Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
http://websearch.oversearch.info

http://websearch.oversearch.info


Plagegeister aller Art und deren Bekämpfung: http://websearch.oversearch.info

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 30.09.2013, 21:10   #1
KeremTatli
 
http://websearch.oversearch.info - Standard

http://websearch.oversearch.info


Hallo, seit ner Zeit spinnt mein Rechner...
Die Internetseiten sind langsamer geworden...
Sogar die Ordner gehen langsam auf...

Habe mir sagen lassen, dass ich ein Virus im Rechner habe, der sich in diverse Ordner versteckt
und man es nicht beliebig deinstallieren, bzw. löschen kann !

Hab versucht, dass Problem selber zu lösen, jedoch ohne Erfolg...
Kenne mich nicht soooo gut mit Pc aus !

Würde mich sehr freuen, wenn ihr mir hilft, diesen Virus aus meinem Rechner zu kicken

MEINE PROBLEME lauten:
1) hxxp://websearch.oversearch.info
2) Ads not by this site

Bedanke mir im Voraus für Eure Hilfe


FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-09-2013 01
Ran by Keremino (administrator) on KEREM on 30-09-2013 22:05:05
Running from C:\Users\Veli\Downloads
Microsoft Windows 7 Enterprise  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
() C:\Windows\PLFSetI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [PLFSetI] - C:\Windows\PLFSetI.exe [200704 2008-07-29] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1565992 2009-09-17] (Synaptics Incorporated)
HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-06-20] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Cm106Sound] - RunDll32 cm106.cpl,CMICtrlWnd
HKLM\...\Run: [Creative SB Monitoring Utility] - RunDll32 sbavmon.dll,SBAVMonitor
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
MountPoints2: {45dd83b5-a2a6-11e2-8a8a-001e682e4752} - E:\AutoRun.exe
MountPoints2: {45dd83ca-a2a6-11e2-8a8a-001e682e4752} - E:\AutoRun.exe
MountPoints2: {569d3525-9b01-11e2-8d4d-001e682e4752} - E:\AutoRun.exe
MountPoints2: {569d3527-9b01-11e2-8d4d-001e682e4752} - E:\AutoRun.exe
MountPoints2: {569d3543-9b01-11e2-8d4d-001e682e4752} - E:\AutoRun.exe
MountPoints2: {569d3546-9b01-11e2-8d4d-001e682e4752} - E:\AutoRun.exe
MountPoints2: {9600f973-9d32-11e2-bd53-001e682e4752} - E:\AutoRun.exe
MountPoints2: {9600f975-9d32-11e2-bd53-001e682e4752} - E:\AutoRun.exe
MountPoints2: {9600f978-9d32-11e2-bd53-001e682e4752} - E:\AutoRun.exe
MountPoints2: {9600f9b2-9d32-11e2-bd53-001e682e4752} - E:\AutoRun.exe
MountPoints2: {9600f9b5-9d32-11e2-bd53-001e682e4752} - E:\AutoRun.exe
AppInit_DLLs:   [ ] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1353DB05A536CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=66920&st=chrome&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=66920&st=chrome&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://websearch.oversearch.info/?pid=298&r=2013/09/26&hid=14353993468478840820&lg=EN&cc=DE&unqvl=36
HKLM\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=66920&st=home&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=66920&st=chrome&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q=
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q={searchTerms}
SearchScopes: HKLM - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snap.do/?publisher=ShoppingHelper&dpid=ShoppingHelper&co=DE&userid=b1f47b7c-7ba3-4451-b915-8f16a5a434e7&searchtype=ds&q={searchTerms}&installDate=10/08/2013
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q={searchTerms}
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1380108222358&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q={searchTerms}
SearchScopes: HKLM - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.oversearch.info/?l=1&q={searchTerms}&pid=298&r=2013/09/26&hid=14353993468478840820&lg=EN&cc=DE&unqvl=36
SearchScopes: HKCU - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1380060000000.000008&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss_Btisdt7&mntrId=F878001DE0866C33&affID=124776&tt=250913_nocpn&tsp=5016
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://search.delta-homes.com/web/?utm_source=b&utm_medium=newgdp&from=newgdp&uid=SAMSUNGXHM160HI_S10UJF0S339133&ts=1377222735
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=66920&st=bs&tid=6787&ver=4.4&ts=1380108222358&tguid=66920-6787-1380108222358-7460702C987F8958BEEB078049EC5A60&q={searchTerms}
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = hxxp://websearch.oversearch.info/?l=1&q={searchTerms}&pid=298&r=2013/09/26&hid=14353993468478840820&lg=EN&cc=DE&unqvl=36
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM -  No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {34635AA6-B593-4F06-9EDD-5FF60FC13310} hxxp://download.speakychat.com/speakyldr.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default
FF user.js: detected! => C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\user.js
FF DefaultSearchEngine: WebSearch
FF SearchEngineOrder.1: WebSearch
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
FF SelectedSearchEngine: WebSearch
FF Homepage: https://www.google.de/
FF Keyword.URL: hxxp://websearch.oversearch.info/?pid=298&r=2013/09/26&hid=14353993468478840820&lg=EN&cc=DE&unqvl=36&l=1&q=
FF NetworkProxy: "autoconfig_url", "chrome://viewtubes/content/viewtubes_false.pac"
FF NetworkProxy: "http", "98.109.199.166"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @nielsen/FirefoxTracker - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll No File
FF Plugin: @segital.com/EartChat - C:\Users\Veli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\eartChat\NPEartChat.dll No File
FF Plugin: @speakychat.ch/SpeakyChatLB - C:\Users\Veli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\SpeakyChatLB\NPspeakychatlb.dll No File
FF Plugin: @talkyroom.com/TalkyRoom - C:\Users\Veli\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\TalkyRoom\NPTalkyRoom.dll No File
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\searchplugins\Ask.xml
FF SearchPlugin: C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\searchplugins\Web Search.xml
FF SearchPlugin: C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\searchplugins\WebSearch.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Ask.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\qvo6.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\Ask.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
FF Extension: Complete YouTube Saver - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{AF445D67-154C-4c69-A17B-7F392BCC36A3}
FF Extension: jid0-c1av474BVPIHcGJfBp3GkhlhAa4 - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\jid0-c1av474BVPIHcGJfBp3GkhlhAa4@jetpack.xpi
FF Extension: jid0-irAmugmQgdURBSCIFZAcjR8ZQMg - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\jid0-irAmugmQgdURBSCIFZAcjR8ZQMg@jetpack.xpi
FF Extension: jid0-w1UVmoLd6VGudaIERuRJCPQx1dQ - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\jid0-w1UVmoLd6VGudaIERuRJCPQx1dQ@jetpack.xpi
FF Extension: jid1-qj0w91o64N7Eeg - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\jid1-qj0w91o64N7Eeg@jetpack.xpi
FF Extension: screwads - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\screwads@airtint.com.xpi
FF Extension: smarterwiki - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\smarterwiki@wikiatic.com.xpi
FF Extension: stefanvandamme - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\stefanvandamme@stefanvd.net.xpi
FF Extension: YouTubeAutoReplay - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\YouTubeAutoReplay@arikv.com.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{2A1D5949-B519-4924-BF62-8522FE0D5274}.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{2c93446d-612b-416d-9af0-b7355797b611}.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{e9876d64-8bac-4287-bdc4-0f0c56804b4f}.xpi
FF Extension: No Name - C:\Users\Veli\AppData\Roaming\Mozilla\Firefox\Profiles\qpbe3oiy.default\Extensions\{f13b157f-b174-47e7-a34d-4815ddfdfeb8}.xpi
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com
FF HKLM\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi
FF HKLM\...\Firefox\Extensions: [{FEFE89E5-A43F-4f4b-8211-B11D91D02135}] - C:\Program Files\CoolPic - Fun Social Pictures\Firefox
FF HKLM\...\Firefox\Extensions: [{14DD0E04-D4F6-45d2-A958-F361FBD4F64F}] - C:\Program Files\WBC Engine\Firefox
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&from=newgdp&uid=SAMSUNGXHM160HI_S10UJF0S339133&ts=1377222734

