ C:\Users\Public\Desktop\Opera.lnk
2010-06-08 15:50 - 2010-06-08 15:50 - 00000000 ____D C:\Users\julian\AppData\Roaming\Opera Software
2010-06-08 15:50 - 2010-06-08 15:50 - 00000000 ____D C:\Users\julian\AppData\Local\Opera Software
2010-06-08 15:50 - 2010-06-08 15:50 - 00000000 ____D C:\Program Files (x86)\Opera
2010-06-08 15:39 - 2010-06-08 15:50 - 33678208 _____ (Opera Software ASA) C:\Users\julian\Downloads\Opera_17.0.1241.45_Setup.exe
2010-06-08 15:32 - 2010-06-08 15:32 - 00000000 ____D C:\Users\julian\AppData\Local\Deployment
2010-06-08 15:32 - 2010-06-08 15:32 - 00000000 ____D C:\Users\julian\AppData\Local\Apps\2.0
2010-06-08 15:28 - 2010-06-08 15:28 - 00000000 ____D C:\Users\julian\AppData\Roaming\Free Download Manager
2010-06-08 15:27 - 2010-06-08 15:27 - 00001067 _____ C:\Users\julian\Desktop\Free Download Manager.lnk
2010-06-08 15:27 - 2010-06-08 15:27 - 00000000 ____D C:\Program Files (x86)\Free Download Manager
2010-06-08 14:26 - 2010-06-08 14:26 - 05192704 _____ (Geza Kovacs) C:\Users\julian\Desktop\unetbootin-windows-585.exe
2010-06-08 14:20 - 2010-06-08 14:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-06-08 14:12 - 2010-06-08 14:17 - 35463168 _____ C:\Users\julian\Desktop\PING-3.02.iso
2010-06-08 13:59 - 2010-06-08 13:59 - 14021962 _____ C:\Users\julian\Downloads\SARDU_2.0.6.5.zip
2010-06-08 13:58 - 2010-06-08 13:59 - 00291606 _____ C:\Users\julian\Downloads\TCPView.zip
2010-06-08 12:57 - 2010-06-08 12:57 - 04404080 _____ (Microsoft Corporation) C:\Users\julian\Downloads\winxpsp1_en_hom_bf.exe
2010-06-08 12:56 - 2010-06-08 12:56 - 04386176 _____ (Microsoft Corporation) C:\Users\julian\Downloads\WinXP_EN_HOM_BF.EXE
2010-06-08 12:14 - 2010-06-08 12:14 - 05343426 _____ C:\Users\julian\Desktop\WIN_R540_08JV.exe
2010-06-08 12:00 - 2010-06-08 12:00 - 00001405 _____ C:\Users\julian\Desktop\Internet Explorer (64-bit).lnk
2010-06-07 23:53 - 2010-06-07 23:53 - 00001003 _____ C:\Users\julian\Desktop\WinFuture xp-Iso-Builder.lnk
2010-06-07 23:53 - 2010-06-07 23:53 - 00000000 ____D C:\Program Files (x86)\xp-Iso-Builder
2010-06-07 23:53 - 2007-05-12 09:23 - 01071088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl.ocx
2010-06-07 23:53 - 2007-05-12 09:23 - 00224016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2010-06-07 23:53 - 2007-05-12 09:23 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2010-06-07 23:43 - 2010-06-07 23:43 - 00000000 ____D C:\Users\julian\Desktop\pcwWin7PE
2010-06-07 23:30 - 2010-06-07 23:30 - 07753025 _____ (FreeDownloadManager.ORG                                    ) C:\Users\julian\Downloads\fdminst.exe
2010-06-07 23:15 - 2010-06-07 23:20 - 00000000 ____D C:\Program Files (x86)\nLite
2010-06-07 23:15 - 2010-06-07 23:15 - 03092150 _____ (Dino Nuhagic (nuhi)                                        ) C:\Users\julian\Downloads\nLite-1.4.9.3.setup.exe
2010-06-07 23:15 - 2010-06-07 23:15 - 00057560 _____ C:\Users\julian\AppData\Local\GDIPFONTCACHEV1.DAT
2010-06-07 23:15 - 2010-06-07 23:15 - 00000963 _____ C:\Users\julian\Desktop\nLite.lnk
2010-06-07 22:35 - 2010-06-07 22:35 - 00001405 _____ C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2010-06-07 22:34 - 2010-06-08 09:07 - 00000000 __SHD C:\Recovery
2010-06-07 22:34 - 2010-06-07 23:08 - 00000000 ____D C:\Users\julian
2010-06-07 22:34 - 2010-06-07 22:35 - 00001439 _____ C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2010-06-07 22:34 - 2010-06-07 22:35 - 00000000 ___RD C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2010-06-07 22:34 - 2010-06-07 22:35 - 00000000 ___RD C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2010-06-07 22:34 - 2010-06-07 22:34 - 00000020 ___SH C:\Users\julian\ntuser.ini
