Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
PUP.Optional.Movies Toolbar.A

PUP.Optional.Movies Toolbar.A


Plagegeister aller Art und deren Bekämpfung: PUP.Optional.Movies Toolbar.A

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 22.09.2013, 16:38   #1
fkress
 
PUP.Optional.Movies Toolbar.A - Standard

PUP.Optional.Movies Toolbar.A


Hier ist es auch schon:


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-09-2013
Ran by User (administrator) on USER-PC on 22-09-2013 16:57:56
Running from C:\Users\User\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
() C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Intel Corporation) C:\Windows\System32\GfxUI.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Farbar) C:\Users\User\Desktop\Farbar Recovery Scan Tool FRST64.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [COMODO Internet Security] - C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1497816 2013-06-18] (COMODO)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [CCleaner] - C:\Program Files\CCleaner\CCleaner64.exe [6294808 2013-08-21] (Piriform Ltd)
HKCU\...\Run: [cqzyypqi] - C:\Users\User\AppData\Roaming\Wpdxeakm\lrslpojypqi.exe
HKCU\...\Run: [sheiipho] - C:\Users\User\AppData\Roaming\Wplr\ugrsipho.exe
HKCU\...\Run: [monvt] - C:\Users\User\AppData\Roaming\monvt.lnk [770 2013-09-19] ()
MountPoints2: F - F:\StartUse.exe
MountPoints2: {90f007dd-eef5-11e2-9a6e-88ae1d34e80d} - F:\iLinker.exe
MountPoints2: {c9295630-2494-11e0-bc62-88ae1d34e80d} - F:\AutoInstaller.exe
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040 2010-02-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [] -  [x]

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:50121
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC1114376F45ECB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\400u1epb.default
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 50121
FF NetworkProxy: "type", 4
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: New tab - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\400u1epb.default\Extensions\{9CFCADF8-13D1-1BCA-F7F4-8DD848BB11F7}
FF Extension: DivXWebPlayer - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\400u1epb.default\Extensions\DivXWebPlayer@divx.com.xpi
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\400u1epb.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\400u1epb.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==================== Services (Whitelisted) =================

R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6181504 2013-06-18] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [158936 2013-06-18] (COMODO)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

