Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Spyhunter 4 und andere Kleinigkeiten

Spyhunter 4 und andere Kleinigkeiten


Log-Analyse und Auswertung: Spyhunter 4 und andere Kleinigkeiten

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 11.09.2013, 20:59   #1
CU4talk
 
Spyhunter 4 und andere Kleinigkeiten - Icon17

Spyhunter 4 und andere Kleinigkeiten


Guten Abend bzw. Guten Morgen!

Ich hatte ein eher kleines Problem mit der nicht speicherbaren Startseite vom Firexfox. Im Internet gab es da einige Tipps. U.A. wurde Spyhunter 4 empfohlen. Habe es dann ohne viel Nachzudenken installiert. Hier habe ich gelese, dass Spyhunger selbst Malware sei.
Jedenfalls ist Spyhunter total lästig und will immer wieder die "DNS-Einstellungen ... modifizieren". Ich habe jetzt einmal die Checkliste durchgearbeitet und einen Systemscan mit FRST gemacht. Die Ergebnisse sind weiter unten zu sehen:

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-09-2013 01
Ran by Christian (administrator) on CHRISTIAN-PC on 11-09-2013 21:26:02
Running from D:\Benutzer\Christian\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Enigma Software Group USA, LLC.) C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
() C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
(Dropbox, Inc.) C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(SlySoft, Inc.) C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
() D:\Benutzer\Christian\Downloads\Defogger.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NUSB3MON] - C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe [97280 2012-04-11] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [itype] - C:\Program Files\Microsoft IntelliType Pro\itype.exe [2342800 2009-05-21] (Microsoft Corporation)
HKCU\...\Run: [Mobile Partner] - C:\Program Files (x86)\Mobile Partner\Mobile Partner.exe [114688 2012-10-13] ()
HKCU\...\Run: [] - [x]
HKCU\...\Run: [NokiaSuite.exe] - C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1088424 2012-10-13] (Nokia)
HKCU\...\Run: [AmazonMP3DownloaderHelper] - C:\Users\Christian\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
MountPoints2: H - H:\AutoRun.exe
MountPoints2: {52b59b01-1523-11e2-8d22-14dae943e10c} - G:\AutoRun.exe
MountPoints2: {52b59b2b-1523-11e2-8d22-14dae943e10c} - G:\AutoRun.exe
MountPoints2: {8eacd3c5-15e1-11e2-aa24-14dae943e10c} - F:\AutoRun.exe
MountPoints2: {9a56a9a8-d3ee-11e2-94d4-14dae943e10c} - H:\AutoRun.exe
MountPoints2: {a0d8ab7d-1519-11e2-85d1-806e6f6e6963} - E:\1stAutorunExpressMenuLauncher.exe
MountPoints2: {fa4f5035-1b55-11e2-b629-14dae943e10c} - H:\AutoRun.exe
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ConnectionCenter] - C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395656 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [PDFPrint] - C:\Program Files (x86)\PDF24\pdf24.exe [163000 2012-12-12] (Geek Software GmbH)
HKLM-x32\...\Run: [CloneCDTray] - C:\Program Files (x86)\SlySoft\CloneCD\CloneCDTray.exe [57344 2009-01-30] (SlySoft, Inc.)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [CitrixReceiver] - "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk" [x]
HKLM-x32\...\Run: [Redirector] - C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153992 2013-06-14] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Christian\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk
ShortcutTarget: simplicheck.lnk -> C:\Program Files (x86)\simplitec\simplicheck\simplicheck.exe (simplitec)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.orf.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://nmd.msn.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x74312B5AE2B5CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:newtab
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378049773440&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&q={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1378049773440&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&q={searchTerms}
BHO: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Plus-HD-3.8 - {11111111-1111-1111-1111-110311901130} - C:\Program Files (x86)\Plus-HD-3.8\Plus-HD-3.8-bho.dll (Plus HD)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: SteadyVideoBHO Class - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: HomeTab - {a25e7121-3dd8-41b3-855b-756c5bc45449} - C:\Users\Christian\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - HomeTab - {a25e7121-3dd8-41b3-855b-756c5bc45449} - C:\Users\Christian\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\..\Interfaces\{E47BFB69-55DB-4963-8F2E-00EF361C943D}: [NameServer]213.94.78.26 213.94.78.27