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Vorlagen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Startmenü
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Netzwerkumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Lokale Einstellungen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Eigene Dateien
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Druckumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\AppData\Local\Verlauf
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\AppData\Local\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Vorlagen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Startmenü
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Vorlagen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Startmenü
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Favoriten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Dokumente
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Dokumente und Einstellungen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 ____D C:\Users\julian\AppData\Local\VirtualStore
2010-06-07 22:34 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2010-06-07 22:34 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2010-06-07 21:32 - 2010-06-07 21:32 - 00001313 _____ C:\Windows\TSSysprep.log
2010-06-07 21:30 - 2010-06-10 15:09 - 00225754 _____ C:\Windows\WindowsUpdate.log
2010-06-07 14:24 - 2010-06-07 22:34 - 00000000 ____D C:\Windows\Panther

==================== One Month Modified Files and Folders =======

2012-06-03 00:19 - 2010-06-08 21:22 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2012-06-03 00:19 - 2010-06-08 21:22 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2012-06-03 00:19 - 2010-06-08 21:22 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2012-06-03 00:19 - 2010-06-08 20:58 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2012-06-03 00:19 - 2010-06-08 20:58 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2012-06-03 00:15 - 2010-06-08 21:22 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2012-06-03 00:15 - 2010-06-08 20:58 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2012-06-02 15:19 - 2010-06-08 20:58 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2012-06-02 15:15 - 2010-06-08 20:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2012-05-15 11:56 - 2010-06-09 17:18 - 00000029 _____ C:\Users\julian\Desktop\Serial (Not needed for installation).txt
2010-06-10 15:09 - 2010-06-07 21:30 - 00225754 _____ C:\Windows\WindowsUpdate.log
2010-06-10 15:08 - 2010-06-10 15:08 - 01954124 _____ (Farbar) C:\Users\julian\Downloads\FRST64.exe
2010-06-10 15:08 - 2010-06-10 15:08 - 00000000 ____D C:\FRST
2010-06-10 15:06 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2010-06-10 15:06 - 2009-07-14 06:51 - 00017492 _____ C:\Windows\setupact.log
2010-06-10 07:06 - 2009-07-14 06:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2010-06-10 07:06 - 2009-07-14 06:45 - 00009696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2010-06-09 17:17 - 2010-06-09 17:17 - 00000000 ____D C:\Program Files\7-Zip
2010-06-09 14:30 - 2010-06-09 14:30 - 00000000 ____D C:\Users\julian\AppData\Roaming\TrueCrypt
2010-06-09 14:29 - 2010-06-09 14:29 - 00231376 _____ (TrueCrypt Foundation) C:\Windows\system32\Drivers\truecrypt.sys