==================== Drivers (Whitelisted) ====================

S3 C2XXCOM; C:\Windows\System32\DRIVERS\C2XXCOM76.sys [49920 2010-08-09] (Samsung Electronics)
S3 C2xxUSB; C:\Windows\System32\DRIVERS\C2xxUSB76.sys [46080 2010-11-04] (Samsung Electronics)
S3 C2xxUsbStorage; C:\Windows\System32\DRIVERS\C2xSTR76.sys [9216 2010-06-10] (Samsung Electronics)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2013-06-18] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [708632 2013-06-18] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2013-06-18] (COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [96800 2013-06-18] (COMODO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 nmwcdx64; C:\Windows\System32\drivers\ccdcmbx64.sys [18432 2008-05-02] (Nokia)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-22 16:17 - 2013-09-22 16:50 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-22 16:13 - 2013-09-22 16:50 - 00000000 ____D C:\Users\User\Desktop\mbar
2013-09-22 16:12 - 2013-09-22 16:11 - 12907592 _____ (Malwarebytes Corp.) C:\Users\User\Desktop\mbar-1.07.0.1005.exe
2013-09-22 15:35 - 2013-09-22 15:35 - 00000331 _____ C:\Start_.cmd
2013-09-22 15:27 - 2013-09-22 15:25 - 01039554 _____ C:\Users\User\Desktop\AdwCleaner 3.004.exe
2013-09-22 15:12 - 2013-09-22 15:15 - 00000000 ____D C:\Users\User\Desktop\Neuer Ordner (2)
2013-09-22 15:08 - 2013-09-22 15:10 - 01956670 _____ (Farbar) C:\Users\User\Desktop\Farbar Recovery Scan Tool FRST64.exe
2013-09-20 18:03 - 2013-09-20 18:03 - 00000000 ____D C:\FRST
2013-09-20 15:03 - 2013-09-20 15:03 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-20 15:02 - 2013-09-20 15:02 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-20 15:02 - 2013-09-20 15:02 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-20 15:02 - 2013-09-20 15:02 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-20 15:02 - 2013-09-20 15:02 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-20 15:02 - 2013-09-20 15:02 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-20 15:02 - 2013-09-20 15:02 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-20 15:02 - 2013-09-20 15:02 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-20 15:02 - 2013-09-20 15:02 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-20 15:02 - 2013-09-20 15:02 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-20 15:02 - 2013-09-20 15:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 23:46 - 2013-09-19 23:46 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2013-09-19 23:45 - 2013-09-22 16:53 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2013-09-19 23:44 - 2013-09-19 23:45 - 00000000 ___SD C:\ProgramData\Shared Space
2013-09-19 23:43 - 2013-09-19 23:45 - 00000000 ____D C:\ProgramData\Comodo
2013-09-19 23:43 - 2013-09-19 23:43 - 00000000 ____D C:\ProgramData\Comodo Downloader
2013-09-19 23:43 - 2013-09-19 23:43 - 00000000 ____D C:\Program Files\COMODO
2013-09-19 23:23 - 2013-09-19 23:23 - 00000770 _____ C:\Users\User\AppData\Roaming\monvt.lnk
2013-09-19 18:02 - 2013-09-19 18:02 - 00000000 ____D C:\Users\User\AppData\Roaming\IObit
2013-09-19 18:00 - 2013-09-19 18:00 - 00001173 _____ C:\Users\User\Desktop\Auslogics DiskDefrag.lnk
2013-09-19 18:00 - 2013-09-19 18:00 - 00000000 ____D C:\ProgramData\Auslogics
2013-09-19 18:00 - 2013-09-19 18:00 - 00000000 ____D C:\Program Files (x86)\Auslogics
2013-09-19 17:46 - 2013-09-19 17:46 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-09-19 17:46 - 2013-09-19 17:46 - 00000000 ____D C:\Program Files\CCleaner
2013-09-19 17:33 - 2013-09-19 17:33 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-19 17:33 - 2013-09-19 17:33 - 00000000 ____D C:\Users\User\AppData\Roaming\Malwarebytes
2013-09-19 17:33 - 2013-09-19 17:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-19 17:33 - 2013-09-19 17:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-19 17:33 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-09-18 20:38 - 2013-09-19 11:35 - 00155829 _____ C:\Users\User\Downloads\DIPLOMARBEIT 17.09.odt
2013-09-18 13:24 - 2013-09-18 13:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-15 23:08 - 2013-09-19 17:49 - 00000000 ____D C:\Windows\Minidump
2013-09-12 18:29 - 2013-08-08 03:20 - 03155456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-12 18:29 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-12 18:29 - 2013-08-02 04:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-09-12 18:29 - 2013-08-02 04:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-09-12 18:29 - 2013-08-02 04:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-09-12 18:29 - 2013-08-02 04:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-09-12 18:29 - 2013-08-02 04:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-09-12 18:29 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 18:29 - 2013-08-02 04:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-09-12 18:29 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 18:29 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-09-12 18:29 - 2013-08-02 03:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-09-12 18:29 - 2013-08-02 03:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-09-12 18:29 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-09-12 18:29 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-09-12 18:29 - 2013-08-02 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-12 18:29 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-09-12 18:29 - 2013-08-02 02:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-09-12 18:29 - 2013-08-02 02:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-09-12 18:29 - 2013-08-02 02:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-09-12 18:29 - 2013-08-02 02:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-09-12 18:29 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 18:29 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-12 18:29 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 18:29 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-12 18:29 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-09-12 18:29 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-09-10 16:49 - 2013-09-19 13:10 - 00000000 ____D C:\Users\User\Desktop\Neuer Ordner
2013-09-10 16:30 - 2013-09-10 16:30 - 00000104 _____ C:\Users\User\Documents\Standardprogramme - Verknüpfung.lnk