FireFox:
========
FF ProfilePath: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\o6pmdjlm.default
FF NewTab: about:home
FF SearchEngineOrder.1: Web Search
FF Homepage: about:home
FF Keyword.URL: hxxp://search.certified-toolbar.com?si=66920&tid=6787&ver=4.4&ts=1378049773440.000008&tguid=66920-6787-1378049773440-CE36BD229C3B6E866524D6C055330C22&st=chrome&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @canon.com/MycameraPlugin - C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF Plugin-x32: @Citrix.com/npican - C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\Christian\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
FF SearchPlugin: C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\o6pmdjlm.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\o6pmdjlm.default\Extensions\c17236e8-fd66-44bc-aeef-1e00981cbb64@0a4ee0fe-5356-4fd3-b37c-5cd5671a315c.com
FF Extension: HomeTab - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\o6pmdjlm.default\Extensions\{ad7ef860-f366-4be1-8d12-4363b9356947}
FF Extension: FoxyDeal - C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Profiles\o6pmdjlm.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D}
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\coFFPlgn\
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\IPSFFPlgn\
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\IPSFFPlgn\

Chrome: 
=======
CHR HomePage: about:newtab?source=home
CHR RestoreOnStartup: "about:newtab?source=home"], "restore_on_startup_migrated":true, "restore_on_startup":4}, "countryid_at_install":16724, "profile":{"avatar_index":0, "exit_type":"Normal", "content_settings":{"clear_on_exit_migrated":true, "pref_version":1}, "exited_cleanly":true, "name":"Erster Nutzer", "is_managed":false}, "homepage_is_newtabpage":"true", "browser":{"window_placement":{"work_area_top":0, "work_area_right":1920, "top":10, "left":10, "bottom":1022, "maximized":false, "right":955, "work_area_left":0, "work_area_bottom":1032}, "last_prompted_google_url":"https://www.google.at/", "last_known_google_url":"https://www.google.at/", "check_default_browser":false}, "distribution":{"verbose_logging":false, "create_all_shortcuts":true, "import_search_engine":false, "skip_first_run_ui":true, "show_welcome_page":true, "do_not_launch_chrome":true, "make_chrome_default":true, "import_history":false}, "variations_seed":"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", "net":{"http_server_properties":{"version":1, "servers":{"accounts.google.com:443":{"settings":{"4":100}, "supports_spdy":true}, "fonts.googleapis.com:443":{"settings":{"4":100}, "supports_spdy":true}, "accounts.youtube.com:443":{"settings":{"4":100}, "supports_spdy":true}, "ssl.gstatic.com:443":{"settings":{"4":100}, "supports_spdy":true}, "www.google.com:443":{"settings":{"4":100}, "supports_spdy":true}, "apis.google.com:443":{"settings":{"4":100}, "supports_spdy":true}, "ssl.google-analytics.com:443":{"settings":{"4":100}, "supports_spdy":true}, "themes.googleusercontent.com:443":{"settings":{"4":100}, "supports_spdy":true}}}}, "dns_prefetching":{"startup_list":[1, "https://www.google.com/"], "host_referral_list":[2, ["https://accounts.google.com/", ["https://accounts.youtube.com/", 2.208657065706, "https://ssl.gstatic.com/", 2.208657065706]], ["https://apis.google.com/", ["https://apis.google.com/", 2.529573049612]], ["https://www.google.com/", ["https://apis.google.com/", 2.850489033518, "https://fonts.googleapis.com/", 2.208657065706, "https://ssl.google-analytics.com/", 2.529573049612, "https://ssl.gstatic.com/", 2.529573049612, "https://themes.googleusercontent.com/", 3.171405017424, "https://www.google.com/", 5.417816904766]]]}, "homepage":"about:newtab?source=home", "sync_promo":{"startup_count"
CHR Extension: (FoxyDeal) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiennapmieppnpfhhogglccgepbdajan\6.2.0_0
CHR Extension: (Docs) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0
CHR Extension: (Google Drive) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Norton Identity Protection) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2013.4.0.10_0
CHR Extension: (Plus-HD-3.8) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofjgnhihlklpobkaloamkankaaoclfjh\1.23.19_0
CHR Extension: (Gmail) - C:\Users\CHRIST~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [bddpogknpjlgfpbboediomaiiaecfajn] - C:\Program Files (x86)\HomeTab\chrome\HomeTab.crx
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-05-20] (Adobe Systems)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-03-28] (Advanced Micro Devices, Inc.)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 SpyHunter 4 Service; C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [1025408 2013-07-17] (Enigma Software Group USA, LLC.)

