Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 7: Suchmaschine en.v9.com aus firefox entfernen

Windows 7: Suchmaschine en.v9.com aus firefox entfernen


Log-Analyse und Auswertung: Windows 7: Suchmaschine en.v9.com aus firefox entfernen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 12.09.2013, 16:13   #7
NinjaNinja
 
Windows 7: Suchmaschine en.v9.com aus firefox entfernen - Standard

Windows 7: Suchmaschine en.v9.com aus firefox entfernen


Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=78b9c53a6c8c2443b98bc4f06e3fade0
# engine=15097
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-09-12 02:46:40
# local_time=2013-09-12 04:46:40 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7600 NT 
# compatibility_mode=774 16777213 85 91 5444063 155710672 0 0
# compatibility_mode=5893 16776574 100 94 30787958 130627050 0 0
# scanned=298184
# found=6
# cleaned=0
# scan_time=15030
sh=CDC806A49E6BBFE7F5F0F04C2A0ED9B95533794B ft=1 fh=f4fe22ad3c375d98 vn="a variant of Win32/Adware.Yontoo.A application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Yontoo\YontooIEClient.dll.vir"
sh=C45F572CCD01B4FCC54E106AD8AC52467B5121DB ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Yontoo\YontooLayers.crx.vir"
sh=6B9B28A251F0FF53AECFC82E178D80062B9FEEA5 ft=1 fh=0e378a434f5f8afc vn="a variant of Win32/Adware.Yontoo.B application" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir"
sh=BB520654A3665D92F5806F80B07F4F49C4FA286F ft=1 fh=1a1ddc03a31ec048 vn="a variant of Win32/Adware.Yontoo.B application" ac=I fn="C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll.vir"
sh=57279257E733B05B254033CFED9DF0A9239A0680 ft=0 fh=0000000000000000 vn="JS/Adware.Yontoo.B application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Ninja\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\back.js.vir"
sh=EDB1DDD52DB5EFA10FC11FB682794D18BB429C51 ft=0 fh=0000000000000000 vn="JS/Adware.Yontoo.A application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Ninja\AppData\Local\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc\1.0.3_0\yl.js.vir"
Code:
ATTFilter
unsupported operating system! Aborted!
Ich kann SecurityCheck nicht ausführen.


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-09-2013 02
Ran by Ninja (administrator) on NINJA-PC on 12-09-2013 17:12:44
Running from C:\Users\Ninja\Desktop
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Woodtale Technology Inc) C:\Users\Ninja\AppData\Local\DProtect\DProtectSvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Livescribe) C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUS) C:\Program Files\P4G\BatteryLife.exe
(Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Software 2000 Limited) C:\Windows\system32\spool\DRIVERS\x64\3\HP1006MC.EXE
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Dropbox, Inc.) C:\Users\Ninja\AppData\Roaming\Dropbox\bin\Dropbox.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Trend Micro Client Framework] - C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [192520 2010-10-12] (Trend Micro Inc.)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2587944 2010-12-13] (ELAN Microelectronics Corp.)
HKCU\...\Run: [Google Update] - C:\Users\Ninja\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-09-11] (Google Inc.)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [703888 2013-08-31] (Cisco Systems, Inc.)
HKU\Gast\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-03-02] (Google Inc.)
HKU\UpdatusUser\...\Run: [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-06] (Acresso Corporation)
HKU\UpdatusUser\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-03-02] (Google Inc.)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [226920 2010-12-27] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Users\Ninja\AppData\Local\DProtect\eBP.dll,C:\Users\Ninja\AppData\Local\DProtect\eBPSD.dll [62016 2013-09-09] ()
Startup: C:\Users\Ninja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Ninja\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation)
BootExecute: autocheck autochk /p \??\C:autocheck autochk * 

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://en.v9.com/?utm_source=b&utm_medium=amt&utm_campaign=eXQ&utm_content=hp&from=amt&uid=WDCXWD5000BPVT-80HXZT1_WD-WXG1EB0LZT98LZT98&ts=1378906387
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://en.v9.com/?utm_source=b&utm_medium=amt&utm_campaign=eXQ&utm_content=hp&from=amt&uid=WDCXWD5000BPVT-80HXZT1_WD-WXG1EB0LZT98LZT98&ts=1378906387
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe hxxp://en.v9.com/?utm_source=b&utm_medium=amt&utm_campaign=eXQ&utm_content=sc&from=amt&uid=WDCXWD5000BPVT-80HXZT1_WD-WXG1EB0LZT98LZT98&ts=1378972232
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.)
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
BHO: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.)
BHO-x32: TmIEPlugInBHO Class - {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.)
BHO-x32: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation)
BHO-x32: SwissAcademic.Citavi.Picker.IEPicker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO-x32: TmBpIeBHO Class - {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.)
BHO-x32: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe64.dll (Trend Micro Inc.)
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg.dll (Trend Micro Inc.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\Module\20002\6.5.1234\6.5.1234\TmBpIe32.dll (Trend Micro Inc.)
Handler-x32: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\TmIEPlg32.dll (Trend Micro Inc.)
Tcpip\Parameters: [DhcpNameServer] 131.180.0.26 131.180.0.25

FireFox:
========
FF ProfilePath: C:\Users\Ninja\AppData\Roaming\Mozilla\Firefox\Profiles\3wb41rv7.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Ninja\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Ninja\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\v9.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [{22C7F6C6-8D67-4534-92B5-529A0EC09405}] - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension\
FF Extension: Trend Micro NSC Firefox Extension - C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1381\6.5.1234\firefoxextension\
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Optimization Client\addon\
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://en.v9.com/?utm_source=b&utm_medium=amt&utm_campaign=eXQ&utm_content=sc&from=amt&uid=WDCXWD5000BPVT-80HXZT1_WD-WXG1EB0LZT98LZT98&ts=1378972232