==================== One Month Modified Files and Folders =======

2013-09-22 16:56 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-22 16:53 - 2013-09-19 23:45 - 01474832 _____ C:\Windows\system32\Drivers\sfi.dat
2013-09-22 16:50 - 2013-09-22 16:17 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-22 16:50 - 2013-09-22 16:13 - 00000000 ____D C:\Users\User\Desktop\mbar
2013-09-22 16:21 - 2009-07-14 06:45 - 00015440 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-22 16:21 - 2009-07-14 06:45 - 00015440 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-22 16:11 - 2013-09-22 16:12 - 12907592 _____ (Malwarebytes Corp.) C:\Users\User\Desktop\mbar-1.07.0.1005.exe
2013-09-22 15:35 - 2013-09-22 15:35 - 00000331 _____ C:\Start_.cmd
2013-09-22 15:25 - 2013-09-22 15:27 - 01039554 _____ C:\Users\User\Desktop\AdwCleaner 3.004.exe
2013-09-22 15:15 - 2013-09-22 15:12 - 00000000 ____D C:\Users\User\Desktop\Neuer Ordner (2)
2013-09-22 15:13 - 2009-07-14 19:58 - 00648704 _____ C:\Windows\system32\perfh007.dat
2013-09-22 15:13 - 2009-07-14 19:58 - 00128930 _____ C:\Windows\system32\perfc007.dat
2013-09-22 15:13 - 2009-07-14 07:13 - 01486084 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-22 15:10 - 2013-09-22 15:08 - 01956670 _____ (Farbar) C:\Users\User\Desktop\Farbar Recovery Scan Tool FRST64.exe
2013-09-20 18:03 - 2013-09-20 18:03 - 00000000 ____D C:\FRST
2013-09-20 15:34 - 2010-09-28 12:42 - 00000000 ____D C:\Windows\Panther
2013-09-20 15:28 - 2010-09-28 11:55 - 00001413 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-20 15:25 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-09-20 15:03 - 2013-09-20 15:03 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-20 15:02 - 2013-09-20 15:02 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-20 15:02 - 2013-09-20 15:02 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-09-20 15:02 - 2013-09-20 15:02 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-09-20 15:02 - 2013-09-20 15:02 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-09-20 15:02 - 2013-09-20 15:02 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-09-20 15:02 - 2013-09-20 15:02 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-09-20 15:02 - 2013-09-20 15:02 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-09-20 15:02 - 2013-09-20 15:02 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-09-20 15:02 - 2013-09-20 15:02 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-09-20 15:02 - 2013-09-20 15:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-09-20 15:02 - 2013-09-20 15:02 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-09-20 15:02 - 2013-09-20 15:02 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-09-19 23:46 - 2013-09-19 23:46 - 00000000 ____D C:\Windows\System32\Tasks\COMODO
2013-09-19 23:45 - 2013-09-19 23:44 - 00000000 ___SD C:\ProgramData\Shared Space
2013-09-19 23:45 - 2013-09-19 23:43 - 00000000 ____D C:\ProgramData\Comodo
2013-09-19 23:43 - 2013-09-19 23:43 - 00000000 ____D C:\ProgramData\Comodo Downloader
2013-09-19 23:43 - 2013-09-19 23:43 - 00000000 ____D C:\Program Files\COMODO
2013-09-19 23:30 - 2011-01-02 18:23 - 00000000 ____D C:\ProgramData\ICQ
2013-09-19 23:25 - 2013-08-13 19:41 - 00000000 ___HD C:\Users\User\AppData\Roaming\Wpdxeakm
2013-09-19 23:25 - 2013-08-11 23:26 - 00000000 ___HD C:\Users\User\AppData\Roaming\Wplr
2013-09-19 23:23 - 2013-09-19 23:23 - 00000770 _____ C:\Users\User\AppData\Roaming\monvt.lnk
2013-09-19 23:23 - 2013-08-19 17:22 - 00000000 ____D C:\ProgramData\Wincert
