Whilokii Virus

Jakasi · 19.10.2013, 19:21

Hallo,

ich habe Probleme mit dem Whilokii Virus und ich brauche dringend Hilfe! Es wäre super, wenn mir jemand dabei helfen könnte, diesen so schnell wie möglich loszuwerden. Bisher habe ich nur einen Virenscan gemacht mit avast und weiß in welchem Ordner er sich befindet, wobei er ja noch sonst wo sein kann oder?
Brauche Hilfe damit ich das wieder bereinigt bekomme...
Danke schonmal im Vorraus.

Jakasi

schrauber · 19.10.2013, 19:26

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Jakasi · 20.10.2013, 10:07

So hier das FRST.txt

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013
Ran by Jasmin_Arbeit (ATTENTION: The logged in user is not administrator) on JASMIN-PC on 19-10-2013 20:29:16
Running from C:\Users\Jasmin_Arbeit\Downloads
Windows 7 Enterprise Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

() D:\Installationen Jasmin\HTC Sync\adb.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8081952 2009-08-24] (Realtek Semiconductor)
HKLM\...\Runonce: [MSPCLOCK] - rundll32.exe streamci,StreamingDeviceSetup {97ebaacc-95bd-11d0-a3ea-00a0c9223196},{53172480-4791-11D0-A5D6-28DB04C10000},{53172480-4791-11D0-A5D6-28DB04C10000}
HKLM\...\Runonce: [MSPQM] - rundll32.exe streamci,StreamingDeviceSetup {DDF4358E-BB2C-11D0-A42F-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196},{97EBAACB-95BD-11D0-A3EA-00A0C9223196}
HKLM\...\Runonce: [MSKSSRV] - rundll32.exe streamci,StreamingDeviceSetup {96E080C7-143C-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196},{3C0D501A-140B-11D1-B40F-00A0C9223196}
HKLM\...\Runonce: [MSTEE.CxTransform] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},{CF1DDA2C-9743-11D0-A3EE-00A0C9223196},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM\...\Runonce: [MSTEE.Splitter] - rundll32.exe streamci,StreamingDeviceSetup {cfd669f1-9bc2-11d0-8299-0000f822fe8a},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},{0A4252A0-7E70-11D0-A5D6-28DB04C10000},C:\Windows\inf\ksfilter.inf,MSTEE.Interface.Install
HKLM-x32\...\Runonce: [Del28462335] - cmd.exe /Q /D /c del "C:\Users\Jasmin\AppData\Local\Temp\0.del" [x]
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [icq] - C:\Users\Jasmin_Arbeit\AppData\Roaming\ICQM\icq.exe [26934632 2013-02-11] (ICQ)
MountPoints2: {2b6e1b50-e158-11e2-8b05-001377ac5cf6} - F:\HTC_Sync_Manager_PC.exe
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xCCDA1C0A232ECE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {FFEBBF0A-C22C-4172-89FF-45215A135AC8} URL = hxxp://search.icq.com/search/results.php?q=%s&ch_id=hm&search_mode=web
BHO: Feven 1.5 - {11111111-1111-1111-1111-110311851132} - C:\Program Files (x86)\Feven 1.5\Feven 1.5-bho64.dll (Feven)
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Feven 1.5 - {11111111-1111-1111-1111-110311851132} - C:\Program Files (x86)\Feven 1.5\Feven 1.5-bho.dll (Feven)
BHO-x32: Whilokii - {204df522-9a96-4a72-abb0-60f7a216d6d2} - C:\Program Files (x86)\Whilokii\Whilokiibho.dll (Whilokii)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{6B863FAA-0C7B-461D-88C7-C30EE0D3B1C1}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasmin_Arbeit\AppData\Roaming\Mozilla\Firefox\Profiles\q4tlb8bf.default-1381265718815
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Jasmin_Arbeit\AppData\Roaming\Mozilla\Firefox\Profiles\q4tlb8bf.default-1381265718815\Extensions\249911bc-d1bd-4d66-8c17-df533609e6d8@c76f3de9-939e-4922-b73c-5d7a3139375d.com
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3128856 2012-02-28] (devolo AG)
R2 HTCMonitorService; D:\Installationen Jasmin\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Update Whilokii; C:\Program Files (x86)\Whilokii\updateWhilokii.exe [65304 2013-10-05] (Whilokii)
R2 Util Whilokii; C:\Program Files (x86)\Whilokii\bin\utilWhilokii.exe [65304 2013-10-07] (Whilokii)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2012-01-31] (CACE Technologies)
S3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S3 cleanhlp; \??\C:\Users\Jasmin\Desktop\Run\cleanhlp64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-13 11:37 - 2013-10-13 13:45 - 00000637 _____ C:\Windows\wininit.ini
2013-10-13 09:37 - 2013-10-13 09:43 - 189820904 _____ C:\Users\Jasmin_Arbeit\Downloads\EmsisoftEmergencyKit_4.0.0.13.exe
2013-10-13 09:28 - 2013-10-13 09:34 - 201413432 _____ (Emsisoft GmbH                                               ) C:\Users\Jasmin_Arbeit\Downloads\EmsisoftAntiMalwareSetup_8.1.0.19.exe
2013-10-11 03:24 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 03:24 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 03:24 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 03:24 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 03:24 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 03:23 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:19 - 2013-10-10 23:19 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:19 - 2013-10-10 23:18 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-10 23:18 - 2013-10-10 23:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-10 23:18 - 2013-10-10 23:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-10 23:18 - 2013-10-10 23:18 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-10 23:18 - 2013-10-10 23:18 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:12 - 2013-10-10 23:13 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-11 06:56 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-10 22:40 - 2013-10-10 22:40 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:40 - 2013-08-30 09:48 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-10 22:40 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-10 22:39 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:55 - 2013-10-10 22:38 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:47 - 2013-10-10 21:53 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:24 - 2013-10-19 18:02 - 00001286 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-10-10 21:24 - 2013-10-19 18:02 - 00001188 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-10-10 21:24 - 2013-10-19 18:02 - 00001088 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-10-10 21:23 - 2013-10-19 18:02 - 00001816 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-10-10 21:23 - 2013-10-10 21:24 - 00000000 ____D C:\Program Files (x86)\Feven 1.5
2013-10-10 07:18 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:18 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:18 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:18 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 07:18 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 07:18 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:18 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 07:18 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 07:18 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 07:18 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 07:18 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 07:18 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:18 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:18 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:18 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:18 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 07:18 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 07:18 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 07:18 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 07:17 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:17 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:17 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:17 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:07 - 2013-10-09 21:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:06 - 2013-10-09 21:07 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-06 22:02 - 2013-10-07 03:39 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:30 - 2013-10-19 18:01 - 00001400 _____ C:\Windows\setupact.log
2013-10-06 17:30 - 2013-10-06 17:30 - 00000000 _____ C:\Windows\setuperr.log
2013-10-06 17:29 - 2013-10-18 23:12 - 00009166 _____ C:\Windows\PFRO.log
2013-10-06 16:20 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-06 16:20 - 2012-08-23 16:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2013-10-06 16:20 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-06 16:20 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-06 16:20 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-06 16:20 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-06 16:20 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-06 16:20 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-06 16:20 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-06 16:20 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-06 16:20 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-06 16:20 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-06 16:20 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-06 16:20 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-06 16:20 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-06 16:20 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-06 16:20 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-06 16:20 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-06 16:19 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-06 16:19 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-06 16:19 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-06 16:19 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-06 16:19 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 11:37 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-06 11:37 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-06 11:37 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-06 11:37 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-06 11:37 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-06 03:31 - 2013-10-06 04:22 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 03:29 - 2013-10-07 07:22 - 00000000 ____D C:\Program Files (x86)\Whilokii
2013-10-06 02:17 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:18 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 19:55 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:54 - 2013-10-05 19:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:54 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-04 21:20 - 2013-10-04 21:26 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod
2013-09-19 22:39 - 2013-09-19 22:39 - 00000000 ____D C:\6d23eab0bcd4f2f59fe4b55afefa