2010-06-09 14:29 - 2010-06-09 14:29 - 00000875 _____ C:\Users\Public\Desktop\TrueCrypt.lnk
2010-06-09 14:29 - 2010-06-09 14:29 - 00000000 ____D C:\Program Files\TrueCrypt
2010-06-09 14:29 - 2010-06-09 14:28 - 03466248 _____ (TrueCrypt Foundation) C:\Users\julian\Downloads\TrueCrypt Setup 7.1a.exe
2010-06-09 14:28 - 2010-06-09 14:28 - 01376768 _____ C:\Users\julian\Downloads\7z920-x64 (1).msi
2010-06-09 14:08 - 2010-06-09 14:07 - 02074056 _____ C:\Users\julian\Downloads\winrar-x64-500d.exe
2010-06-09 14:07 - 2010-06-09 14:07 - 01376768 _____ C:\Users\julian\Downloads\7z920-x64.msi
2010-06-09 12:53 - 2010-06-08 20:34 - 00001945 _____ C:\Windows\epplauncher.mif
2010-06-09 12:13 - 2010-06-09 12:13 - 01333344 _____ (Uniblue Systems Ltd                                        ) C:\Users\julian\Downloads\speedupmypc.exe
2010-06-09 12:01 - 2010-06-09 12:01 - 04745728 _____ (AVAST Software) C:\Users\julian\Downloads\aswMBR.exe
2010-06-08 23:09 - 2010-06-08 23:09 - 00021712 _____ (Phoenix Technologies) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
2010-06-08 23:09 - 2010-06-08 23:09 - 00001238 _____ C:\Users\Public\Desktop\Find Drivers with BIOSAgentPlus.lnk
2010-06-08 23:09 - 2010-06-08 23:09 - 00000000 ____D C:\Users\julian\AppData\Local\eSupport.com
2010-06-08 23:09 - 2010-06-08 23:09 - 00000000 ____D C:\Program Files (x86)\eSupport.com
2010-06-08 23:08 - 2010-06-08 23:07 - 05510712 _____ (Copyright © 2013 eSupport.com, Inc • All Rights Reserved    ) C:\Users\julian\Downloads\biosagentplus_setup_avg_1218.exe
2010-06-08 23:07 - 2010-06-08 23:06 - 01461568 _____ (                                                            ) C:\Users\julian\Downloads\cpu-z_1.67-setup-en (1).exe
2010-06-08 23:06 - 2010-06-08 23:06 - 00000869 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2010-06-08 23:06 - 2010-06-08 23:06 - 00000000 ____D C:\Program Files\CPUID
2010-06-08 23:05 - 2010-06-08 23:05 - 01461568 _____ (                                                            ) C:\Users\julian\Downloads\cpu-z_1.67-setup-en.exe
2010-06-08 21:56 - 2009-10-24 18:10 - 00680010 _____ C:\Windows\system32\perfh010.dat
2010-06-08 21:56 - 2009-10-24 18:10 - 00124006 _____ C:\Windows\system32\perfc010.dat
2010-06-08 21:56 - 2009-10-24 18:01 - 00684954 _____ C:\Windows\system32\perfh00C.dat
2010-06-08 21:56 - 2009-10-24 18:01 - 00127070 _____ C:\Windows\system32\perfc00C.dat
2010-06-08 21:56 - 2009-10-24 17:51 - 00643866 _____ C:\Windows\system32\perfh007.dat
2010-06-08 21:56 - 2009-10-24 17:51 - 00126394 _____ C:\Windows\system32\perfc007.dat
2010-06-08 21:56 - 2009-07-14 07:13 - 03085342 _____ C:\Windows\system32\PerfStringBackup.INI
2010-06-08 21:49 - 2010-06-08 21:49 - 01605632 _____ C:\Users\julian\Desktop\Bootchecker.iso
2010-06-08 21:25 - 2010-06-08 21:25 - 01283592 _____ (Avira Operations GmbH & Co. KG) C:\Users\julian\Downloads\AviraDNSRepairDE.exe
2010-06-08 21:25 - 2010-06-08 21:24 - 03313664 _____ (Avira GmbH) C:\Users\julian\Downloads\bootwizard.exe
2010-06-08 20:13 - 2010-06-08 20:10 - 13842112 _____ (Microsoft Corporation) C:\Users\julian\Downloads\mseinstall.exe
2010-06-08 20:09 - 2010-06-08 20:06 - 00000000 ____D C:\Users\julian\AppData\Roaming\UseNeXT
2010-06-08 20:06 - 2010-06-08 20:06 - 00001857 _____ C:\Users\julian\Desktop\UseNeXT.lnk
2010-06-08 20:06 - 2010-06-08 20:06 - 00000000 ____D C:\Users\julian\Documents\UseNeXT
2010-06-08 20:06 - 2010-06-08 20:06 - 00000000 ____D C:\Program Files (x86)\UseNeXT