Chrome: 
=======
CHR Extension: (Lightning Newtab) - C:\Users\Ninja\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\1.1.5.2_0
CHR Extension: (Skype Click to Call) - C:\Users\Ninja\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0
CHR Extension: (Google Wallet Service) - C:\Users\Ninja\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Ninja\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 DPService; C:\Users\Ninja\AppData\Local\DProtect\DProtectSvc.exe [342592 2013-09-09] (Woodtale Technology Inc)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PenCommService; C:\Program Files (x86)\Common Files\Livescribe\PenComm\PenCommService.exe [470528 2011-10-28] (Livescribe)
S4 TiMiniService; C:\Program Files\Trend Micro\Titanium\TiMiniService.exe [241488 2010-09-17] (Trend Micro Inc.)
S4 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 [x]

==================== Drivers (Whitelisted) ====================

S3 ASUSProcObsrv; C:\eSupport\eDriver\I386\AsPrOb64.sys [11320 2008-01-04] ()
S3 ASUSProcObsrv; C:\eSupport\eDriver\I386\AsPrOb64.sys [11320 2008-01-04] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-28] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-28] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-28] ()
R1 cbfs3; C:\Windows\system32\drivers\cbfs3.sys [352144 2012-04-09] (EldoS Corporation)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [132608 2009-06-29] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-21] ( )
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 PulseUsb; C:\Windows\System32\DRIVERS\PulseUsb.sys [26112 2011-10-28] (Windows (R) Win 7 DDK provider)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800832 2010-09-07] (Sonix Technology Co., Ltd.)
R2 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [90704 2010-09-17] (Trend Micro Inc.)
R2 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [144464 2010-09-17] (Trend Micro Inc.)
R2 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [67664 2010-09-17] (Trend Micro Inc.)
R1 tmtdi; C:\Windows\System32\DRIVERS\tmtdi.sys [105552 2010-09-17] (Trend Micro Inc.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] ()
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-06-19] (Cisco Systems, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-12 12:33 - 2013-09-12 12:33 - 02347384 _____ (ESET) C:\Users\Ninja\Downloads\esetsmartinstaller_enu.exe
2013-09-12 10:42 - 2013-09-12 10:42 - 00049558 _____ C:\Users\Ninja\Downloads\FRST.txt
2013-09-12 10:37 - 2013-09-12 10:37 - 01949642 _____ (Farbar) C:\Users\Ninja\Downloads\FRST64(1).exe
2013-09-12 10:33 - 2013-09-12 10:33 - 00001850 _____ C:\Users\Ninja\Desktop\JRT.txt
2013-09-12 09:58 - 2013-09-12 09:58 - 01029509 _____ (Thisisu) C:\Users\Ninja\Downloads\JRT(1).exe
2013-09-12 09:44 - 2013-09-12 09:45 - 01037278 _____ C:\Users\Ninja\Downloads\adwcleaner(3).exe
2013-09-12 09:44 - 2013-09-12 09:44 - 01037278 _____ C:\Users\Ninja\Downloads\adwcleaner(2).exe
2013-09-12 09:27 - 2013-09-12 09:27 - 00001111 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-12 09:27 - 2013-09-12 09:27 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-12 09:27 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-12 09:25 - 2013-09-12 09:26 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ninja\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-09-11 18:21 - 2013-09-11 18:22 - 65478892 _____ C:\Users\Ninja\Desktop\Stromberg - Der Parkplatz [Staffel 1 Folge 1 Part 2] - YouTube.webm
2013-09-11 17:58 - 2013-09-11 17:58 - 00101631 _____ C:\Users\Ninja\Desktop\solarspeicher-stromspeicher-rechner(1).xlsx
2013-09-11 17:53 - 2013-09-11 17:53 - 00101602 _____ C:\Users\Ninja\Downloads\solarspeicher-stromspeicher-rechner(1).xlsx
2013-09-11 17:52 - 2013-09-11 17:52 - 00101602 _____ C:\Users\Ninja\Downloads\solarspeicher-stromspeicher-rechner.xlsx
2013-09-11 16:46 - 2013-09-11 16:47 - 00033101 _____ C:\Users\Ninja\Downloads\Addition.txt
2013-09-11 16:42 - 2013-09-11 16:42 - 00000000 ____D C:\FRST
2013-09-11 16:40 - 2013-09-11 16:40 - 01949408 _____ (Farbar) C:\Users\Ninja\Downloads\FRST64.exe
2013-09-11 14:43 - 2013-09-11 14:43 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Ninja\Downloads\SpyHunter-Installer(1).exe
2013-09-10 20:51 - 2013-09-12 11:10 - 00000594 _____ C:\Windows\setupact.log
2013-09-10 20:51 - 2013-09-10 20:51 - 00000000 _____ C:\Windows\setuperr.log
2013-09-10 20:37 - 2013-09-10 20:37 - 02828552 _____ (AVAST Software) C:\Users\Ninja\Downloads\avast-browser-cleanup.exe
2013-09-10 20:02 - 2013-09-10 20:02 - 00000000 _____ C:\autoexec.bat