==================== One Month Modified Files and Folders =======

2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:29 - 2012-12-31 02:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-19 20:19 - 2013-01-18 15:37 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Paint.NET
2013-10-19 20:19 - 2012-12-31 09:47 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Skype
2013-10-19 19:54 - 2013-08-09 20:04 - 00000374 _____ C:\Windows\Tasks\TubeSaver Update.job
2013-10-19 19:43 - 2012-12-31 01:11 - 01339275 _____ C:\Windows\WindowsUpdate.log
2013-10-19 19:37 - 2013-06-29 19:11 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-19 18:09 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-19 18:09 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-19 18:02 - 2013-10-10 21:24 - 00001286 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-10-19 18:02 - 2013-10-10 21:24 - 00001188 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-10-19 18:02 - 2013-10-10 21:24 - 00001088 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-10-19 18:02 - 2013-10-10 21:23 - 00001816 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-10-19 18:02 - 2013-06-29 19:11 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-19 18:01 - 2013-10-06 17:30 - 00001400 _____ C:\Windows\setupact.log
2013-10-19 18:01 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-19 13:16 - 2010-11-21 08:22 - 03040104 _____ C:\Windows\system32\perfh007.dat
2013-10-19 13:16 - 2010-11-21 08:22 - 00908822 _____ C:\Windows\system32\perfc007.dat
2013-10-19 13:16 - 2009-07-14 07:13 - 00006324 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-18 23:12 - 2013-10-06 17:29 - 00009166 _____ C:\Windows\PFRO.log
2013-10-13 13:45 - 2013-10-13 11:37 - 00000637 _____ C:\Windows\wininit.ini
2013-10-13 09:43 - 2013-10-13 09:37 - 189820904 _____ C:\Users\Jasmin_Arbeit\Downloads\EmsisoftEmergencyKit_4.0.0.13.exe
2013-10-13 09:34 - 2013-10-13 09:28 - 201413432 _____ (Emsisoft GmbH                                               ) C:\Users\Jasmin_Arbeit\Downloads\EmsisoftAntiMalwareSetup_8.1.0.19.exe
2013-10-11 06:56 - 2013-10-10 22:40 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-11 04:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 03:34 - 2012-02-23 22:19 - 00000000 ____D C:\Windows\Panther
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 03:32 - 2009-07-14 06:45 - 00431432 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 03:28 - 2012-12-31 02:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 03:12 - 2013-08-24 17:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 03:10 - 2012-02-23 22:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 23:19 - 2013-10-10 23:19 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:18 - 2013-10-10 23:19 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-10 23:18 - 2013-10-10 23:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-10 23:18 - 2013-10-10 23:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-10 23:18 - 2013-10-10 23:18 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-10 23:18 - 2013-10-10 23:18 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:18 - 2013-07-29 11:46 - 00868264 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-10-10 23:18 - 2013-07-29 11:46 - 00790440 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-10-10 23:14 - 2012-12-31 09:27 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Adobe
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:13 - 2013-10-10 23:12 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:13 - 2013-01-01 22:13 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Adobe
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-10 22:40 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 22:38 - 2013-10-10 21:55 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:53 - 2013-10-10 21:47 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-10 21:24 - 2013-10-10 21:23 - 00000000 ____D C:\Program Files (x86)\Feven 1.5
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ____D C:\ProgramData\Skype
2013-10-09 21:46 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:08 - 2013-10-09 21:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:07 - 2013-10-09 21:06 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-09 21:07 - 2013-09-18 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-09 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-07 07:22 - 2013-10-06 03:29 - 00000000 ____D C:\Program Files (x86)\Whilokii
2013-10-07 03:39 - 2013-10-06 22:02 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:30 - 2013-10-06 17:30 - 00000000 _____ C:\Windows\setuperr.log
2013-10-06 17:27 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2013-10-06 16:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 04:22 - 2013-10-06 03:31 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 02:17 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:19 - 2013-10-06 00:18 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:40 - 2013-10-05 19:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:56 - 2013-10-05 19:54 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 10:46 - 2013-01-18 15:33 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2013-10-05 10:46 - 2013-01-18 15:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-10-04 21:26 - 2013-10-04 21:20 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 19:44 - 2013-01-02 15:24 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Jasmin_PC
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod
2013-09-23 01:28 - 2013-10-11 03:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-23 01:28 - 2013-10-11 03:24 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-23 01:27 - 2013-10-11 03:23 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-23 00:54 - 2013-10-11 03:24 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-21 05:38 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-21 05:30 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-21 04:48 - 2013-10-11 03:24 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-21 04:39 - 2013-10-11 03:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-09-19 22:39 - 2013-09-19 22:39 - 00000000 ____D C:\6d23eab0bcd4f2f59fe4b55afefa
2013-09-19 20:45 - 2012-12-31 03:22 - 00000000 ___RD C:\Users\Jasmin_Arbeit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-19 07:14 - 2012-12-31 03:23 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Mozilla