2010-06-08 20:03 - 2010-06-08 20:03 - 00614816 _____ C:\Users\julian\Downloads\UseNeXT5.28.exe
2010-06-08 19:44 - 2010-06-08 19:36 - 48227088 _____ C:\Users\julian\Downloads\WXPVOL_DE.ISO
2010-06-08 18:18 - 2010-06-08 16:41 - 00000078 _____ C:\Users\julian\Desktop\link.txt
2010-06-08 17:31 - 2010-06-08 17:24 - 40828928 _____ C:\Users\julian\Downloads\fd11src.iso
2010-06-08 17:27 - 2010-06-08 17:26 - 00864784 _____ (Microsoft Corporation) C:\Users\julian\Downloads\mssstool32.exe
2010-06-08 16:39 - 2010-06-08 16:39 - 00075204 _____ C:\Users\julian\Downloads\uf140.zip
2010-06-08 15:50 - 2010-06-08 15:50 - 00001129 _____ C:\Users\Public\Desktop\Opera.lnk
2010-06-08 15:50 - 2010-06-08 15:50 - 00000000 ____D C:\Users\julian\AppData\Roaming\Opera Software
2010-06-08 15:50 - 2010-06-08 15:50 - 00000000 ____D C:\Users\julian\AppData\Local\Opera Software
2010-06-08 15:50 - 2010-06-08 15:50 - 00000000 ____D C:\Program Files (x86)\Opera
2010-06-08 15:50 - 2010-06-08 15:39 - 33678208 _____ (Opera Software ASA) C:\Users\julian\Downloads\Opera_17.0.1241.45_Setup.exe
2010-06-08 15:32 - 2010-06-08 15:32 - 00000000 ____D C:\Users\julian\AppData\Local\Deployment
2010-06-08 15:32 - 2010-06-08 15:32 - 00000000 ____D C:\Users\julian\AppData\Local\Apps\2.0
2010-06-08 15:28 - 2010-06-08 15:28 - 00000000 ____D C:\Users\julian\AppData\Roaming\Free Download Manager
2010-06-08 15:27 - 2010-06-08 15:27 - 00001067 _____ C:\Users\julian\Desktop\Free Download Manager.lnk
2010-06-08 15:27 - 2010-06-08 15:27 - 00000000 ____D C:\Program Files (x86)\Free Download Manager
2010-06-08 14:26 - 2010-06-08 14:26 - 05192704 _____ (Geza Kovacs) C:\Users\julian\Desktop\unetbootin-windows-585.exe
2010-06-08 14:20 - 2010-06-08 14:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-06-08 14:17 - 2010-06-08 14:12 - 35463168 _____ C:\Users\julian\Desktop\PING-3.02.iso
2010-06-08 13:59 - 2011-07-25 12:40 - 00300832 _____ (Sysinternals - www.sysinternals.com) C:\Users\julian\Desktop\Tcpview.exe
2010-06-08 13:59 - 2010-06-08 13:59 - 14021962 _____ C:\Users\julian\Downloads\SARDU_2.0.6.5.zip
2010-06-08 13:59 - 2010-06-08 13:58 - 00291606 _____ C:\Users\julian\Downloads\TCPView.zip
2010-06-08 12:57 - 2010-06-08 12:57 - 04404080 _____ (Microsoft Corporation) C:\Users\julian\Downloads\winxpsp1_en_hom_bf.exe
2010-06-08 12:56 - 2010-06-08 12:56 - 04386176 _____ (Microsoft Corporation) C:\Users\julian\Downloads\WinXP_EN_HOM_BF.EXE
2010-06-08 12:14 - 2010-06-08 12:14 - 05343426 _____ C:\Users\julian\Desktop\WIN_R540_08JV.exe
2010-06-08 12:00 - 2010-06-08 12:00 - 00001405 _____ C:\Users\julian\Desktop\Internet Explorer (64-bit).lnk
2010-06-08 09:07 - 2010-06-07 22:34 - 00000000 __SHD C:\Recovery
2010-06-08 09:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Msdtc
2010-06-07 23:53 - 2010-06-07 23:53 - 00001003 _____ C:\Users\julian\Desktop\WinFuture xp-Iso-Builder.lnk
2010-06-07 23:53 - 2010-06-07 23:53 - 00000000 ____D C:\Program Files (x86)\xp-Iso-Builder
2010-06-07 23:43 - 2010-06-07 23:43 - 00000000 ____D C:\Users\julian\Desktop\pcwWin7PE
2010-06-07 23:30 - 2010-06-07 23:30 - 07753025 _____ (FreeDownloadManager.ORG                                    ) C:\Users\julian\Downloads\fdminst.exe
2010-06-07 23:20 - 2010-06-07 23:15 - 00000000 ____D C:\Program Files (x86)\nLite
2010-06-07 23:15 - 2010-06-07 23:15 - 03092150 _____ (Dino Nuhagic (nuhi)                                        ) C:\Users\julian\Downloads\nLite-1.4.9.3.setup.exe
2010-06-07 23:15 - 2010-06-07 23:15 - 00057560 _____ C:\Users\julian\AppData\Local\GDIPFONTCACHEV1.DAT