2013-09-10 19:25 - 2013-09-11 15:33 - 00000000 ____D C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-09-10 19:25 - 2013-09-10 19:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-09-10 19:23 - 2013-09-10 19:23 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Ninja\Downloads\SpyHunter-Installer.exe
2013-09-10 12:19 - 2013-09-12 17:10 - 00001349 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-09-10 12:19 - 2013-09-10 12:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-10 12:14 - 2013-09-10 12:14 - 00282008 _____ (Mozilla) C:\Users\Ninja\Downloads\Firefox Setup Stub 23.0.1.exe
2013-09-10 11:59 - 2013-09-10 11:59 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-09-10 11:59 - 2013-09-10 11:59 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-10 11:59 - 2013-09-10 11:59 - 00000000 ____D C:\Program Files\CCleaner
2013-09-10 11:58 - 2013-09-10 11:58 - 04454952 _____ (Piriform Ltd) C:\Users\Ninja\Downloads\ccsetup405.exe
2013-09-10 11:31 - 2013-09-10 11:31 - 00052447 _____ C:\Users\Ninja\Downloads\.htm
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\Users\Ninja\AppData\Roaming\Malwarebytes
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-10 11:06 - 2013-09-10 11:07 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ninja\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-10 10:33 - 2013-09-10 10:33 - 00000000 ____D C:\Windows\ERUNT
2013-09-10 10:31 - 2013-09-10 10:33 - 01029490 _____ (Thisisu) C:\Users\Ninja\Downloads\JRT.exe
2013-09-10 10:18 - 2013-09-10 10:18 - 01037278 _____ C:\Users\Ninja\Downloads\adwcleaner(1).exe
2013-09-09 20:12 - 2013-09-09 19:36 - 362962951 _____ C:\Users\Ninja\Desktop\v.mp4
2013-09-09 18:27 - 2013-09-09 18:27 - 01037278 _____ C:\Users\Ninja\Downloads\3003-adwcleaner(2).exe
2013-09-09 18:09 - 2013-09-12 09:49 - 00000000 ____D C:\AdwCleaner
2013-09-09 18:09 - 2013-09-09 18:09 - 01037278 _____ C:\Users\Ninja\Downloads\3003-adwcleaner(1).exe
2013-09-09 18:08 - 2013-09-09 18:08 - 01037278 _____ C:\Users\Ninja\Downloads\3003-adwcleaner.exe
2013-09-09 17:59 - 2013-09-09 18:13 - 00000000 ____D C:\Users\Ninja\AppData\Local\DProtect
2013-09-09 11:11 - 2013-09-08 09:21 - 00682478 _____ C:\Users\Ninja\Desktop\1308084_Liste_NB_Gas_Ost.xlsx
2013-09-06 22:16 - 2013-09-06 22:16 - 00032825 _____ C:\Users\Ninja\Downloads\130906_Stundenzettel.xlsx
2013-09-05 17:29 - 2013-09-05 17:29 - 00032813 _____ C:\Users\Ninja\Downloads\130905_Stundenzettel.xlsx
2013-09-03 15:50 - 2013-09-03 15:51 - 00785768 _____ C:\Users\Ninja\Desktop\Bewerbungsbogen.jpeg
2013-09-03 15:48 - 2013-09-03 15:48 - 00000000 ____D C:\Users\Ninja\Documents\Fax
2013-08-31 00:10 - 2013-08-31 00:10 - 00034192 _____ (Cisco Systems, Inc.) C:\Windows\SysWOW64\vpnevents.dll
2013-08-31 00:10 - 2013-08-31 00:10 - 00011152 _____ (Cisco Systems, Inc.) C:\Windows\SysWOW64\vpncategories.dll
2013-08-30 23:51 - 2013-08-30 23:51 - 00112080 ____R (Cisco Systems, Inc.) C:\Windows\system32\Drivers\acsock64.sys
2013-08-29 15:35 - 2013-08-29 15:50 - 00000000 ____D C:\Users\Ninja\Desktop\some highlights from Delft
2013-08-24 18:31 - 2013-08-24 18:31 - 00032783 _____ C:\Users\Ninja\Downloads\130824_Stundenzettel(1).xlsx
2013-08-24 18:30 - 2013-08-24 18:30 - 00032783 _____ C:\Users\Ninja\Downloads\130824_Stundenzettel.xlsx
2013-08-19 10:36 - 2013-08-19 10:36 - 00021012 _____ C:\Users\Ninja\Downloads\Arbeitszeit BTU EVU GmbH.xlsx
2013-08-19 10:15 - 2013-08-19 10:15 - 00034610 _____ C:\Users\Ninja\Downloads\130813_Stundenzettel.xlsx
2013-08-19 10:14 - 2013-08-19 10:14 - 00035706 _____ C:\Users\Ninja\Downloads\130812_Stundenzettel.xlsx
2013-08-19 10:10 - 2013-08-19 10:10 - 00034860 _____ C:\Users\Ninja\Downloads\130809_Stundenzettel(1).xlsx
2013-08-19 10:10 - 2013-08-19 10:10 - 00034849 _____ C:\Users\Ninja\Downloads\130810_Stundenzettel.xlsx
2013-08-19 10:09 - 2013-08-19 10:09 - 00033959 _____ C:\Users\Ninja\Downloads\130808_Stundenzettel(1).xlsx
2013-08-19 10:08 - 2013-08-19 10:08 - 00032880 _____ C:\Users\Ninja\Downloads\130807_Stundenzettel.xlsx
2013-08-19 10:06 - 2013-08-19 10:06 - 00032869 _____ C:\Users\Ninja\Downloads\130805_Stundenzettel.xlsx
2013-08-19 10:05 - 2013-08-19 10:05 - 00032837 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(48).xlsx
2013-08-19 10:05 - 2013-08-19 10:05 - 00032830 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(47).xlsx
2013-08-19 10:04 - 2013-08-19 10:04 - 00032863 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(45).xlsx
2013-08-19 10:04 - 2013-08-19 10:04 - 00032822 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(46).xlsx
2013-08-19 10:03 - 2013-08-19 10:03 - 00034820 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(44).xlsx
2013-08-19 10:02 - 2013-08-19 10:02 - 00034752 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(43).xlsx
2013-08-19 10:01 - 2013-08-19 10:01 - 00034752 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(42).xlsx