2013-09-19 23:23 - 2013-07-26 09:53 - 00000000 ___HD C:\Users\User\AppData\Roaming\Yzlrux
2013-09-19 23:23 - 2013-07-24 22:39 - 00000000 ___HD C:\Users\User\AppData\Roaming\Lryfaltdc
2013-09-19 20:54 - 2010-09-28 13:51 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-19 20:54 - 2010-09-28 13:51 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-19 18:07 - 2010-11-21 14:50 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-19 18:03 - 2011-01-02 18:21 - 00000000 ____D C:\Users\User\AppData\Roaming\ICQ
2013-09-19 18:02 - 2013-09-19 18:02 - 00000000 ____D C:\Users\User\AppData\Roaming\IObit
2013-09-19 18:00 - 2013-09-19 18:00 - 00001173 _____ C:\Users\User\Desktop\Auslogics DiskDefrag.lnk
2013-09-19 18:00 - 2013-09-19 18:00 - 00000000 ____D C:\ProgramData\Auslogics
2013-09-19 18:00 - 2013-09-19 18:00 - 00000000 ____D C:\Program Files (x86)\Auslogics
2013-09-19 17:57 - 2011-07-20 14:08 - 00003288 _____ C:\Windows\System32\Tasks\{4D0D0E39-7485-4856-8D4E-66A54F488185}
2013-09-19 17:57 - 2011-05-25 18:46 - 00003296 _____ C:\Windows\System32\Tasks\{B6E9C11D-EEF9-4120-8800-7232B2E8B515}
2013-09-19 17:57 - 2010-11-21 14:53 - 00003356 _____ C:\Windows\System32\Tasks\{6F5883E9-8AE1-412A-985C-B320210CDA98}
2013-09-19 17:56 - 2010-11-21 14:53 - 00002880 _____ C:\Windows\System32\Tasks\{0CF0C9EF-122B-4DEE-9B4D-BBF1A75A83AB}
2013-09-19 17:56 - 2010-09-28 13:51 - 00004114 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-09-19 17:56 - 2010-09-28 13:51 - 00003862 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-09-19 17:50 - 2013-07-06 17:11 - 00000000 ____D C:\Users\User\AppData\Roaming\Media Player Classic
2013-09-19 17:50 - 2010-11-21 14:50 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype
2013-09-19 17:49 - 2013-09-15 23:08 - 00000000 ____D C:\Windows\Minidump
2013-09-19 17:46 - 2013-09-19 17:46 - 00002770 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-09-19 17:46 - 2013-09-19 17:46 - 00000000 ____D C:\Program Files\CCleaner
2013-09-19 17:33 - 2013-09-19 17:33 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-09-19 17:33 - 2013-09-19 17:33 - 00000000 ____D C:\Users\User\AppData\Roaming\Malwarebytes
2013-09-19 17:33 - 2013-09-19 17:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-09-19 17:33 - 2013-09-19 17:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-09-19 13:10 - 2013-09-10 16:49 - 00000000 ____D C:\Users\User\Desktop\Neuer Ordner
2013-09-19 11:35 - 2013-09-18 20:38 - 00155829 _____ C:\Users\User\Downloads\DIPLOMARBEIT 17.09.odt
2013-09-18 17:08 - 2013-06-23 20:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-18 14:13 - 2013-08-19 01:01 - 00000000 ____D C:\Users\User\AppData\Local\Adobe
2013-09-18 13:28 - 2010-09-28 13:14 - 00000000 ____D C:\Users\User\AppData\Local\Mozilla
2013-09-18 13:24 - 2013-09-18 13:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-13 11:08 - 2010-09-28 11:55 - 00000000 ___RD C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-13 11:08 - 2010-09-28 11:55 - 00000000 ___RD C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-13 11:07 - 2009-07-14 06:45 - 00290704 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-13 10:47 - 2013-08-06 21:18 - 00000000 ____D C:\Windows\system32\MRT
2013-09-13 10:44 - 2010-09-28 13:16 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-10 16:30 - 2013-09-10 16:30 - 00000104 _____ C:\Users\User\Documents\Standardprogramme - Verknüpfung.lnk
2013-08-23 11:12 - 2010-11-15 18:19 - 00000000 ____D C:\Users\User\Desktop\Akon