2010-06-07 23:15 - 2010-06-07 23:15 - 00000963 _____ C:\Users\julian\Desktop\nLite.lnk
2010-06-07 23:08 - 2010-06-07 22:34 - 00000000 ____D C:\Users\julian
2010-06-07 22:42 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore
2010-06-07 22:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2010-06-07 22:35 - 2010-06-07 22:35 - 00001405 _____ C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2010-06-07 22:35 - 2010-06-07 22:34 - 00001439 _____ C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2010-06-07 22:35 - 2010-06-07 22:34 - 00000000 ___RD C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2010-06-07 22:35 - 2010-06-07 22:34 - 00000000 ___RD C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2010-06-07 22:34 - 2010-06-07 22:34 - 00000020 ___SH C:\Users\julian\ntuser.ini
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Vorlagen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Startmenü
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Netzwerkumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Lokale Einstellungen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Eigene Dateien
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Druckumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\AppData\Local\Verlauf
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\AppData\Local\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\julian\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Vorlagen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Startmenü
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Programme
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Vorlagen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Startmenü
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Favoriten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Dokumente
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 _SHDL C:\Dokumente und Einstellungen
2010-06-07 22:34 - 2010-06-07 22:34 - 00000000 ____D C:\Users\julian\AppData\Local\VirtualStore
2010-06-07 22:34 - 2010-06-07 14:24 - 00000000 ____D C:\Windows\Panther
2010-06-07 22:34 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2010-06-07 22:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery
2010-06-07 22:34 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT
2010-06-07 22:33 - 2009-07-14 06:45 - 00274464 _____ C:\Windows\system32\FNTCACHE.DAT
2010-06-07 21:32 - 2010-06-07 21:32 - 00001313 _____ C:\Windows\TSSysprep.log
2010-06-07 21:32 - 2009-07-14 06:46 - 00001774 _____ C:\Windows\DtcInstall.log
2010-06-07 21:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2010-06-07 14:24 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2010-06-07 14:24 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\julian\AppData\Local\Temp\ConResGr.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2010-06-07 21:24

==================== End Of Log ============================
--- --- ---

schrauber 14.10.2013 19:58
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!
Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

ichbins2000 15.10.2013 14:24
Ich habe den Vorgang noch nicht ausgeführt jedoch geht das Internet wieder .
Wie kann das nach einer Neuinstallation sein ?

schrauber 15.10.2013 18:57
Setz mal den Router auf Werkseinstellungen zurück, vllt hatte der noch was.


Alle Zeitangaben in WEZ +1. Es ist jetzt 09:59 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131