==================== Drivers (Whitelisted) ====================

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R2 AODDriver4.2; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [57472 2012-04-09] (Advanced Micro Devices)
R0 asahci64; C:\Windows\System32\drivers\asahci64.sys [49760 2012-01-06] (Asmedia Technology)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20130903.002\BHDrvx64.sys [1525336 2013-09-04] (Symantec Corporation)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20130903.002\BHDrvx64.sys [1525336 2013-09-04] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-08-27] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-08-27] (Symantec Corporation)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [140376 2013-08-27] (Symantec Corporation)
R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [13088 2011-03-02] ()
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
R3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114560 2009-07-24] (Huawei Technologies Co., Ltd.)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20130910.001\IDSvia64.sys [520280 2013-08-22] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20130910.001\IDSvia64.sys [520280 2013-08-22] (Symantec Corporation)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130911.004\ENG64.SYS [126040 2013-08-29] (Symantec Corporation)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130911.004\ENG64.SYS [126040 2013-08-29] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130911.004\EX64.SYS [2099288 2013-08-29] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20130911.004\EX64.SYS [2099288 2013-08-29] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-06-19] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-11 21:23 - 2013-09-11 21:23 - 00000000 _____ C:\Users\Christian\defogger_reenable
2013-09-10 09:32 - 2013-09-10 09:32 - 00000000 _____ C:\autoexec.bat
2013-09-10 09:31 - 2013-09-10 09:32 - 00000000 ____D C:\sh4ldr
2013-09-10 09:31 - 2013-09-10 09:31 - 00003350 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-09-10 09:31 - 2013-09-10 09:31 - 00002273 _____ C:\Users\Christian\Desktop\SpyHunter.lnk
2013-09-10 09:31 - 2013-09-10 09:31 - 00000000 ____D C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-09-10 09:31 - 2013-09-10 09:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-09-10 09:31 - 2013-09-10 09:31 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-09-10 09:31 - 2012-06-22 12:01 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2013-09-10 09:15 - 2013-09-10 09:19 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-10 09:15 - 2013-09-10 09:15 - 00001390 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-09-10 09:15 - 2013-09-10 09:15 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-09-10 09:15 - 2013-09-10 09:15 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-09-10 09:15 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-09-01 21:44 - 2013-09-01 21:44 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-09-01 21:44 - 2013-09-01 21:44 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-09-01 21:44 - 2013-09-01 21:44 - 00000000 ____D C:\ProgramData\Sun
2013-09-01 17:54 - 2013-09-01 17:54 - 00000000 ____D D:\Benutzer\Christian\Eigene Dokumente\Nero
2013-09-01 17:53 - 2013-09-01 17:53 - 00000000 ____D C:\ProgramData\Nero
2013-09-01 17:53 - 2013-09-01 17:53 - 00000000 ____D C:\Program Files (x86)\Nero
2013-09-01 17:37 - 2013-09-11 20:29 - 00001912 _____ C:\Windows\Tasks\Plus-HD-3.8-chromeinstaller.job
2013-09-01 17:37 - 2013-09-11 20:29 - 00001836 _____ C:\Windows\Tasks\Plus-HD-3.8-firefoxinstaller.job
2013-09-01 17:37 - 2013-09-11 20:29 - 00001298 _____ C:\Windows\Tasks\Plus-HD-3.8-updater.job
2013-09-01 17:37 - 2013-09-11 20:29 - 00001204 _____ C:\Windows\Tasks\Plus-HD-3.8-codedownloader.job
2013-09-01 17:37 - 2013-09-11 20:29 - 00001102 _____ C:\Windows\Tasks\Plus-HD-3.8-enabler.job
2013-09-01 17:37 - 2013-09-01 17:37 - 00004328 _____ C:\Windows\System32\Tasks\Plus-HD-3.8-updater
2013-09-01 17:37 - 2013-09-01 17:37 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-3.8-codedownloader
2013-09-01 17:37 - 2013-09-01 17:37 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-3.8-enabler
2013-09-01 17:37 - 2013-09-01 17:37 - 00000000 ____D C:\Program Files (x86)\Plus-HD-3.8
2013-09-01 17:37 - 2013-09-01 17:37 - 00000000 ____D C:\Program Files (x86)\FoxyDeal
2013-09-01 17:36 - 2013-09-02 17:37 - 00000000 ____D C:\Users\Christian\AppData\Roaming\HomeTab
2013-09-01 17:36 - 2013-09-02 17:37 - 00000000 ____D C:\Program Files (x86)\HomeTab
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\Windows\System32\Tasks\ProtectedSearch
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\Windows\System32\Tasks\Browser Updater
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\Users\Christian\AppData\Roaming\SimplyTech
2013-09-01 17:36 - 2013-08-13 08:38 - 00032328 _____ C:\Windows\Launcher.exe
2013-09-01 17:35 - 2013-09-01 17:36 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\DownloadGuide
2013-09-01 17:35 - 2013-09-01 17:35 - 00000212 _____ C:\Users\Christian\Desktop\Amazon.url
2013-08-30 09:26 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-30 09:26 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-30 09:26 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-30 09:26 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-30 09:26 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-30 09:26 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-30 09:26 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-30 09:26 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-30 09:26 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-30 09:26 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-30 09:26 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-22 11:36 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-22 11:36 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-22 11:36 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-22 11:36 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-22 11:36 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-22 11:36 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-22 11:36 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-22 11:36 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-22 11:36 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-22 11:36 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-22 11:36 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-22 11:36 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-22 11:36 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-22 11:36 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-22 10:48 - 2013-09-01 17:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-22 10:06 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-22 10:06 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-22 10:06 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-22 10:06 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-22 10:06 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-22 10:06 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-22 10:06 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-22 10:06 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-22 10:06 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-22 10:06 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-22 10:06 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-22 10:06 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-22 10:06 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-22 10:06 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-22 10:06 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-22 10:06 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