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-02-17 23:47

==================== End Of Log ============================
--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-09-2013
Ran by User at 2013-09-22 17:00:31
Running from C:\Users\User\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs ======================

AAVUpdateManager (x32 Version: 18.00.0000)
Adobe Flash Player 11 Plugin (x32 Version: 11.1.102.55)
Apple Application Support (x32 Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (x32 Version: 2.1.3.127)
Ashampoo Burning Studio 6 FREE (x32 Version: 6.7.7)
Auslogics DiskDefrag (x32 Version: 4.1.0.0)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.05)
COMODO Internet Security Premium (Version: 6.2.20728.2847)
Die Sims Deluxe (x32)
Foxit Reader (x32 Version: 4.0.0.619)
Free YouTube Download version 3.0.19.1206 (x32)
Google Earth (x32 Version: 7.1.1.1888)
iTunes (Version: 11.0.1.12)
Java Auto Updater (x32 Version: 2.0.2.1)
Java(TM) 6 Update 20 (x32 Version: 6.0.200)
K-Lite Codec Pack 5.1.0 (Full) (x32 Version: 5.1.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
Nokia Connectivity Cable Driver (Version: 6.80.5.1)
OpenOffice.org 3.2 (x32 Version: 3.2.9502)
Picasa 3 (x32 Version: 3.8)
PLI-2030 Utility (x32 Version: 3051B)
QuickTime (x32 Version: 7.68.75.0)
Samsung Connection Manager (x32 Version: 109)
Skype™ 5.0 (x32 Version: 5.0.152)
Steuer-Spar-Erklärung 2010 (x32 Version: 15.07)
Steuer-Spar-Erklärung 2011 (x32 Version: 16.02)
Steuer-Spar-Erklärung 2012 (x32 Version: 17.11)
Steuer-Spar-Erklärung 2013 (x32 Version: 18.02)
VLC media player 1.1.4 (x32 Version: 1.1.4)

==================== Restore Points  =========================

28-08-2013 22:38:01 Windows Update
29-08-2013 16:13:12 Windows Update
31-08-2013 13:08:56 Windows Update
31-08-2013 13:51:14 Windows Update
02-09-2013 09:58:36 Windows Update
02-09-2013 10:28:50 Windows Update
02-09-2013 21:17:58 Windows Update
02-09-2013 22:29:55 Windows Update
06-09-2013 12:07:16 Windows Update
06-09-2013 13:53:38 Windows Update
08-09-2013 12:50:32 Windows Update
08-09-2013 14:03:53 Windows Update
10-09-2013 15:27:18 Windows Update
13-09-2013 08:37:12 Windows Update
17-09-2013 16:15:31 Windows Update
18-09-2013 11:06:05 Windows Update
18-09-2013 13:29:08 Windows Update
19-09-2013 07:33:10 Windows Update
19-09-2013 10:05:11 Windows Update
19-09-2013 16:06:16 Removed Skype Toolbars
19-09-2013 21:44:59 Gerätetreiber-Paketinstallation: COMODO Netzwerkdienst
20-09-2013 12:58:16 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03108928-C526-42A1-9720-37A6A9CB8BE7} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {0576F668-9FB1-4E73-B8AC-F8FD3F39B71C} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO)
Task: {06961085-5924-45F1-B3E2-A63C8AEE50ED} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO)
Task: {2BBF4A84-4CC6-4B3A-AAAB-578E98BA0B2E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-09-28] (Google Inc.)
Task: {3FDC3FF4-70F8-437F-8106-E79288C35B02} - System32\Tasks\COMODO\COMODO Cache Builder {0FB77674-7905-4F34-A362-C5A9A26F8CF9} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO)
Task: {5E551777-10E8-4FB8-9E33-A82F4D244FAF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-09-28] (Google Inc.)
Task: {937396E4-831F-4F3D-95BF-EF83C6648C33} - System32\Tasks\{6F5883E9-8AE1-412A-985C-B320210CDA98} => Firefox.exe hxxp://ui.skype.com/ui/0/5.0.0.152.259/de/abandoninstall?source=lightinstaller&page=tsInstall&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;alreadyoffered
Task: {A0520222-B8F5-4CF5-9198-E88CF45C4689} - System32\Tasks\{0CF0C9EF-122B-4DEE-9B4D-BBF1A75A83AB} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2010-10-11] (Skype Technologies S.A.)
Task: {A177AF6C-6F11-4799-8225-1270DD699F5B} - \Scheduled Update for Ask Toolbar No Task File
Task: {B28B43C6-AB8A-413A-A85B-B55E09D8245D} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {BD36E915-BD50-4698-8887-5278EBC4007B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {C454E255-9D92-4471-8675-F1B1800700B6} - System32\Tasks\{B6E9C11D-EEF9-4120-8800-7232B2E8B515} => Firefox.exe hxxp://ui.skype.com/ui/0/5.3.0.111.259/de/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:offered-installed;madedefault
Task: {C4608CB2-71AD-4548-BD61-02B30E9FC936} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D9A124A2-6319-48CE-95A8-0AC3DE021AB0} - System32\Tasks\COMODO\COMODO Scan {F140D794-60B6-4F00-9235-D6457AA25B22} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2013-06-18] (COMODO)
Task: {E004E9C6-9C39-4079-99E7-536BEAE9F62B} - System32\Tasks\COMODO\COMODO Welcome {CEB54B45-2B5E-4FF5-9223-6735CD80FE69} => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [2013-06-18] (COMODO)
Task: {EA94AB67-6108-4F6B-98F2-EEDA7E63EF54} - System32\Tasks\{4D0D0E39-7485-4856-8D4E-66A54F488185} => Firefox.exe hxxp://ui.skype.com/ui/0/5.3.0.120.259/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;alreadyoffered
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2010-08-25 20:05 - 2010-08-25 20:05 - 00088064 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2010-08-25 20:03 - 2010-08-25 20:03 - 00004096 _____ ( ) C:\Windows\System32\IGFXDEVLib.dll