========================== Services (Whitelisted) =================

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-06-20] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295376 2013-06-20] (Microsoft Corporation)
S2 SystemStoreService; C:\Program Files\SoftwareUpdater\SystemStore.exe [296448 2013-09-25] ()
S4 WsysSvc; C:\ProgramData\eSafe\eGdpSvc.exe [303680 2013-08-22] (Wsys Co., Ltd.)

==================== Drivers (Whitelisted) ====================

R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation)
R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx86.sys [43088 2013-05-18] ()
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-08-24] (GFI Software)
R3 ksaud; C:\Windows\System32\drivers\ksaud.sys [1255296 2011-09-13] (Creative Technology Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
R1 MpKsl0e5c58ca; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{188C18EE-EB54-4F38-88AB-B196BB17403A}\MpKsl0e5c58ca.sys [40392 2013-09-30] (Microsoft Corporation)
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-06-24] (Nuvoton Technology Corporation)
S3 USBMULCD; C:\Windows\System32\drivers\CM106.sys [1515520 2009-10-01] (C-Media Electronics Inc)
S3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-30 22:04 - 2013-09-30 22:04 - 01086873 _____ (Farbar) C:\Users\Veli\Downloads\FRST.exe
2013-09-30 22:04 - 2013-09-30 22:04 - 00000000 ____D C:\FRST
2013-09-30 21:20 - 2013-09-30 21:41 - 00000000 ____D C:\Program Files\GridinSoft Trojan Killer
2013-09-30 21:16 - 2013-09-30 21:17 - 52176608 _____ (GridinSoft LLC) C:\Users\Veli\Downloads\gtk-2.1.8.9-setup.exe
2013-09-30 21:08 - 2013-09-30 21:22 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-30 21:08 - 2013-09-30 21:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-30 21:08 - 2013-09-30 21:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-30 17:51 - 2013-09-30 17:51 - 00000000 ____D C:\Users\Veli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2013-09-30 17:50 - 2013-09-30 17:50 - 04373560 _____ (NCH Software) C:\Users\Veli\Downloads\vppsetup.exe
2013-09-30 17:49 - 2013-09-30 19:21 - 00000000 ___HD C:\Users\Veli\Desktop\VideoPadCache
2013-09-30 13:52 - 2013-09-30 13:52 - 00000056 _____ C:\Windows\setupact.log
2013-09-30 13:52 - 2013-09-30 13:52 - 00000000 _____ C:\Windows\setuperr.log
2013-09-30 13:51 - 2013-09-30 13:51 - 00001500 _____ C:\Windows\PFRO.log
2013-09-30 05:58 - 2013-09-30 05:58 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Veli\Downloads\SpyHunter-Installer.exe
2013-09-29 23:08 - 2013-09-29 23:12 - 05425477 _____ C:\Users\Veli\Desktop\Kerem.rar
2013-09-29 22:52 - 2013-09-29 22:52 - 00000088 _____ C:\Windows\system32\8386410878598694804.log
2013-09-28 08:27 - 2013-09-28 08:28 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(5).exe
2013-09-26 19:25 - 2013-09-26 19:25 - 00002141 _____ C:\Users\Veli\Downloads\0B346DBFB7830BD90F12F52F673CC93F186A8AD3.torrent
2013-09-26 18:38 - 2013-09-28 06:13 - 00000062 _____ C:\Users\Veli\Desktop\Reyyan Account.txt
2013-09-26 09:23 - 2013-09-30 13:51 - 00000000 ____D C:\ProgramData\SearchNewTab
2013-09-26 09:23 - 2013-09-30 13:51 - 00000000 ____D C:\Program Files\WebSearch
2013-09-26 09:23 - 2013-09-26 12:24 - 00000000 ____D C:\Users\Veli\AppData\Roaming\SkypEmoticons
2013-09-26 09:23 - 2013-09-26 09:23 - 00000000 ____D C:\ProgramData\SummerSoft
2013-09-26 09:22 - 2013-09-26 09:30 - 00000000 ____D C:\Program Files\Optimizer Pro
2013-09-26 09:21 - 2013-09-30 13:51 - 00000000 ____D C:\ProgramData\DownnlOad kuEeper
2013-09-26 09:21 - 2013-09-30 13:51 - 00000000 ____D C:\Program Files\Ss.Helper
2013-09-26 09:21 - 2013-09-29 22:52 - 00000000 ____D C:\ProgramData\InstallMate
2013-09-26 09:20 - 2013-09-26 09:20 - 00328384 _____ (SummerSoft) C:\Users\Veli\Downloads\jogangandotnetCrackVideopadVideoEditor.rar.exe
2013-09-25 18:30 - 2013-09-25 18:30 - 00729736 _____ C:\Users\Veli\Downloads\youtube-dlm_1.0_de-DE(1).exe
2013-09-25 18:14 - 2013-09-25 18:14 - 01238384 _____ (Bitcoktail                                                  ) C:\Users\Veli\Downloads\CoolPic_mg_207566.exe
2013-09-25 13:45 - 2013-09-25 13:48 - 00000000 ____D C:\Users\Veli\AppData\Roaming\eType
2013-09-25 13:43 - 2013-09-25 13:43 - 00140968 _____ () C:\Users\Veli\Downloads\etypesetup.exe
2013-09-25 13:27 - 2013-09-25 13:27 - 00000000 ____D C:\Users\Veli\Documents\Free YouTube Download Manager
2013-09-25 13:27 - 2013-09-25 13:27 - 00000000 ____D C:\Users\Veli\AppData\Local\Freetec
2013-09-25 13:26 - 2013-09-25 13:27 - 00000000 ____D C:\Program Files\SoftwareUpdater
2013-09-25 13:26 - 2013-09-25 13:26 - 00000000 ____D C:\Program Files\Freetec
2013-09-25 13:24 - 2013-08-13 08:38 - 00032328 _____ C:\Windows\Launcher.exe
2013-09-25 13:23 - 2013-09-25 13:24 - 00000000 ____D C:\Users\Veli\AppData\Local\DownloadGuide
2013-09-25 13:22 - 2013-09-25 13:22 - 00729736 _____ C:\Users\Veli\Downloads\youtube-dlm_1.0_de-DE.exe
2013-09-25 12:54 - 2013-09-25 12:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_nnfwdk_01009.Wdf
2013-09-25 12:47 - 2013-09-25 12:47 - 02743968 _____ (The Nielsen Company) C:\Users\Veli\Downloads\netsight_setup_6.0.0.60_MP_Production_mid51049298465_p.exe
2013-09-25 12:47 - 2013-09-25 12:47 - 00000878 _____ C:\nsinst.log
2013-09-25 00:50 - 2013-09-25 00:50 - 03362400 _____ (SpeakyChat LB                                               ) C:\Users\Veli\Downloads\speakychatinstall(4).exe
2013-09-25 00:46 - 2013-09-25 00:46 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(3).exe
2013-09-24 01:01 - 2013-09-27 22:23 - 00000000 ____D C:\Users\Veli\AppData\Roaming\vlc
2013-09-23 18:30 - 2013-09-23 18:30 - 00009216 _____ (Mozilla Corporation) C:\Users\Veli\Downloads\plugin-container.exe
2013-09-23 18:28 - 2013-09-23 18:28 - 23003252 _____ C:\Users\Veli\Downloads\vlc-2.0.8-win32(1).exe
2013-09-23 02:56 - 2013-09-23 02:56 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 02:55 - 2013-09-23 02:55 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 02:55 - 2013-09-23 02:54 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 02:54 - 2013-09-23 02:54 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 02:54 - 2013-09-23 02:54 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 02:54 - 2013-09-23 02:54 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 02:54 - 2013-09-23 02:54 - 00000000 ____D C:\Program Files\Java