==================== One Month Modified Files and Folders =======

2013-09-11 21:25 - 2013-09-11 21:25 - 00000000 ____D C:\FRST
2013-09-11 21:23 - 2013-09-11 21:23 - 00000000 _____ C:\Users\Christian\defogger_reenable
2013-09-11 21:23 - 2012-10-13 11:40 - 00000000 ____D C:\Users\Christian
2013-09-11 21:17 - 2012-10-13 11:40 - 01187866 _____ C:\Windows\WindowsUpdate.log
2013-09-11 21:15 - 2013-04-05 18:05 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Dropbox
2013-09-11 21:14 - 2012-11-03 11:13 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-11 21:13 - 2012-10-16 18:09 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-11 20:36 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-11 20:36 - 2009-07-14 06:45 - 00021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-11 20:35 - 2010-11-21 08:50 - 00698688 _____ C:\Windows\system32\perfh007.dat
2013-09-11 20:35 - 2010-11-21 08:50 - 00148828 _____ C:\Windows\system32\perfc007.dat
2013-09-11 20:35 - 2009-07-14 07:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-11 20:29 - 2013-09-01 17:37 - 00001912 _____ C:\Windows\Tasks\Plus-HD-3.8-chromeinstaller.job
2013-09-11 20:29 - 2013-09-01 17:37 - 00001836 _____ C:\Windows\Tasks\Plus-HD-3.8-firefoxinstaller.job
2013-09-11 20:29 - 2013-09-01 17:37 - 00001298 _____ C:\Windows\Tasks\Plus-HD-3.8-updater.job
2013-09-11 20:29 - 2013-09-01 17:37 - 00001204 _____ C:\Windows\Tasks\Plus-HD-3.8-codedownloader.job
2013-09-11 20:29 - 2013-09-01 17:37 - 00001102 _____ C:\Windows\Tasks\Plus-HD-3.8-enabler.job
2013-09-11 20:29 - 2012-11-03 11:13 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-11 20:29 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-11 20:29 - 2009-07-14 06:51 - 00086862 _____ C:\Windows\setupact.log
2013-09-11 08:12 - 2012-10-16 18:09 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-11 08:12 - 2012-10-16 18:09 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-11 08:12 - 2012-10-16 18:09 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-10 09:32 - 2013-09-10 09:32 - 00000000 _____ C:\autoexec.bat
2013-09-10 09:32 - 2013-09-10 09:31 - 00000000 ____D C:\sh4ldr
2013-09-10 09:31 - 2013-09-10 09:31 - 00003350 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2013-09-10 09:31 - 2013-09-10 09:31 - 00002273 _____ C:\Users\Christian\Desktop\SpyHunter.lnk
2013-09-10 09:31 - 2013-09-10 09:31 - 00000000 ____D C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-09-10 09:31 - 2013-09-10 09:31 - 00000000 ____D C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2013-09-10 09:31 - 2013-09-10 09:31 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-09-10 09:19 - 2013-09-10 09:15 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-09-10 09:15 - 2013-09-10 09:15 - 00001390 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-09-10 09:15 - 2013-09-10 09:15 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-09-10 09:15 - 2013-09-10 09:15 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-09-09 18:25 - 2012-10-13 14:21 - 00000000 ____D C:\Users\Christian\AppData\Roaming\ICAClient
2013-09-05 08:55 - 2012-10-13 14:21 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\Citrix
2013-09-05 08:55 - 2012-10-13 14:21 - 00000000 ____D C:\ProgramData\Citrix
2013-09-05 08:54 - 2012-10-13 14:21 - 00000000 ____D C:\Program Files (x86)\Citrix
2013-09-05 08:17 - 2013-07-06 19:47 - 00002190 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-02 17:37 - 2013-09-01 17:36 - 00000000 ____D C:\Users\Christian\AppData\Roaming\HomeTab
2013-09-02 17:37 - 2013-09-01 17:36 - 00000000 ____D C:\Program Files (x86)\HomeTab