==================== Alternate Data Streams (whitelisted) ======


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/22/2013 03:30:00 PM) (Source: ESENT) (User: )
Description: taskhost (1508) WebCacheLocal: Fehler -1811 beim Öffnen von Protokolldatei C:\Users\User\AppData\Local\Microsoft\Windows\WebCache\V0100007.log.

Error: (09/22/2013 03:08:21 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/22/2013 03:07:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15584

Error: (09/22/2013 03:07:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15584

Error: (09/22/2013 03:07:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/20/2013 07:49:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3826985

Error: (09/20/2013 07:49:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3826985

Error: (09/20/2013 07:49:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/20/2013 06:14:18 PM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (09/20/2013 06:14:18 PM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034

Error: (09/22/2013 04:50:40 PM) (Source: mbamchameleon) (User: )
Description: C0000034


Microsoft Office Sessions:
=========================
Error: (09/22/2013 03:30:00 PM) (Source: ESENT)(User: )
Description: taskhost1508WebCacheLocal: C:\Users\User\AppData\Local\Microsoft\Windows\WebCache\V0100007.log-1811

Error: (09/22/2013 03:08:21 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestF:\esetsmartinstaller_enu.exe

Error: (09/22/2013 03:07:54 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15584

Error: (09/22/2013 03:07:54 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15584

Error: (09/22/2013 03:07:54 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/20/2013 07:49:31 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3826985

Error: (09/20/2013 07:49:31 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3826985

Error: (09/20/2013 07:49:31 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (09/20/2013 06:14:18 PM) (Source: Windows Search Service)(User: )
Description: 
Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (09/20/2013 06:14:18 PM) (Source: Windows Search Service)(User: )
Description: Kontext: Windows Anwendung


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)


==================== Memory info =========================== 

Percentage of memory in use: 60%
Total physical RAM: 2008.6 MB
Available physical RAM: 797.56 MB
Total Pagefile: 4017.2 MB
Available Pagefile: 2660 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:146.48 GB) (Free:73.24 GB) NTFS
Drive d: () (Fixed) (Total:86.3 GB) (Free:46.2 GB) NTFS
Drive f: (DOMINA  2GB) (Removable) (Total:1.87 GB) (Free:1.84 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 4E841145)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=146 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=86 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 2 GB) (Disk ID: 001AC99A)
Partition 1: (Active) - (Size=2 GB) - (Type=06)

==================== End Of Log ============================

Antwort

Themen zu PUP.Optional.Movies Toolbar.A
administrator, anti-malware, appdata, dateien, explorer, gelöscht, install.exe, laptop, malwarebytes, microsoft, pup.optional.bandoo, pup.optional.datamngr.a, pup.optional.moviestoolbar.a, pup.optional.musicboxtoolbar.a, roaming, services, speicher, temp, test, trojan.agent.aim, trojan.agent.ed, uninstall.exe, version