2013-09-23 02:52 - 2013-09-23 02:52 - 00913832 _____ (Oracle Corporation) C:\Users\Veli\Downloads\jxpiinstall(1).exe
2013-09-23 02:50 - 2013-09-23 02:50 - 07912440 _____ (Adobe Systems Inc.) C:\Users\Veli\Downloads\Shockwave_Installer_Slim(2).exe
2013-09-23 01:36 - 2013-09-23 01:36 - 03897343 _____ C:\Users\Veli\Desktop\Anonim - Göçmen Kızı _ Fly mix (Karaoke).WebM
2013-09-23 01:26 - 2013-09-23 01:27 - 04739040 _____ C:\Users\Veli\Desktop\▶ Kubat - Gülüm (Karaoke).WebM
2013-09-23 01:10 - 2013-09-23 01:10 - 06197508 _____ C:\Users\Veli\Desktop\Yaşar İpek - Gitme Kal (Karaoke).WebM
2013-09-22 23:30 - 2013-09-22 23:30 - 27354536 _____ C:\Users\Veli\Desktop\TURKISH KARAOKE BEYOGLUUNDA GEZERSIIN.WebM
2013-09-22 23:24 - 2013-09-22 23:24 - 05873978 _____ C:\Users\Veli\Desktop\▶ YAVUZ BINGÖL TANRIDAN DILEDIM karaoke version.WebM
2013-09-22 04:22 - 2013-09-22 04:31 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-09-22 02:41 - 2013-09-22 03:23 - 70399153 _____ C:\Users\Veli\Desktop\aaaa.rar
2013-09-20 20:57 - 2013-09-20 20:58 - 16326078 _____ C:\Users\Veli\Desktop\Site Sahibi Golden....avi
2013-09-20 20:32 - 2013-09-20 20:33 - 70832120 _____ C:\Users\Veli\Desktop\Site Sahibi Golden.avi
2013-09-20 04:50 - 2013-09-20 04:50 - 00206312 __RSH C:\XELDZ
2013-09-20 04:44 - 2013-09-20 04:44 - 00000000 ____D C:\Users\Veli\Documents\Top Eleven Hack v2 2013
2013-09-20 04:41 - 2013-09-25 13:44 - 00000000 ____D C:\ProgramData\DSearchLink
2013-09-19 01:05 - 2013-09-19 01:05 - 00001624 _____ C:\Users\Veli\Desktop\Samata Dj Efektor Professional.lnk
2013-09-19 01:05 - 2013-09-19 01:05 - 00000000 ____D C:\Samata Dj Efektor v4.6
2013-09-19 00:57 - 2013-09-19 01:01 - 65182837 _____ C:\Users\Veli\Downloads\Samata Dj Efektor v4.6 Setup.rar
2013-09-18 23:55 - 2013-09-18 23:55 - 00000000 ____D C:\ProgramData\Browser Manager
2013-09-18 21:43 - 2013-09-18 21:43 - 00000000 ____D C:\Users\Veli\Documents\Optimizer Pro
2013-09-14 02:50 - 2013-09-22 04:36 - 00000000 ____D C:\Users\Veli\Desktop\Karaoke
2013-09-12 10:43 - 2013-09-12 10:43 - 00000000 ____D C:\Users\Veli\Documents\VideoPad Projects
2013-09-12 03:04 - 2013-08-10 05:59 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-12 03:04 - 2013-08-10 05:59 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-12 03:04 - 2013-08-10 05:59 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-12 03:04 - 2013-08-10 05:58 - 14332928 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 02876928 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 02048000 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-12 03:04 - 2013-08-10 05:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-12 03:04 - 2013-08-10 05:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-12 03:04 - 2013-08-10 04:17 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-12 02:48 - 2013-08-08 03:03 - 02348544 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-09-12 02:48 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-09-12 02:48 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-09-12 02:48 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-09-12 02:48 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-09-12 02:48 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-12 02:48 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-12 02:48 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-09-12 02:48 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-09-11 23:32 - 2013-09-11 23:35 - 16295067 _____ C:\Users\Veli\Desktop\My Video - 0010.mp4
2013-09-11 22:44 - 2013-09-30 17:51 - 00001070 _____ C:\Users\Public\Desktop\VideoPad Video Editor.lnk
2013-09-11 21:47 - 2013-09-11 21:47 - 00000052 _____ C:\Users\Veli\Desktop\kefimüzik sifre.txt
2013-09-10 07:45 - 2013-09-10 07:45 - 00795213 _____ C:\Users\Veli\Documents\Unbenannt (3).wma
2013-09-09 20:11 - 2013-09-09 20:11 - 00202533 _____ C:\Users\Veli\Documents\Unbenannt (2).wma
2013-09-07 16:58 - 2013-09-07 16:58 - 02223033 _____ C:\Users\Veli\Desktop\Kerem - Oy Turnam.wma
2013-09-07 16:38 - 2013-09-07 16:38 - 01706683 _____ C:\Users\Veli\Desktop\0.wma
2013-09-06 23:33 - 2013-09-06 23:33 - 00871543 _____ C:\Users\Veli\Desktop\Kerem - Yüregim Agir Yarali Derinden.wma
2013-09-06 22:03 - 2013-09-06 22:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-09-05 06:04 - 2013-09-05 06:04 - 01634843 _____ C:\Users\Veli\Desktop\Kerem - Fatiha & Bakara.wma
2013-09-04 09:42 - 2013-09-04 09:42 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(2).exe
2013-09-04 04:19 - 2013-09-04 04:19 - 00000000 ____D C:\Users\Veli\Downloads\Complete YouTube Saver
2013-09-04 02:16 - 2013-09-04 02:16 - 01818933 _____ C:\Users\Veli\Desktop\ezan.wma
2013-09-03 07:29 - 2013-09-03 07:29 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(1).exe
2013-09-03 05:48 - 2013-09-03 05:48 - 00098304 _____ C:\Users\Veli\fbchathistory.dat
2013-09-03 05:11 - 2013-09-03 05:11 - 23003252 _____ C:\Users\Veli\Downloads\vlc-2.0.8-win32.exe
2013-09-03 03:23 - 2013-09-03 05:03 - 00001740 _____ C:\Users\Veli\Desktop\Dualar.txt
2013-09-02 09:49 - 2013-09-02 09:50 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Veli\Downloads\Shockwave_Installer_Slim(1).exe
2013-09-02 07:02 - 2013-09-02 07:02 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Veli\Downloads\Shockwave_Installer_Slim.exe
2013-09-01 16:47 - 2013-09-01 16:47 - 01378913 _____ C:\Users\Veli\Desktop\Iste.wma
2013-09-01 07:09 - 2013-09-01 07:09 - 00000486 __RSH C:\Users\Veli\ntuser.pol
2013-09-01 06:33 - 2013-09-30 06:10 - 00000000 ____D C:\Program Files\Pamela RichMood Editor
2013-09-01 06:33 - 2013-09-01 06:33 - 00000000 ____D C:\Users\Veli\AppData\Roaming\Pamela
2013-09-01 06:25 - 2013-09-01 06:25 - 00153496 _____ C:\Users\Veli\Downloads\fasterfox-3.9.81-fx(1).zip
2013-09-01 06:24 - 2013-09-01 06:24 - 00153496 _____ C:\Users\Veli\Downloads\fasterfox-3.9.81-fx.zip
2013-09-01 06:22 - 2013-09-01 06:22 - 00118080 _____ C:\Users\Veli\Downloads\fasterfox-2.0.0-fx.zip
2013-09-01 05:34 - 2013-09-01 05:34 - 00000000 ____D C:\Windows\pss
2013-09-01 02:13 - 2013-09-01 02:13 - 00000000 ____D C:\ProgramData\Macrovision
2013-09-01 02:06 - 2013-09-01 02:06 - 01110476 _____ C:\Users\Veli\Downloads\7z920.exe
2013-09-01 02:06 - 2013-09-01 02:06 - 00000000 ____D C:\Program Files\7-Zip