2013-09-02 16:11 - 2009-07-14 07:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-09-02 10:18 - 2010-11-21 05:47 - 00031744 _____ C:\Windows\PFRO.log
2013-09-01 21:44 - 2013-09-01 21:44 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-09-01 21:44 - 2013-09-01 21:44 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-09-01 21:44 - 2013-09-01 21:44 - 00000000 ____D C:\ProgramData\Sun
2013-09-01 17:54 - 2013-09-01 17:54 - 00000000 ____D D:\Benutzer\Christian\Eigene Dokumente\Nero
2013-09-01 17:53 - 2013-09-01 17:53 - 00000000 ____D C:\ProgramData\Nero
2013-09-01 17:53 - 2013-09-01 17:53 - 00000000 ____D C:\Program Files (x86)\Nero
2013-09-01 17:51 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-09-01 17:37 - 2013-09-01 17:37 - 00004328 _____ C:\Windows\System32\Tasks\Plus-HD-3.8-updater
2013-09-01 17:37 - 2013-09-01 17:37 - 00004234 _____ C:\Windows\System32\Tasks\Plus-HD-3.8-codedownloader
2013-09-01 17:37 - 2013-09-01 17:37 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-3.8-enabler
2013-09-01 17:37 - 2013-09-01 17:37 - 00000000 ____D C:\Program Files (x86)\Plus-HD-3.8
2013-09-01 17:37 - 2013-09-01 17:37 - 00000000 ____D C:\Program Files (x86)\FoxyDeal
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\Windows\System32\Tasks\ProtectedSearch
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\Windows\System32\Tasks\Browser Updater
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\Users\Christian\AppData\Roaming\SimplyTech
2013-09-01 17:36 - 2013-09-01 17:35 - 00000000 ____D C:\Users\CHRIST~1\AppData\Local\DownloadGuide
2013-09-01 17:36 - 2013-08-22 10:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-01 17:35 - 2013-09-01 17:35 - 00000212 _____ C:\Users\Christian\Desktop\Amazon.url
2013-09-01 13:55 - 2012-10-20 12:44 - 00000000 ____D D:\Benutzer\Christian\Eigene Dokumente\Covers
2013-08-28 19:26 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-08-25 20:09 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-23 11:59 - 2012-10-13 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-22 11:35 - 2013-07-28 10:19 - 00000000 ____D C:\Windows\system32\MRT
2013-08-22 11:32 - 2012-11-22 20:18 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 08:38 - 2013-09-01 17:36 - 00032328 _____ C:\Windows\Launcher.exe

Files to move or delete:
====================
C:\Users\CHRIST~1\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\CHRIST~1\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\CHRIST~1\AppData\Local\Temp\ResetDevice.exe
C:\Users\CHRIST~1\AppData\Local\Temp\SHSetup.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-10 08:59

==================== End Of Log ============================
Bzw. Additon:

Code:
ATTFilter
Error: (09/09/2013 05:27:13 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/09/2013 03:13:54 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info =========================== 

Percentage of memory in use: 12%
Total physical RAM: 15848.25 MB
Available physical RAM: 13865.25 MB
Total Pagefile: 31694.68 MB
Available Pagefile: 28836.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:111.5 GB) (Free:39.36 GB) NTFS
Drive d: (Daten) (Fixed) (Total:1863.01 GB) (Free:1609.79 GB) NTFS
Drive e: (100 Ricette) (CDROM) (Total:0.14 GB) (Free:0 GB) CDFS
Drive f: (WD PASSPORT) (Fixed) (Total:111.76 GB) (Free:0 GB) FAT32
Drive h: (Mobile Partner) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================
Tja, vielen Dank für die Hilfe. Ich probiere mal noch den nächsten Schritt mit GMER und sehe dann weiter.