« Keine Downloads mehr möglich unter Windows 7 | Neuling braucht experten mit Qvo6 »


Ähnliche Themen: PUP.Optional.Movies Toolbar.A


  1. Virus PUP.Optional Toolbar
    Plagegeister aller Art und deren Bekämpfung - 08.07.2015 (12)
  2. GMER stürzt ab - MBAM erkennt PUP.Optional.Agent, PUP.Optional.IEBho.A, PUP.Optional.MyFreeze.A
    Plagegeister aller Art und deren Bekämpfung - 07.02.2015 (13)
  3. WIN7: Fund PUP.Optional.DigitalSites.A, PUP.Optional.OpenCandy, PUP.Optional.Softonic.A, PUP.Optional.Updater.A. Weitere Vorgehensweise
    Log-Analyse und Auswertung - 08.10.2014 (11)
  4. McAfee blockiert: SearchSuite in C:\Programm Files (x86)Movies Toolbar\Datamngr\x64\apctrl.dll
    Plagegeister aller Art und deren Bekämpfung - 13.09.2014 (3)
  5. Mc Afee kann Programm nicht entfernen, C:\Program Files (x86)\movies toolbar\Datamngr\x64\apcrt\dr.dlll
    Plagegeister aller Art und deren Bekämpfung - 13.09.2014 (16)
  6. Trojaner: PUP.Optional.CrossRider.A, PUP.Optional.MySearchDial.A, PUP.Optional.Babylon.A, PUP.Optional.BuenoSearch
    Plagegeister aller Art und deren Bekämpfung - 17.07.2014 (3)
  7. Security.Hijack, PUP.Optional.OpenCandy, PUP.Optional.Somoto, PUP.Optional.MoviesToolBar etc gefunden
    Plagegeister aller Art und deren Bekämpfung - 16.04.2014 (1)
  8. PUP.Optional.DomalQ / PUP.Optional.BProtector / PUP.Optional.InstallMonetizer.A
    Plagegeister aller Art und deren Bekämpfung - 11.03.2014 (9)
  9. PUP.Optional.SearchCertifiedTB.A / search.certified-toolbar
    Plagegeister aller Art und deren Bekämpfung - 06.03.2014 (23)
  10. PUP.Optinonal.Wajam.A, PUP.Optinonal.Babylon.A, PUP.BProtector, PUP.Optional.DataMgr.A, PUP.Optional.Babylon.Toolbar.A
    Log-Analyse und Auswertung - 11.12.2013 (11)
  11. Windows 8: Fund von TR/Dropper.gen, PUP.Optional.Iminent.A, PUP.Optional.BizzyBolt, PUP.Optional.DigitalSites.A
    Log-Analyse und Auswertung - 10.12.2013 (13)
  12. Movies Toolbar entfernen
    Anleitungen, FAQs & Links - 25.10.2013 (2)
  13. Windows Vista: PUP.Optional.Tarma.A PUP.Optional.OpenCandy PUP.Optional.InstallCore.A
    Plagegeister aller Art und deren Bekämpfung - 11.09.2013 (13)
  14. 2x Windows Vista: PUP.Optional.Tarma.A PUP.Optional.OpenCandy PUP.Optional.InstallCore.A
    Mülltonne - 08.09.2013 (1)
  15. PUP.Optional.BrowserDefender.A, PUP.Optional.Babylon.A, PUP.Optional.Delta
    Log-Analyse und Auswertung - 25.08.2013 (8)
  16. Entrusted Toolbar und DVDVideoSoftTB Toolbar lassen sich nicht deinstaliern
    Plagegeister aller Art und deren Bekämpfung - 24.03.2013 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema PUP.Optional.Movies Toolbar.A - Hier ist es auch schon: FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-09-2013 Ran by User (administrator) on USER-PC on - PUP.Optional.Movies Toolbar.A...
Archiv
Du betrachtest: PUP.Optional.Movies Toolbar.A auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132