==================== One Month Modified Files and Folders =======

2013-09-30 22:04 - 2013-09-30 22:04 - 01086873 _____ (Farbar) C:\Users\Veli\Downloads\FRST.exe
2013-09-30 22:04 - 2013-09-30 22:04 - 00000000 ____D C:\FRST
2013-09-30 21:41 - 2013-09-30 21:20 - 00000000 ____D C:\Program Files\GridinSoft Trojan Killer
2013-09-30 21:39 - 2013-04-11 15:51 - 00000000 ____D C:\Users\Veli\AppData\Roaming\Skype
2013-09-30 21:23 - 2013-06-08 00:23 - 00000286 _____ C:\Windows\Tasks\Dealply.job
2013-09-30 21:22 - 2013-09-30 21:08 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-30 21:17 - 2013-09-30 21:16 - 52176608 _____ (GridinSoft LLC) C:\Users\Veli\Downloads\gtk-2.1.8.9-setup.exe
2013-09-30 21:08 - 2013-09-30 21:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-09-30 21:08 - 2013-09-30 21:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-09-30 19:21 - 2013-09-30 17:49 - 00000000 ___HD C:\Users\Veli\Desktop\VideoPadCache
2013-09-30 17:51 - 2013-09-30 17:51 - 00000000 ____D C:\Users\Veli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
2013-09-30 17:51 - 2013-09-11 22:44 - 00001070 _____ C:\Users\Public\Desktop\VideoPad Video Editor.lnk
2013-09-30 17:50 - 2013-09-30 17:50 - 04373560 _____ (NCH Software) C:\Users\Veli\Downloads\vppsetup.exe
2013-09-30 15:20 - 2013-04-11 12:17 - 01679512 _____ C:\Windows\WindowsUpdate.log
2013-09-30 13:59 - 2009-07-14 06:34 - 00023872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-30 13:59 - 2009-07-14 06:34 - 00023872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-30 13:52 - 2013-09-30 13:52 - 00000056 _____ C:\Windows\setupact.log
2013-09-30 13:52 - 2013-09-30 13:52 - 00000000 _____ C:\Windows\setuperr.log
2013-09-30 13:52 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-30 13:51 - 2013-09-30 13:51 - 00001500 _____ C:\Windows\PFRO.log
2013-09-30 13:51 - 2013-09-26 09:23 - 00000000 ____D C:\ProgramData\SearchNewTab
2013-09-30 13:51 - 2013-09-26 09:23 - 00000000 ____D C:\Program Files\WebSearch
2013-09-30 13:51 - 2013-09-26 09:21 - 00000000 ____D C:\ProgramData\DownnlOad kuEeper
2013-09-30 13:51 - 2013-09-26 09:21 - 00000000 ____D C:\Program Files\Ss.Helper
2013-09-30 12:35 - 2013-08-28 16:34 - 00000000 ____D C:\Windows\865537E164904193A4B6669C62711852.TMP
2013-09-30 06:10 - 2013-09-01 06:33 - 00000000 ____D C:\Program Files\Pamela RichMood Editor
2013-09-30 06:10 - 2013-04-17 20:00 - 00000000 ____D C:\Program Files\VideoLAN
2013-09-30 05:58 - 2013-09-30 05:58 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Veli\Downloads\SpyHunter-Installer.exe
2013-09-29 23:12 - 2013-09-29 23:08 - 05425477 _____ C:\Users\Veli\Desktop\Kerem.rar
2013-09-29 22:52 - 2013-09-29 22:52 - 00000088 _____ C:\Windows\system32\8386410878598694804.log
2013-09-29 22:52 - 2013-09-26 09:21 - 00000000 ____D C:\ProgramData\InstallMate
2013-09-29 03:56 - 2010-11-20 23:01 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-28 08:29 - 2013-04-05 22:15 - 00000000 ____D C:\ProgramData\SpeakyChat
2013-09-28 08:28 - 2013-09-28 08:27 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(5).exe
2013-09-28 06:13 - 2013-09-26 18:38 - 00000062 _____ C:\Users\Veli\Desktop\Reyyan Account.txt
2013-09-27 22:23 - 2013-09-24 01:01 - 00000000 ____D C:\Users\Veli\AppData\Roaming\vlc
2013-09-26 23:26 - 2013-04-01 09:30 - 00000000 ___RD C:\Users\Veli\Desktop\Privat
2013-09-26 19:25 - 2013-09-26 19:25 - 00002141 _____ C:\Users\Veli\Downloads\0B346DBFB7830BD90F12F52F673CC93F186A8AD3.torrent
2013-09-26 12:24 - 2013-09-26 09:23 - 00000000 ____D C:\Users\Veli\AppData\Roaming\SkypEmoticons
2013-09-26 09:30 - 2013-09-26 09:22 - 00000000 ____D C:\Program Files\Optimizer Pro
2013-09-26 09:23 - 2013-09-26 09:23 - 00000000 ____D C:\ProgramData\SummerSoft
2013-09-26 09:20 - 2013-09-26 09:20 - 00328384 _____ (SummerSoft) C:\Users\Veli\Downloads\jogangandotnetCrackVideopadVideoEditor.rar.exe
2013-09-26 03:31 - 2013-04-11 16:29 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-09-25 18:30 - 2013-09-25 18:30 - 00729736 _____ C:\Users\Veli\Downloads\youtube-dlm_1.0_de-DE(1).exe
2013-09-25 18:14 - 2013-09-25 18:14 - 01238384 _____ (Bitcoktail                                                  ) C:\Users\Veli\Downloads\CoolPic_mg_207566.exe
2013-09-25 13:48 - 2013-09-25 13:45 - 00000000 ____D C:\Users\Veli\AppData\Roaming\eType
2013-09-25 13:44 - 2013-09-20 04:41 - 00000000 ____D C:\ProgramData\DSearchLink
2013-09-25 13:43 - 2013-09-25 13:43 - 00140968 _____ () C:\Users\Veli\Downloads\etypesetup.exe
2013-09-25 13:27 - 2013-09-25 13:27 - 00000000 ____D C:\Users\Veli\Documents\Free YouTube Download Manager
2013-09-25 13:27 - 2013-09-25 13:27 - 00000000 ____D C:\Users\Veli\AppData\Local\Freetec
2013-09-25 13:27 - 2013-09-25 13:26 - 00000000 ____D C:\Program Files\SoftwareUpdater
2013-09-25 13:26 - 2013-09-25 13:26 - 00000000 ____D C:\Program Files\Freetec
2013-09-25 13:24 - 2013-09-25 13:23 - 00000000 ____D C:\Users\Veli\AppData\Local\DownloadGuide
2013-09-25 13:24 - 2013-08-11 06:56 - 00000975 _____ C:\Users\Veli\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-25 13:22 - 2013-09-25 13:22 - 00729736 _____ C:\Users\Veli\Downloads\youtube-dlm_1.0_de-DE.exe
2013-09-25 12:54 - 2013-09-25 12:54 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_nnfwdk_01009.Wdf
2013-09-25 12:47 - 2013-09-25 12:47 - 02743968 _____ (The Nielsen Company) C:\Users\Veli\Downloads\netsight_setup_6.0.0.60_MP_Production_mid51049298465_p.exe
2013-09-25 12:47 - 2013-09-25 12:47 - 00000878 _____ C:\nsinst.log
2013-09-25 00:50 - 2013-09-25 00:50 - 03362400 _____ (SpeakyChat LB                                               ) C:\Users\Veli\Downloads\speakychatinstall(4).exe
2013-09-25 00:46 - 2013-09-25 00:46 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(3).exe
2013-09-24 02:07 - 2013-04-09 16:06 - 00000000 ____D C:\Windows\Minidump
2013-09-23 18:30 - 2013-09-23 18:30 - 00009216 _____ (Mozilla Corporation) C:\Users\Veli\Downloads\plugin-container.exe
2013-09-23 18:28 - 2013-09-23 18:28 - 23003252 _____ C:\Users\Veli\Downloads\vlc-2.0.8-win32(1).exe
2013-09-23 03:26 - 2013-04-01 12:57 - 00000000 ____D C:\Users\Veli\AppData\Local\Adobe
2013-09-23 02:56 - 2013-09-23 02:56 - 00000000 ____D C:\ProgramData\Oracle
2013-09-23 02:55 - 2013-09-23 02:55 - 00000000 ____D C:\Program Files\Common Files\Java
2013-09-23 02:54 - 2013-09-23 02:55 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-09-23 02:54 - 2013-09-23 02:54 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-09-23 02:54 - 2013-09-23 02:54 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-09-23 02:54 - 2013-09-23 02:54 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-09-23 02:54 - 2013-09-23 02:54 - 00000000 ____D C:\Program Files\Java