Schönen Abend noch
Liebe Grüße
Christian

Alt 12.09.2013, 05:17   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Spyhunter 4 und andere Kleinigkeiten - Standard

Spyhunter 4 und andere Kleinigkeiten


hi,
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!
Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1


WICHTIG - Speichere Combofix auf deinem Desktop
  • Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.
Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.
__________________

__________________
Antwort

Themen zu Spyhunter 4 und andere Kleinigkeiten
administrator, adobe, browser, checkliste, desktop, error, esgscanner.sys, explorer, farbar, farbar recovery scan tool, firefox, flash player, google, home, homepage, internet, malware, mozilla, pdf, problem, realtek, registry, safer networking, security, services.exe, software, spyhunter - hometab, svchost.exe, symantec, temp, winlogon.exe


« Windows 7: Hijackerbefall search.certified-toolbar.com | Malewarebytes meldet PUPs »


Ähnliche Themen: Spyhunter 4 und andere Kleinigkeiten


  1. Spyhunter 4 Abo kündigen ?
    Antiviren-, Firewall- und andere Schutzprogramme - 27.08.2015 (14)
  2. PROBLEME mit Spyhunter und mystart! Wie bekomme ich Spyhunter wieder weg?
    Plagegeister aller Art und deren Bekämpfung - 14.11.2014 (13)
  3. Optimizer Pro und Spyhunter
    Plagegeister aller Art und deren Bekämpfung - 08.05.2014 (12)
  4. SpyHunter
    Plagegeister aller Art und deren Bekämpfung - 11.03.2014 (3)
  5. Spyhunter 4
    Lob, Kritik und Wünsche - 09.01.2014 (0)
  6. Windows reagiert nach kleinigkeiten nicht mehr.Dropper.gen fund.
    Plagegeister aller Art und deren Bekämpfung - 26.11.2013 (7)
  7. Mit Spyhunter 47 Bedrohungen gefunden, Spyhunter wurde aber wieder deinstalliert.
    Log-Analyse und Auswertung - 25.10.2013 (9)
  8. SpyHunter entfernen
    Log-Analyse und Auswertung - 22.06.2013 (7)
  9. Verdacht auf Spyhunter
    Plagegeister aller Art und deren Bekämpfung - 04.06.2013 (53)
  10. spyhunter 4 entfernen
    Plagegeister aller Art und deren Bekämpfung - 03.02.2013 (32)
  11. Spyhunter 4 los werden
    Plagegeister aller Art und deren Bekämpfung - 28.11.2012 (18)
  12. Google.de nicht erreichbar - andere Seiten sehr langsam - andere normal DNS-Provider Problem oder Trojaner?
    Log-Analyse und Auswertung - 05.09.2012 (2)
  13. BKA Trojaner und evtl. andere Kleinigkeiten
    Log-Analyse und Auswertung - 13.02.2012 (12)
  14. Spyhunter 4 und andere Trojaner
    Plagegeister aller Art und deren Bekämpfung - 25.03.2011 (4)
  15. Spyhunter 4 problem
    Plagegeister aller Art und deren Bekämpfung - 27.04.2010 (11)
  16. zlod.sus, andere trojaner und bzw zusätzlich durch spyhunter
    Plagegeister aller Art und deren Bekämpfung - 24.12.2007 (8)
  17. Spyhunter
    Antiviren-, Firewall- und andere Schutzprogramme - 14.09.2007 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Spyhunter 4 und andere Kleinigkeiten - Guten Abend bzw. Guten Morgen! Ich hatte ein eher kleines Problem mit der nicht speicherbaren Startseite vom Firexfox. Im Internet gab es da einige Tipps. U.A. wurde Spyhunter 4 empfohlen. - Spyhunter 4 und andere Kleinigkeiten...
Archiv
Du betrachtest: Spyhunter 4 und andere Kleinigkeiten auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130