2013-08-19 09:59 - 2013-08-19 09:59 - 00034785 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(41).xlsx
2013-08-19 09:57 - 2013-08-19 09:57 - 00034841 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(39).xlsx
2013-08-19 09:57 - 2013-08-19 09:57 - 00034788 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(40).xlsx
2013-08-19 09:56 - 2013-08-19 09:56 - 00034787 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(38).xlsx
2013-08-19 09:56 - 2013-08-19 09:56 - 00034787 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(37).xlsx
2013-08-19 09:55 - 2013-08-19 09:55 - 00034844 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(36).xlsx
2013-08-19 09:54 - 2013-08-19 09:55 - 00034758 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(35).xlsx
2013-08-19 09:54 - 2013-08-19 09:54 - 00034779 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(33).xlsx
2013-08-19 09:54 - 2013-08-19 09:54 - 00034748 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(34).xlsx
2013-08-19 09:53 - 2013-08-19 09:53 - 00034788 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(32).xlsx
2013-08-19 09:52 - 2013-08-19 09:53 - 00034733 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(30).xlsx
2013-08-19 09:52 - 2013-08-19 09:52 - 00034760 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(31).xlsx
2013-08-19 09:51 - 2013-08-19 09:51 - 00034817 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(29).xlsx
2013-08-19 09:51 - 2013-08-19 09:51 - 00034750 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(28).xlsx
2013-08-19 09:50 - 2013-08-19 09:50 - 00034765 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(26).xlsx
2013-08-19 09:50 - 2013-08-19 09:50 - 00034751 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(27).xlsx
2013-08-19 09:39 - 2013-08-19 09:39 - 00034771 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(25).xlsx
2013-08-19 09:39 - 2013-08-19 09:39 - 00034764 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(24).xlsx
2013-08-19 09:38 - 2013-08-19 09:38 - 00034770 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(23).xlsx
2013-08-19 09:37 - 2013-08-19 09:37 - 00034835 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(22).xlsx
2013-08-19 09:37 - 2013-08-19 09:37 - 00034734 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(21).xlsx
2013-08-19 09:36 - 2013-08-19 09:36 - 00034737 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(20).xlsx
2013-08-19 09:36 - 2013-08-19 09:36 - 00034735 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(19).xlsx
2013-08-19 09:34 - 2013-08-19 09:34 - 00034736 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(18).xlsx
2013-08-19 09:34 - 2013-08-19 09:34 - 00034691 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(17).xlsx
2013-08-19 09:33 - 2013-08-19 09:33 - 00034689 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(15).xlsx
2013-08-19 09:33 - 2013-08-19 09:33 - 00034687 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(16).xlsx
2013-08-19 09:32 - 2013-08-19 09:32 - 00034703 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(14).xlsx
2013-08-19 09:10 - 2013-08-19 09:10 - 00034739 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(13).xlsx
2013-08-19 09:09 - 2013-08-19 09:09 - 00034741 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(12).xlsx
2013-08-19 09:08 - 2013-08-19 09:08 - 00034741 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(11).xlsx
2013-08-19 09:08 - 2013-08-19 09:08 - 00034739 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(10).xlsx
2013-08-19 09:07 - 2013-08-19 09:07 - 00034740 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(8).xlsx
2013-08-19 09:07 - 2013-08-19 09:07 - 00034732 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(9).xlsx
2013-08-19 09:06 - 2013-08-19 09:06 - 00034790 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(7).xlsx
2013-08-19 09:05 - 2013-08-19 09:05 - 00034790 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(6).xlsx
2013-08-19 09:03 - 2013-08-19 09:03 - 00034714 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(5).xlsx
2013-08-19 09:01 - 2013-08-19 09:01 - 00034688 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(4).xlsx
2013-08-19 08:59 - 2013-08-19 08:59 - 00034698 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(3).xlsx
2013-08-19 08:56 - 2013-08-19 08:56 - 00034698 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(2).xlsx
2013-08-19 08:56 - 2013-08-19 08:56 - 00034698 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(1).xlsx
2013-08-16 14:13 - 2013-08-16 14:13 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 12:56 - 2013-08-14 12:56 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe

==================== One Month Modified Files and Folders =======

2013-09-12 17:12 - 2013-09-12 17:12 - 01949642 _____ (Farbar) C:\Users\Ninja\Desktop\FRST64.exe
2013-09-12 17:10 - 2013-09-10 12:19 - 00001349 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-09-12 17:10 - 2011-12-29 18:55 - 00001283 _____ C:\Users\Ninja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-09-12 17:10 - 2011-12-29 18:54 - 00001466 _____ C:\Users\Ninja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-12 17:01 - 2012-01-07 15:40 - 00000000 ____D C:\Users\Ninja\AppData\Roaming\Skype
2013-09-12 16:33 - 2013-05-20 22:10 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-12 16:33 - 2012-09-11 07:38 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1656133654-1659832390-954194117-1002UA.job
2013-09-12 16:25 - 2012-04-03 14:07 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-12 14:21 - 2011-03-02 11:13 - 01876183 _____ C:\Windows\WindowsUpdate.log
2013-09-12 12:33 - 2013-09-12 12:33 - 02347384 _____ (ESET) C:\Users\Ninja\Downloads\esetsmartinstaller_enu.exe
2013-09-12 11:18 - 2012-01-08 16:21 - 00000000 ____D C:\Users\Ninja\AppData\Roaming\Dropbox
2013-09-12 11:10 - 2013-09-10 20:51 - 00000594 _____ C:\Windows\setupact.log
2013-09-12 10:42 - 2013-09-12 10:42 - 00049558 _____ C:\Users\Ninja\Downloads\FRST.txt
2013-09-12 10:37 - 2013-09-12 10:37 - 01949642 _____ (Farbar) C:\Users\Ninja\Downloads\FRST64(1).exe
2013-09-12 10:33 - 2013-09-12 10:33 - 00001850 _____ C:\Users\Ninja\Desktop\JRT.txt
2013-09-12 10:06 - 2012-09-24 14:20 - 00000310 _____ C:\Windows\Tasks\Sxeporsk.job
2013-09-12 09:59 - 2009-07-14 06:45 - 00010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-12 09:59 - 2009-07-14 06:45 - 00010016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-12 09:58 - 2013-09-12 09:58 - 01029509 _____ (Thisisu) C:\Users\Ninja\Downloads\JRT(1).exe
2013-09-12 09:52 - 2013-04-06 13:30 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-09-12 09:52 - 2012-01-08 16:43 - 00000000 ___RD C:\Users\Ninja\Dropbox
2013-09-12 09:50 - 2013-05-20 22:10 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-12 09:50 - 2011-12-29 18:58 - 00058288 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll
2013-09-12 09:50 - 2011-03-02 11:08 - 00017920 _____ C:\Windows\system32\rpcnetp.exe
2013-09-12 09:50 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-12 09:49 - 2013-09-09 18:09 - 00000000 ____D C:\AdwCleaner
2013-09-12 09:48 - 2012-09-11 07:41 - 00000000 ____D C:\Users\Ninja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-09-12 09:45 - 2013-09-12 09:44 - 01037278 _____ C:\Users\Ninja\Downloads\adwcleaner(3).exe
2013-09-12 09:44 - 2013-09-12 09:44 - 01037278 _____ C:\Users\Ninja\Downloads\adwcleaner(2).exe
2013-09-12 09:27 - 2013-09-12 09:27 - 00001111 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-12 09:27 - 2013-09-12 09:27 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-12 09:26 - 2013-09-12 09:25 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ninja\Downloads\mbam-setup-1.75.0.1300(1).exe
2013-09-12 09:12 - 2012-04-03 14:07 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-12 09:12 - 2012-04-03 14:07 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-12 09:12 - 2012-01-05 21:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-11 18:22 - 2013-09-11 18:21 - 65478892 _____ C:\Users\Ninja\Desktop\Stromberg - Der Parkplatz [Staffel 1 Folge 1 Part 2] - YouTube.webm
2013-09-11 17:58 - 2013-09-11 17:58 - 00101631 _____ C:\Users\Ninja\Desktop\solarspeicher-stromspeicher-rechner(1).xlsx
2013-09-11 17:53 - 2013-09-11 17:53 - 00101602 _____ C:\Users\Ninja\Downloads\solarspeicher-stromspeicher-rechner(1).xlsx
2013-09-11 17:52 - 2013-09-11 17:52 - 00101602 _____ C:\Users\Ninja\Downloads\solarspeicher-stromspeicher-rechner.xlsx
2013-09-11 16:47 - 2013-09-11 16:46 - 00033101 _____ C:\Users\Ninja\Downloads\Addition.txt
2013-09-11 16:42 - 2013-09-11 16:42 - 00000000 ____D C:\FRST
2013-09-11 16:40 - 2013-09-11 16:40 - 01949408 _____ (Farbar) C:\Users\Ninja\Downloads\FRST64.exe
2013-09-11 15:33 - 2013-09-10 19:25 - 00000000 ____D C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-09-11 15:26 - 2011-03-02 12:47 - 00045056 _____ C:\Windows\SysWOW64\acovcnt.exe
2013-09-11 15:26 - 2011-03-02 11:09 - 00017920 _____ C:\Windows\SysWOW64\rpcnetp.dll
2013-09-11 15:25 - 2011-03-02 11:08 - 00017920 _____ C:\Windows\SysWOW64\rpcnetp.exe
2013-09-11 14:43 - 2013-09-11 14:43 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Ninja\Downloads\SpyHunter-Installer(1).exe
2013-09-10 20:51 - 2013-09-10 20:51 - 00000000 _____ C:\Windows\setuperr.log
2013-09-10 20:37 - 2013-09-10 20:37 - 02828552 _____ (AVAST Software) C:\Users\Ninja\Downloads\avast-browser-cleanup.exe
2013-09-10 20:02 - 2013-09-10 20:02 - 00000000 _____ C:\autoexec.bat
2013-09-10 19:25 - 2013-09-10 19:25 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-09-10 19:23 - 2013-09-10 19:23 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Ninja\Downloads\SpyHunter-Installer.exe
2013-09-10 15:36 - 2012-01-05 18:23 - 00000000 ____D C:\Users\Ninja\AppData\Local\Microsoft Help
2013-09-10 13:48 - 2012-12-29 11:56 - 00000000 ____D C:\ProgramData\Cisco
2013-09-10 13:48 - 2012-12-29 11:56 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-09-10 13:12 - 2013-04-06 09:25 - 00000000 ____D C:\Users\Ninja\Desktop\Bilder
2013-09-10 12:19 - 2013-09-10 12:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-10 12:19 - 2013-07-03 08:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-10 12:14 - 2013-09-10 12:14 - 00282008 _____ (Mozilla) C:\Users\Ninja\Downloads\Firefox Setup Stub 23.0.1.exe
2013-09-10 12:01 - 2012-06-24 09:52 - 00000000 ____D C:\Windows\Minidump
2013-09-10 12:01 - 2009-07-29 08:03 - 00000000 ____D C:\Windows\Panther