2013-09-23 02:54 - 2013-08-30 15:18 - 00868264 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-09-23 02:54 - 2013-08-30 15:18 - 00790440 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-09-23 02:52 - 2013-09-23 02:52 - 00913832 _____ (Oracle Corporation) C:\Users\Veli\Downloads\jxpiinstall(1).exe
2013-09-23 02:50 - 2013-09-23 02:50 - 07912440 _____ (Adobe Systems Inc.) C:\Users\Veli\Downloads\Shockwave_Installer_Slim(2).exe
2013-09-23 01:36 - 2013-09-23 01:36 - 03897343 _____ C:\Users\Veli\Desktop\Anonim - Göçmen Kızı _ Fly mix (Karaoke).WebM
2013-09-23 01:27 - 2013-09-23 01:26 - 04739040 _____ C:\Users\Veli\Desktop\▶ Kubat - Gülüm (Karaoke).WebM
2013-09-23 01:10 - 2013-09-23 01:10 - 06197508 _____ C:\Users\Veli\Desktop\Yaşar İpek - Gitme Kal (Karaoke).WebM
2013-09-22 23:30 - 2013-09-22 23:30 - 27354536 _____ C:\Users\Veli\Desktop\TURKISH KARAOKE BEYOGLUUNDA GEZERSIIN.WebM
2013-09-22 23:24 - 2013-09-22 23:24 - 05873978 _____ C:\Users\Veli\Desktop\▶ YAVUZ BINGÖL TANRIDAN DILEDIM karaoke version.WebM
2013-09-22 04:39 - 2013-08-22 16:27 - 00000000 ____D C:\ProgramData\eSafe
2013-09-22 04:36 - 2013-09-14 02:50 - 00000000 ____D C:\Users\Veli\Desktop\Karaoke
2013-09-22 04:31 - 2013-09-22 04:22 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-09-22 03:23 - 2013-09-22 02:41 - 70399153 _____ C:\Users\Veli\Desktop\aaaa.rar
2013-09-20 20:58 - 2013-09-20 20:57 - 16326078 _____ C:\Users\Veli\Desktop\Site Sahibi Golden....avi
2013-09-20 20:33 - 2013-09-20 20:32 - 70832120 _____ C:\Users\Veli\Desktop\Site Sahibi Golden.avi
2013-09-20 19:33 - 2013-04-11 12:15 - 00000000 ____D C:\Users\Veli
2013-09-20 18:19 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET
2013-09-20 04:50 - 2013-09-20 04:50 - 00206312 __RSH C:\XELDZ
2013-09-20 04:44 - 2013-09-20 04:44 - 00000000 ____D C:\Users\Veli\Documents\Top Eleven Hack v2 2013
2013-09-19 01:05 - 2013-09-19 01:05 - 00001624 _____ C:\Users\Veli\Desktop\Samata Dj Efektor Professional.lnk
2013-09-19 01:05 - 2013-09-19 01:05 - 00000000 ____D C:\Samata Dj Efektor v4.6
2013-09-19 01:01 - 2013-09-19 00:57 - 65182837 _____ C:\Users\Veli\Downloads\Samata Dj Efektor v4.6 Setup.rar
2013-09-18 23:55 - 2013-09-18 23:55 - 00000000 ____D C:\ProgramData\Browser Manager
2013-09-18 21:43 - 2013-09-18 21:43 - 00000000 ____D C:\Users\Veli\Documents\Optimizer Pro
2013-09-18 00:22 - 2011-05-28 18:27 - 00000000 ____D C:\Windows\Panther
2013-09-12 20:14 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2013-09-12 19:25 - 2009-07-14 06:33 - 01615200 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-12 19:23 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2013-09-12 10:43 - 2013-09-12 10:43 - 00000000 ____D C:\Users\Veli\Documents\VideoPad Projects
2013-09-12 03:03 - 2013-08-15 03:08 - 00000000 ____D C:\Windows\system32\MRT
2013-09-12 03:00 - 2011-05-28 17:40 - 76725432 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-11 23:35 - 2013-09-11 23:32 - 16295067 _____ C:\Users\Veli\Desktop\My Video - 0010.mp4
2013-09-11 22:44 - 2013-04-01 01:00 - 00000000 ____D C:\ProgramData\NCH Software
2013-09-11 22:44 - 2013-04-01 01:00 - 00000000 ____D C:\Program Files\NCH Software
2013-09-11 22:44 - 2013-04-01 00:59 - 00000000 ____D C:\Users\Veli\AppData\Roaming\NCH Software
2013-09-11 21:47 - 2013-09-11 21:47 - 00000052 _____ C:\Users\Veli\Desktop\kefimüzik sifre.txt
2013-09-10 07:45 - 2013-09-10 07:45 - 00795213 _____ C:\Users\Veli\Documents\Unbenannt (3).wma
2013-09-09 20:11 - 2013-09-09 20:11 - 00202533 _____ C:\Users\Veli\Documents\Unbenannt (2).wma
2013-09-07 16:58 - 2013-09-07 16:58 - 02223033 _____ C:\Users\Veli\Desktop\Kerem - Oy Turnam.wma
2013-09-07 16:38 - 2013-09-07 16:38 - 01706683 _____ C:\Users\Veli\Desktop\0.wma
2013-09-06 23:33 - 2013-09-06 23:33 - 00871543 _____ C:\Users\Veli\Desktop\Kerem - Yüregim Agir Yarali Derinden.wma
2013-09-06 22:03 - 2013-09-06 22:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-09-05 06:04 - 2013-09-05 06:04 - 01634843 _____ C:\Users\Veli\Desktop\Kerem - Fatiha & Bakara.wma
2013-09-04 09:42 - 2013-09-04 09:42 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(2).exe
2013-09-04 04:19 - 2013-09-04 04:19 - 00000000 ____D C:\Users\Veli\Downloads\Complete YouTube Saver
2013-09-04 02:16 - 2013-09-04 02:16 - 01818933 _____ C:\Users\Veli\Desktop\ezan.wma
2013-09-03 07:29 - 2013-09-03 07:29 - 02681224 _____ (avidoNET GmbH) C:\Users\Veli\Downloads\speakychatinstall(1).exe
2013-09-03 06:18 - 2013-06-30 23:09 - 00000000 ___RD C:\Sandbox
2013-09-03 05:48 - 2013-09-03 05:48 - 00098304 _____ C:\Users\Veli\fbchathistory.dat
2013-09-03 05:17 - 2013-06-13 16:26 - 00000000 ____D C:\Users\Veli\AppData\Local\benimolsun.com
2013-09-03 05:11 - 2013-09-03 05:11 - 23003252 _____ C:\Users\Veli\Downloads\vlc-2.0.8-win32.exe
2013-09-03 05:03 - 2013-09-03 03:23 - 00001740 _____ C:\Users\Veli\Desktop\Dualar.txt
2013-09-02 09:50 - 2013-09-02 09:49 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Veli\Downloads\Shockwave_Installer_Slim(1).exe
2013-09-02 07:02 - 2013-09-02 07:02 - 07876512 _____ (Adobe Systems Inc.) C:\Users\Veli\Downloads\Shockwave_Installer_Slim.exe
2013-09-01 16:47 - 2013-09-01 16:47 - 01378913 _____ C:\Users\Veli\Desktop\Iste.wma
2013-09-01 07:09 - 2013-09-01 07:09 - 00000486 __RSH C:\Users\Veli\ntuser.pol
2013-09-01 07:08 - 2009-07-14 04:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-09-01 06:33 - 2013-09-01 06:33 - 00000000 ____D C:\Users\Veli\AppData\Roaming\Pamela
2013-09-01 06:25 - 2013-09-01 06:25 - 00153496 _____ C:\Users\Veli\Downloads\fasterfox-3.9.81-fx(1).zip
2013-09-01 06:24 - 2013-09-01 06:24 - 00153496 _____ C:\Users\Veli\Downloads\fasterfox-3.9.81-fx.zip
2013-09-01 06:22 - 2013-09-01 06:22 - 00118080 _____ C:\Users\Veli\Downloads\fasterfox-2.0.0-fx.zip
2013-09-01 05:34 - 2013-09-01 05:34 - 00000000 ____D C:\Windows\pss
2013-09-01 02:16 - 2013-06-09 03:37 - 00000000 ____D C:\Users\Veli\AppData\Local\Macromedia
2013-09-01 02:16 - 2013-04-11 13:17 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2013-09-01 02:13 - 2013-09-01 02:13 - 00000000 ____D C:\ProgramData\Macrovision
2013-09-01 02:13 - 2013-04-11 16:10 - 00000000 ____D C:\Users\Veli\AppData\Roaming\Macromedia
2013-09-01 02:06 - 2013-09-01 02:06 - 01110476 _____ C:\Users\Veli\Downloads\7z920.exe
2013-09-01 02:06 - 2013-09-01 02:06 - 00000000 ____D C:\Program Files\7-Zip