2013-09-10 11:59 - 2013-09-10 11:59 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-09-10 11:59 - 2013-09-10 11:59 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-09-10 11:59 - 2013-09-10 11:59 - 00000000 ____D C:\Program Files\CCleaner
2013-09-10 11:58 - 2013-09-10 11:58 - 04454952 _____ (Piriform Ltd) C:\Users\Ninja\Downloads\ccsetup405.exe
2013-09-10 11:31 - 2013-09-10 11:31 - 00052447 _____ C:\Users\Ninja\Downloads\.htm
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\Users\Ninja\AppData\Roaming\Malwarebytes
2013-09-10 11:08 - 2013-09-10 11:08 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-10 11:07 - 2013-09-10 11:06 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ninja\Downloads\mbam-setup-1.75.0.1300.exe
2013-09-10 10:33 - 2013-09-10 10:33 - 00000000 ____D C:\Windows\ERUNT
2013-09-10 10:33 - 2013-09-10 10:31 - 01029490 _____ (Thisisu) C:\Users\Ninja\Downloads\JRT.exe
2013-09-10 10:18 - 2013-09-10 10:18 - 01037278 _____ C:\Users\Ninja\Downloads\adwcleaner(1).exe
2013-09-09 20:00 - 2009-08-04 12:40 - 00368072 _____ C:\Windows\system32\perfh00D.dat
2013-09-09 20:00 - 2009-08-04 12:40 - 00073924 _____ C:\Windows\system32\perfc00D.dat
2013-09-09 20:00 - 2009-08-04 12:34 - 00566320 _____ C:\Windows\system32\perfh008.dat
2013-09-09 20:00 - 2009-08-04 12:34 - 00094266 _____ C:\Windows\system32\perfc008.dat
2013-09-09 20:00 - 2009-08-04 12:28 - 00693892 _____ C:\Windows\system32\prfh0816.dat
2013-09-09 20:00 - 2009-08-04 12:28 - 00138582 _____ C:\Windows\system32\prfc0816.dat
2013-09-09 20:00 - 2009-08-04 12:22 - 00399870 _____ C:\Windows\system32\prfh0404.dat
2013-09-09 20:00 - 2009-08-04 12:22 - 00111218 _____ C:\Windows\system32\prfc0404.dat
2013-09-09 20:00 - 2009-08-04 12:15 - 00705742 _____ C:\Windows\system32\perfh013.dat
2013-09-09 20:00 - 2009-08-04 12:15 - 00137770 _____ C:\Windows\system32\perfc013.dat
2013-09-09 20:00 - 2009-08-04 12:09 - 00703658 _____ C:\Windows\system32\perfh010.dat
2013-09-09 20:00 - 2009-08-04 12:09 - 00131974 _____ C:\Windows\system32\perfc010.dat
2013-09-09 20:00 - 2009-08-04 12:03 - 00708980 _____ C:\Windows\system32\perfh00C.dat
2013-09-09 20:00 - 2009-08-04 12:03 - 00134970 _____ C:\Windows\system32\perfc00C.dat
2013-09-09 20:00 - 2009-08-04 11:57 - 00708004 _____ C:\Windows\system32\perfh00A.dat
2013-09-09 20:00 - 2009-08-04 11:57 - 00141892 _____ C:\Windows\system32\perfc00A.dat
2013-09-09 20:00 - 2009-08-04 11:51 - 00669322 _____ C:\Windows\system32\perfh007.dat
2013-09-09 20:00 - 2009-08-04 11:51 - 00135002 _____ C:\Windows\system32\perfc007.dat
2013-09-09 20:00 - 2009-07-14 07:13 - 07343020 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-09 19:36 - 2013-09-09 20:12 - 362962951 _____ C:\Users\Ninja\Desktop\v.mp4
2013-09-09 18:27 - 2013-09-09 18:27 - 01037278 _____ C:\Users\Ninja\Downloads\3003-adwcleaner(2).exe
2013-09-09 18:13 - 2013-09-09 17:59 - 00000000 ____D C:\Users\Ninja\AppData\Local\DProtect
2013-09-09 18:09 - 2013-09-09 18:09 - 01037278 _____ C:\Users\Ninja\Downloads\3003-adwcleaner(1).exe
2013-09-09 18:08 - 2013-09-09 18:08 - 01037278 _____ C:\Users\Ninja\Downloads\3003-adwcleaner.exe
2013-09-09 14:31 - 2012-10-21 11:11 - 00000000 ____D C:\Users\Ninja\Documents\Citavi 3
2013-09-08 10:10 - 2013-04-06 19:56 - 00000000 ____D C:\Users\Ninja\Desktop\btu_evu
2013-09-08 09:21 - 2013-09-09 11:11 - 00682478 _____ C:\Users\Ninja\Desktop\1308084_Liste_NB_Gas_Ost.xlsx
2013-09-08 08:18 - 2012-09-11 07:38 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1656133654-1659832390-954194117-1002Core.job
2013-09-06 22:16 - 2013-09-06 22:16 - 00032825 _____ C:\Users\Ninja\Downloads\130906_Stundenzettel.xlsx
2013-09-05 17:29 - 2013-09-05 17:29 - 00032813 _____ C:\Users\Ninja\Downloads\130905_Stundenzettel.xlsx
2013-09-03 15:51 - 2013-09-03 15:50 - 00785768 _____ C:\Users\Ninja\Desktop\Bewerbungsbogen.jpeg
2013-09-03 15:48 - 2013-09-03 15:48 - 00000000 ____D C:\Users\Ninja\Documents\Fax
2013-09-03 15:48 - 2013-04-08 19:27 - 00000000 ____D C:\Users\Ninja\Desktop\BEWERBUNGEN
2013-08-31 00:10 - 2013-08-31 00:10 - 00034192 _____ (Cisco Systems, Inc.) C:\Windows\SysWOW64\vpnevents.dll
2013-08-31 00:10 - 2013-08-31 00:10 - 00011152 _____ (Cisco Systems, Inc.) C:\Windows\SysWOW64\vpncategories.dll
2013-08-30 23:51 - 2013-08-30 23:51 - 00112080 ____R (Cisco Systems, Inc.) C:\Windows\system32\Drivers\acsock64.sys
2013-08-29 15:50 - 2013-08-29 15:35 - 00000000 ____D C:\Users\Ninja\Desktop\some highlights from Delft
2013-08-24 18:31 - 2013-08-24 18:31 - 00032783 _____ C:\Users\Ninja\Downloads\130824_Stundenzettel(1).xlsx
2013-08-24 18:30 - 2013-08-24 18:30 - 00032783 _____ C:\Users\Ninja\Downloads\130824_Stundenzettel.xlsx
2013-08-24 13:36 - 2011-12-29 18:54 - 00000000 ____D C:\Users\Ninja
2013-08-19 12:17 - 2012-06-21 08:40 - 00000000 ____D C:\Users\Ninja\Desktop\BTU
2013-08-19 12:16 - 2013-07-14 10:23 - 00000000 ____D C:\Users\Ninja\Desktop\stuff
2013-08-19 12:16 - 2013-05-14 15:37 - 00000000 ____D C:\Users\Ninja\Desktop\fracturing
2013-08-19 10:36 - 2013-08-19 10:36 - 00021012 _____ C:\Users\Ninja\Downloads\Arbeitszeit BTU EVU GmbH.xlsx
2013-08-19 10:15 - 2013-08-19 10:15 - 00034610 _____ C:\Users\Ninja\Downloads\130813_Stundenzettel.xlsx
2013-08-19 10:14 - 2013-08-19 10:14 - 00035706 _____ C:\Users\Ninja\Downloads\130812_Stundenzettel.xlsx
2013-08-19 10:10 - 2013-08-19 10:10 - 00034860 _____ C:\Users\Ninja\Downloads\130809_Stundenzettel(1).xlsx
2013-08-19 10:10 - 2013-08-19 10:10 - 00034849 _____ C:\Users\Ninja\Downloads\130810_Stundenzettel.xlsx
2013-08-19 10:09 - 2013-08-19 10:09 - 00033959 _____ C:\Users\Ninja\Downloads\130808_Stundenzettel(1).xlsx
2013-08-19 10:08 - 2013-08-19 10:08 - 00032880 _____ C:\Users\Ninja\Downloads\130807_Stundenzettel.xlsx
2013-08-19 10:06 - 2013-08-19 10:06 - 00032869 _____ C:\Users\Ninja\Downloads\130805_Stundenzettel.xlsx
2013-08-19 10:05 - 2013-08-19 10:05 - 00032837 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(48).xlsx
2013-08-19 10:05 - 2013-08-19 10:05 - 00032830 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(47).xlsx
2013-08-19 10:04 - 2013-08-19 10:04 - 00032863 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(45).xlsx
2013-08-19 10:04 - 2013-08-19 10:04 - 00032822 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(46).xlsx
2013-08-19 10:03 - 2013-08-19 10:03 - 00034820 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(44).xlsx
2013-08-19 10:02 - 2013-08-19 10:02 - 00034752 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(43).xlsx
2013-08-19 10:01 - 2013-08-19 10:01 - 00034752 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(42).xlsx
2013-08-19 09:59 - 2013-08-19 09:59 - 00034785 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(41).xlsx
2013-08-19 09:57 - 2013-08-19 09:57 - 00034841 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(39).xlsx
2013-08-19 09:57 - 2013-08-19 09:57 - 00034788 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(40).xlsx
2013-08-19 09:56 - 2013-08-19 09:56 - 00034787 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(38).xlsx
2013-08-19 09:56 - 2013-08-19 09:56 - 00034787 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(37).xlsx
2013-08-19 09:55 - 2013-08-19 09:55 - 00034844 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(36).xlsx
2013-08-19 09:55 - 2013-08-19 09:54 - 00034758 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(35).xlsx
2013-08-19 09:54 - 2013-08-19 09:54 - 00034779 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(33).xlsx
2013-08-19 09:54 - 2013-08-19 09:54 - 00034748 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(34).xlsx
2013-08-19 09:53 - 2013-08-19 09:53 - 00034788 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(32).xlsx
2013-08-19 09:53 - 2013-08-19 09:52 - 00034733 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(30).xlsx
2013-08-19 09:52 - 2013-08-19 09:52 - 00034760 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(31).xlsx
2013-08-19 09:51 - 2013-08-19 09:51 - 00034817 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(29).xlsx
2013-08-19 09:51 - 2013-08-19 09:51 - 00034750 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(28).xlsx
2013-08-19 09:50 - 2013-08-19 09:50 - 00034765 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(26).xlsx
2013-08-19 09:50 - 2013-08-19 09:50 - 00034751 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(27).xlsx
2013-08-19 09:39 - 2013-08-19 09:39 - 00034771 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(25).xlsx
2013-08-19 09:39 - 2013-08-19 09:39 - 00034764 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(24).xlsx
2013-08-19 09:38 - 2013-08-19 09:38 - 00034770 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(23).xlsx
2013-08-19 09:37 - 2013-08-19 09:37 - 00034835 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(22).xlsx
2013-08-19 09:37 - 2013-08-19 09:37 - 00034734 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(21).xlsx
2013-08-19 09:36 - 2013-08-19 09:36 - 00034737 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(20).xlsx
2013-08-19 09:36 - 2013-08-19 09:36 - 00034735 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(19).xlsx
2013-08-19 09:34 - 2013-08-19 09:34 - 00034736 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(18).xlsx
2013-08-19 09:34 - 2013-08-19 09:34 - 00034691 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(17).xlsx
2013-08-19 09:33 - 2013-08-19 09:33 - 00034689 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(15).xlsx
2013-08-19 09:33 - 2013-08-19 09:33 - 00034687 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(16).xlsx
2013-08-19 09:32 - 2013-08-19 09:32 - 00034703 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(14).xlsx
2013-08-19 09:10 - 2013-08-19 09:10 - 00034739 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(13).xlsx
2013-08-19 09:09 - 2013-08-19 09:09 - 00034741 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(12).xlsx
2013-08-19 09:08 - 2013-08-19 09:08 - 00034741 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(11).xlsx
2013-08-19 09:08 - 2013-08-19 09:08 - 00034739 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(10).xlsx
2013-08-19 09:07 - 2013-08-19 09:07 - 00034740 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(8).xlsx
2013-08-19 09:07 - 2013-08-19 09:07 - 00034732 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(9).xlsx
2013-08-19 09:06 - 2013-08-19 09:06 - 00034790 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(7).xlsx
2013-08-19 09:05 - 2013-08-19 09:05 - 00034790 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(6).xlsx
2013-08-19 09:03 - 2013-08-19 09:03 - 00034714 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(5).xlsx
2013-08-19 09:01 - 2013-08-19 09:01 - 00034688 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(4).xlsx
2013-08-19 08:59 - 2013-08-19 08:59 - 00034698 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(3).xlsx
2013-08-19 08:56 - 2013-08-19 08:56 - 00034698 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(2).xlsx
2013-08-19 08:56 - 2013-08-19 08:56 - 00034698 _____ C:\Users\Ninja\Downloads\130320_Stundenzettel(1).xlsx
2013-08-16 14:13 - 2013-08-16 14:13 - 00000000 ____D C:\Windows\system32\MRT
2013-08-16 14:13 - 2012-01-05 18:23 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-16 14:12 - 2013-04-06 13:12 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-15 18:14 - 2013-04-10 13:49 - 00000000 ____D C:\Users\Ninja\Desktop\wind tamer
2013-08-14 16:36 - 2013-04-08 19:27 - 00000000 ____D C:\Users\Ninja\Desktop\rezepte
2013-08-14 12:56 - 2013-08-14 12:56 - 00000000 ____D C:\Users\Gast\AppData\Roaming\Adobe
2013-08-14 12:55 - 2012-06-09 01:06 - 00000000 ____D C:\Users\Gast\AppData\Local\Google