Files to move or delete:
====================
C:\Users\Veli\fbchathistory.dat


Some content of TEMP:
====================
C:\Users\Veli\AppData\Local\Temp\SHSetup.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-24 21:48

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 27-09-2013 01
Ran by Keremino at 2013-09-30 22:06:06
Running from C:\Users\Veli\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}

==================== Installed Programs ======================

7-Zip 9.20
Acer Crystal Eye Webcam (Version: 5.2.7.1)
AdblockIE (Version: 1.2)
Adobe Flash Player 11 Plugin (Version: 11.8.800.168)
Adobe Reader XI (11.0.04) - Deutsch (Version: 11.0.04)
CCleaner (Version: 4.04)
Creative Audio-Systemsteuerung (Version: 3.00)
Debut Video Capture Software
Free YouTube Download version 3.2.3.610 (Version: 3.2.3.610)
Free YouTube to MP3 Converter version 3.12.3.610 (Version: 3.12.3.610)
Gamesurround Muse Pocket
HyperCam 2 (Version: 2.27.01)
Jasc Animation Shop 3 (Version: 3.05.0000)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft Security Client (Version: 4.3.0215.0)
Microsoft Security Essentials (Version: 4.3.215.0)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 23.0.1 (x86 de) (Version: 23.0.1)
Nuvoton CIR Device Driver (Version: 8.60.1000)
NVIDIA Drivers (Version: 1.7)
Opera 12.15 (Version: 12.15.1748)
Pavtube Video Converter version 3.5.1.2185
PhotoScape
RICOH R5U8xx Media Driver ver.3.62.02 (Version: 3.62.02)
Skype™ 6.6 (Version: 6.6.106)
SplitCam (Version: 5.4.6.0)
SWFText
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 14.0.6.0)
TeamViewer 8 (Version: 8.0.20768)
Ulead GIF Animator 5
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
USB Multi-Channel Audio Device
VideoPad Video Editor (Version: 3.14)
WinRAR 4.20 (32-Bit) (Version: 4.20.0)
YTD Video Downloader 4.0 (Version: 4.0)

==================== Restore Points  =========================

25-09-2013 11:25:02 Free YouTube Download Manager
25-09-2013 11:33:21 Free YouTube Download Manager
25-09-2013 16:31:43 Free YouTube Download Manager
25-09-2013 16:37:02 Free YouTube Download Manager
28-09-2013 14:06:46 Windows Update
30-09-2013 04:00:58 Installed SpyHunter
30-09-2013 10:34:06 Removed SpyHunter

==================== Hosts content: ==========================

2009-07-14 04:04 - 2013-09-20 04:50 - 00000864 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 validation.sls.microsoft.com

==================== Scheduled Tasks (whitelisted) =============

Task: {17882981-A36A-4648-A2AE-D50604145B11} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-07-22] (Piriform Ltd)
Task: {2B9AA71B-02BC-4F6C-ADD4-BB46A5080F81} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files\Desk 365\desk365.exe
Task: {2F3FFE9F-6536-4B6E-8DD4-8134D10EBC53} - System32\Tasks\Ad-Aware Antivirus Scheduled Scan => C:\PROGRA~1\AD-AWA~1\AdAwareLauncher.exe
Task: {607639B1-E3AE-47A9-8CE8-1F4B37F7E83E} - System32\Tasks\EPUpdater => C:\Users\Veli\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-08-04] ()
Task: {758E7CEB-2791-4AC0-BF82-D3FE17F8EDCD} - System32\Tasks\NCH Software\DebutReminder => C:\Program Files\NCH Software\Debut\Debut.exe [2013-03-07] (NCH Software)
Task: {821C5474-9955-49A2-B9B2-DAFB64F0D181} - System32\Tasks\4581 => C:\Users\Veli\AppData\Local\Temp\launchie.vbsC:\Users\Veli\AppData\Local\Temp\launchie.vbs //B
Task: {89727239-3E6C-437D-8A79-F7ABF218E422} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-11] (Microsoft Corporation)
Task: {9B960702-51D7-4993-A736-9093A6E9C943} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-08-26] ()
Task: {ADB48586-1A57-491F-9F3C-8FDD561A618A} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files\YourFileDownloader\YourFileUpdater.exe
Task: {B9B80BD7-A927-43AE-A3DC-086675DC6034} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-09-30] (Adobe Systems Incorporated)
Task: {C6FE3B67-67F4-4C87-A610-A48CAE58591A} - System32\Tasks\Dealply => C:\Users\Veli\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE [2013-06-08] ()
Task: {CFB27B75-3933-47F0-9205-18F347BB1E10} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-09-25] ()
Task: {FD1F9EDD-4BC9-4D87-9037-82EB182DA317} - System32\Tasks\0 => Iexplore.exe 
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Dealply.job => C:\Users\Veli\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.EXE

==================== Loaded Modules (whitelisted) =============

2013-04-05 18:48 - 2009-12-29 16:50 - 00073728 _____ () C:\Windows\SYSTEM32\CmdRtr.DLL
2013-04-05 18:48 - 2010-07-22 16:45 - 00181760 _____ () C:\Windows\SYSTEM32\APOMngr.DLL
2012-02-24 09:50 - 2012-02-24 09:50 - 00094208 _____ () C:\Program Files\SplitCam\SplitCamFilter.ax
2012-01-03 09:03 - 2012-01-03 09:03 - 00876544 _____ () C:\Program Files\SplitCam\cv110.dll
2012-01-03 09:03 - 2012-01-03 09:03 - 00958464 _____ () C:\Program Files\SplitCam\cxcore110.dll
2012-01-03 09:03 - 2012-01-03 09:03 - 00630784 _____ () C:\Program Files\SplitCam\highgui110.dll
2013-06-09 03:33 - 2013-08-22 15:32 - 03551640 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2013-09-10 19:27 - 2013-09-30 21:08 - 16177544 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:373E1720
AlternateDataStreams: C:\ProgramData\TEMP:9F5DDD64

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/30/2013 09:07:43 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 23.0.1.4974, Zeitstempel: 0x520bc1d5
Name des fehlerhaften Moduls: NPSWF32_11_8_800_168.dll, Version: 11.8.800.168, Zeitstempel: 0x52223de3
Ausnahmecode: 0x80000003
Fehleroffset: 0x00343e9d
ID des fehlerhaften Prozesses: 0x1044
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3

Error: (09/30/2013 09:07:40 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_11_8_800_168.exe, Version: 11.8.800.168, Zeitstempel: 0x52223bb7
Name des fehlerhaften Moduls: FlashPlayerPlugin_11_8_800_168.exe, Version: 11.8.800.168, Zeitstempel: 0x52223bb7
Ausnahmecode: 0x40000015
Fehleroffset: 0x00017e40
ID des fehlerhaften Prozesses: 0x107c
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_11_8_800_168.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_11_8_800_168.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_11_8_800_168.exe2
Berichtskennung: FlashPlayerPlugin_11_8_800_168.exe3

Error: (09/30/2013 01:53:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/29/2013 07:15:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/29/2013 07:14:37 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: DllHost.exe, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bc6b7
Name des fehlerhaften Moduls: MSACM32.DLL, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bda4e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00004d91
ID des fehlerhaften Prozesses: 0xb6c
Startzeit der fehlerhaften Anwendung: 0xDllHost.exe0
Pfad der fehlerhaften Anwendung: DllHost.exe1
Pfad des fehlerhaften Moduls: DllHost.exe2
Berichtskennung: DllHost.exe3

Error: (09/29/2013 06:15:00 PM) (Source: OptimizerProUpdater) (User: )
Description: URLMON download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed BINDSTATUS=2 (12029)

Error: (09/29/2013 06:14:39 PM) (Source: OptimizerProUpdater) (User: )
Description: BITS download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed 5:-2147012894 (null)

Error: (09/29/2013 05:42:40 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 10.0.9200.16686, Zeitstempel: 0x52058cf0
Name des fehlerhaften Moduls: msf266A.tmp_unloaded, Version: 0.0.0.0, Zeitstempel: 0x517e80d8
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0f9d0e68
ID des fehlerhaften Prozesses: 0x170c
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3

Error: (09/29/2013 00:51:33 PM) (Source: OptimizerProUpdater) (User: )
Description: URLMON download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed BINDSTATUS=2 (12029)

Error: (09/29/2013 00:51:12 PM) (Source: OptimizerProUpdater) (User: )
Description: BITS download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed 5:-2147012894 (null)


System errors:
=============
Error: (09/30/2013 04:00:38 AM) (Source: ACPI) (User: )
Description: : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen Situationen zur Folge haben, dass der Computer fehlerhaft läuft.

Error: (09/29/2013 07:13:38 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎29.‎09.‎2013 um 19:12:12 unerwartet heruntergefahren.

Error: (09/29/2013 02:15:42 AM) (Source: ACPI) (User: )
Description: : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen Situationen zur Folge haben, dass der Computer fehlerhaft läuft.

Error: (09/28/2013 03:11:07 AM) (Source: ACPI) (User: )
Description: : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen Situationen zur Folge haben, dass der Computer fehlerhaft läuft.

Error: (09/26/2013 07:37:11 AM) (Source: DCOM) (User: )
Description: {ED1D0FDF-4414-470A-A56D-CFB68623FC58}

Error: (09/26/2013 03:27:40 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update LemurLeap" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/25/2013 01:24:19 PM) (Source: Service Control Manager) (User: )
Description: Dienst "Wsys Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/24/2013 03:57:02 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Wsys Service" wurde nicht richtig gestartet.

Error: (09/24/2013 07:07:50 AM) (Source: ACPI) (User: )
Description: : Der eingebettete Controller (EC) hat nicht innerhalb des angegebenen Zeitlimits reagiert. Dies deutet auf einen Fehler in der EC-Hardware oder -Firmware hin bzw. darauf, dass das BIOS auf falsche Art auf den EC zugreift. Fragen Sie den Computerhersteller nach einem aktualisierten BIOS. Dieser Fehler kann in einigen Situationen zur Folge haben, dass der Computer fehlerhaft läuft.

Error: (09/24/2013 02:08:32 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Wsys Service" wurde nicht richtig gestartet.