Files to move or delete:
====================
C:\Users\Ninja\AppData\Local\Temp\Quarantine.exe
C:\Users\Ninja\AppData\Local\Temp\SHSetup.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-04 14:17

==================== End Of Log ============================
--- --- ---

--- --- ---

 

Themen zu Windows 7: Suchmaschine en.v9.com aus firefox entfernen
.com, als startseite, browser, content, entferne, entfernen, firefox, inter, interne, internetbrowser, js/adware.yontoo.a, js/adware.yontoo.b, seite, source, startseite, suchmaschine, win32/adware.yontoo.a, win32/adware.yontoo.b, windows, windows 7


« search.snapdo.com trotz Löschen noch im Firefox-Browser | Win 7 - Win32.downloader.gen - PUP.Optional.Conduit.A - Befall »


Ähnliche Themen: Windows 7: Suchmaschine en.v9.com aus firefox entfernen


  1. Windows 8: Ich kann die Suchmaschine "Pisearch" nicht entfernen.
    Plagegeister aller Art und deren Bekämpfung - 29.09.2015 (11)
  2. Windows 8.1: PDF Creator24 und automatisch installierte Suchmaschine - Virus?
    Plagegeister aller Art und deren Bekämpfung - 12.06.2015 (11)
  3. Download Protect in Firefox läßt sich nicht dauerhaft entfernen - Windows 8.1
    Log-Analyse und Auswertung - 16.06.2014 (11)
  4. Windows 7: Allin1 Converter / Suchmaschine V9 statt Google / Updateports blockiert
    Log-Analyse und Auswertung - 29.05.2014 (11)
  5. Firefox Quickstark auf einmal yahoo-Suchmaschine
    Plagegeister aller Art und deren Bekämpfung - 04.05.2014 (12)
  6. Windows 7, download protector 2.2.0 nicht zu entfernen, firefox user
    Log-Analyse und Auswertung - 19.04.2014 (13)
  7. Wie kann ich die wisesearch suchmaschine entfernen?
    Log-Analyse und Auswertung - 19.01.2014 (13)
  8. VLC.de Suchmaschine Trojaner entfernen / Windows 8
    Plagegeister aller Art und deren Bekämpfung - 13.01.2014 (5)
  9. Windows XP, schwedisch, Firefox, certified toolbar entfernen misslingt
    Log-Analyse und Auswertung - 10.01.2014 (17)
  10. Entfernen von DuckDuckGo Search Engine unter Firefox (OS:Windows 7 (32-Bit))
    Log-Analyse und Auswertung - 05.01.2014 (9)
  11. Unerwünschte Suchmaschine als Startseite bei neuer Sitzung im Firefox
    Plagegeister aller Art und deren Bekämpfung - 07.12.2013 (7)
  12. Windows 7: Snap.do und Search-Gol wird je nach User unter Firefox als Suchmaschine vorgeschlagen
    Log-Analyse und Auswertung - 14.10.2013 (9)
  13. Umleitung auf "QV06-Suchmaschine" im Firefox
    Log-Analyse und Auswertung - 16.09.2013 (7)
  14. holasearch.com ist ständig Startseite in Firefox und auch Suchmaschine
    Log-Analyse und Auswertung - 21.08.2013 (13)
  15. WIN 7 Deltasearch als Suchmaschine lässt sich nicht entfernen
    Log-Analyse und Auswertung - 20.08.2013 (7)
  16. Windows 7 - Firefox andauernde Störung durch Babylon Suchmaschine
    Alles rund um Windows - 27.11.2012 (3)
  17. Firefox Startseite wechselt immer auf Babylon-Suchmaschine
    Alles rund um Windows - 08.04.2012 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: Suchmaschine en.v9.com aus firefox entfernen - Code: Alles auswählen Aufklappen ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=78b9c53a6c8c2443b98bc4f06e3fade0 # engine=15097 # end=finished # remove_checked=false # archives_checked=true # - Windows 7: Suchmaschine en.v9.com aus firefox entfernen...
Archiv
Du betrachtest: Windows 7: Suchmaschine en.v9.com aus firefox entfernen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131