Microsoft Office Sessions:
=========================
Error: (09/30/2013 09:07:43 PM) (Source: Application Error)(User: )
Description: plugin-container.exe23.0.1.4974520bc1d5NPSWF32_11_8_800_168.dll11.8.800.16852223de38000000300343e9d104401cebe101c4458e7C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll9520930b-2a03-11e3-b4c6-001e682e4752

Error: (09/30/2013 09:07:40 PM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_11_8_800_168.exe11.8.800.16852223bb7FlashPlayerPlugin_11_8_800_168.exe11.8.800.16852223bb74000001500017e40107c01cebe101c5dfbc7C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exeC:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_8_800_168.exe934c1a4f-2a03-11e3-b4c6-001e682e4752

Error: (09/30/2013 01:53:47 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/29/2013 07:15:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/29/2013 07:14:37 PM) (Source: Application Error)(User: )
Description: DllHost.exe6.1.7600.163854a5bc6b7MSACM32.DLL6.1.7600.163854a5bda4ec000000500004d91b6c01cebd37591eb334C:\Windows\system32\DllHost.exeC:\Windows\system32\MSACM32.DLL9da6a17f-292a-11e3-b4d2-001e682e4752

Error: (09/29/2013 06:15:00 PM) (Source: OptimizerProUpdater)(User: )
Description: URLMON download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed BINDSTATUS=2 (12029)

Error: (09/29/2013 06:14:39 PM) (Source: OptimizerProUpdater)(User: )
Description: BITS download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed 5:-2147012894 (null)

Error: (09/29/2013 05:42:40 PM) (Source: Application Error)(User: )
Description: iexplore.exe10.0.9200.1668652058cf0msf266A.tmp_unloaded0.0.0.0517e80d8c00000050f9d0e68170c01cebd19106bf04aC:\Program Files\Internet Explorer\iexplore.exemsf266A.tmpc5719f6d-291d-11e3-b4f2-001e682e4752

Error: (09/29/2013 00:51:33 PM) (Source: OptimizerProUpdater)(User: )
Description: URLMON download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed BINDSTATUS=2 (12029)

Error: (09/29/2013 00:51:12 PM) (Source: OptimizerProUpdater)(User: )
Description: BITS download from hxxp://nanoavi.info/get/?ver=1701&report_version=5&data=NP6yu5%2Bj%2BVmsv%2BxztvDUKWLkLKiGVK2xOT%2BvsqNFnrLPk9sSYR5gRRWGNY%2BQ%2FX3GADAxjuT%2BQJIYdZpo3VMz4iSSmSr0O1A6qr3p7upDo%2Bx3TgJ%2FV3Jnhtb9Ag7dKjCvTupm8OHniF4tFz5rcHYXKvDSyBNkLo5Y2FN3x%2Bxk0omxNk5vSwnUjDJ5OMKNEbks%2BBH2V6lR0s%2BI0hWkne5GzDkUY59jmWIpDp5TmV%2BYGUGAglS3O9byPgrAHMh3MoJmiNu4ac1xN4pkfbJG3u134rDIJ0hEoxVMKUxC%2FnMWlhF1FSsK26iLWmWJn%2BXGB7QKpIxyzE8%2BRjjSISTBCcvSxUnPuKrvVKhDiMrVI5G7s2l0eoiRXIljxPMR5v3VzQqELRTgR04sugrfcNybMarfqF5yfBi9VTnPVyIWDDxKNQpUOviDEWZa40sz2sRoDo52TNUWJGFQlZxA2lhOcFJh1h0Ww8yYcyMfoE4mkHy35FcaBRFafIiOkPzxfkynDmd51G54ojTYtSEqWTdygsah5 failed 5:-2147012894 (null)


==================== Memory info =========================== 

Percentage of memory in use: 52%
Total physical RAM: 3070.43 MB
Available physical RAM: 1472.85 MB
Total Pagefile: 6139.15 MB
Available Pagefile: 4537.42 MB
Total Virtual: 2047.88 MB
Available Virtual: 1893.57 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:149.04 GB) (Free:109.29 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 12B012AF)
Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS)

==================== End Of Log ============================
--- --- ---

 

Themen zu http://websearch.oversearch.info
ads, deinstalliere, deinstallieren, device driver, dllhost.exe, epupdater, farbar, farbar recovery scan tool, freue, inter, interne, internetseite, internetseiten, kicken, löschen, not, plug-in, problem, probleme, pup.optional.babylon.a, pup.optional.coolpic, pup.optional.moviestoolbar.a, pup.optional.opencandy, pup.optional.wbcengine, seiten, soooo, spinnt, this, virus


« da warens nur noch 3: "assembly\GAC_32(64)\Desktop.ini" & "Fehlercode 0x80070424" | GVU Trojaner Abgesicherter Modus funktioniert nicht mehr! Windows XP »


Ähnliche Themen: http://websearch.oversearch.info


  1. Websearch.the-searcheng.info entfernen
    Anleitungen, FAQs & Links - 31.10.2015 (2)
  2. Websearch.hotfindings.info entfernen
    Anleitungen, FAQs & Links - 06.08.2015 (2)
  3. websearch.coolsearches.info entfernen
    Anleitungen, FAQs & Links - 04.04.2015 (2)
  4. websearch.goodforsearch.info entfernen
    Anleitungen, FAQs & Links - 04.04.2015 (2)
  5. Websearch.swellsearch.info entfernen
    Anleitungen, FAQs & Links - 04.03.2015 (2)
  6. websearch.look-for-it.info entfernen
    Anleitungen, FAQs & Links - 15.02.2015 (2)
  7. Websearch.searchplazanow.info entfernen
    Anleitungen, FAQs & Links - 27.01.2015 (2)
  8. websearch.searchtheglobe.info entfernen
    Anleitungen, FAQs & Links - 12.01.2015 (2)
  9. Firefox Startseite http://websearch.searchoholic.info
    Plagegeister aller Art und deren Bekämpfung - 23.12.2014 (23)
  10. Websearch.allsearches.info entfernen
    Anleitungen, FAQs & Links - 26.09.2014 (2)
  11. websearch.fixsearch.info entfernen
    Anleitungen, FAQs & Links - 22.08.2014 (2)
  12. Websearch.WebIsAwsome.info entfernen
    Anleitungen, FAQs & Links - 13.02.2014 (2)
  13. Websearch.YouWillFind.info entfernen
    Anleitungen, FAQs & Links - 13.02.2014 (2)
  14. Websearch.toolksearchbook.info entfernen
    Anleitungen, FAQs & Links - 06.01.2014 (2)
  15. websearch.pu-results.info entfernen
    Anleitungen, FAQs & Links - 29.12.2013 (2)
  16. Websearch.searchsunmy.info entfernen
    Anleitungen, FAQs & Links - 19.12.2013 (2)
  17. Bekomm diese Seite nicht mehrvon meinem Browser " http://websearch.pu-results.info"
    Plagegeister aller Art und deren Bekämpfung - 26.03.2013 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema http://websearch.oversearch.info - Hallo, seit ner Zeit spinnt mein Rechner... Die Internetseiten sind langsamer geworden... Sogar die Ordner gehen langsam auf... Habe mir sagen lassen, dass ich ein Virus im Rechner habe, der - http://websearch.oversearch.info...
Archiv
Du betrachtest: http://websearch.oversearch.info auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131