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

Und hier das mit Addition:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-10-2013
Ran by Jasmin_Arbeit at 2013-10-19 20:30:33
Running from C:\Users\Jasmin_Arbeit\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 13.2.1)
Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
avast! Free Antivirus (x32 Version: 8.0.1497.0)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.03)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
devolo dLAN Cockpit (x32 Version: 3.2.0.0)
dLAN Cockpit (x32 Version: 3.2.28)
Feven 1.5 (x32 Version: 1.28.153.5)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
HTC Driver Installer (x32 Version: 4.2.0.001)
HTC Sync Manager (x32 Version: 2.0.60.0)
ICQ 8.0 (build 5996, für aktuellen Benutzer) (HKCU Version: 8.0.5996.0)
IPTInstaller (x32 Version: 4.0.8)
iTunes (Version: 11.1.1.11)
Java 7 Update 40 (x32 Version: 7.0.400)
Java Auto Updater (x32 Version: 2.1.9.8)
Marvell Miniport Driver (x32 Version: 10.70.3.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyPhoneExplorer (x32 Version: 1.8.4)
NVIDIA Grafiktreiber 310.70 (Version: 310.70)
NVIDIA HD-Audiotreiber 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 310.70 (Version: 310.70)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Paint.NET v3.5.11 (Version: 3.61.0)
PeaZip 4.9 (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5923)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.9 (x32 Version: 6.9.106)
Spybot - Search & Destroy (x32 Version: 2.1.21)
TubeSaver (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)
Whilokii 1.0.0 (Version: 1.0.0)

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-10-06 10:41 - 00000938 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\Feven 1.5-codedownloader.job => ?
Task: C:\Windows\Tasks\Feven 1.5-enabler.job => ?
Task: C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job => ?
Task: C:\Windows\Tasks\Feven 1.5-updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
Task: C:\Windows\Tasks\TubeSaver Update.job => ?

==================== Loaded Modules (whitelisted) =============

2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
Description: Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Marvell
Service: yukonw7
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/19/2013 06:02:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2013 01:33:25 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (10/19/2013 01:16:15 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (10/19/2013 01:16:15 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (10/19/2013 01:16:15 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (10/19/2013 00:41:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/18/2013 11:21:14 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (10/18/2013 11:20:57 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/18/2013 11:13:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2013 08:58:11 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005


System errors:
=============
Error: (10/19/2013 06:02:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/19/2013 06:02:21 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.

Error: (10/19/2013 00:39:45 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/19/2013 00:39:45 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.

Error: (10/18/2013 11:19:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update Whilokii" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/18/2013 11:19:01 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Update Whilokii erreicht.

Error: (10/18/2013 11:18:27 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/18/2013 11:18:27 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.

Error: (10/18/2013 11:17:32 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎18.‎10.‎2013 um 23:16:12 unerwartet heruntergefahren.

Error: (10/13/2013 08:53:31 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎13.‎10.‎2013 um 08:52:14 unerwartet heruntergefahren.


Microsoft Office Sessions:
=========================
Error: (10/19/2013 06:02:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2013 01:33:25 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (10/19/2013 01:16:15 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (10/19/2013 01:16:15 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (10/19/2013 01:16:15 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)
Description: Performance1637070000000000000000000009030000

Error: (10/19/2013 00:41:43 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/18/2013 11:21:14 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT)
Description: Product: Skype Click to Call -- Error 1609. An error occurred while applying security settings. Users is not a valid user or group. This could be a problem with the package, or a problem connecting to a domain controller on the network. Check your network connection and click Retry, or Cancel to end the install. Unable to locate the user's SID, system error 1332(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (10/18/2013 11:20:57 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/18/2013 11:13:20 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2013 08:58:11 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005


==================== Memory info =========================== 

Percentage of memory in use: 71%
Total physical RAM: 4090.61 MB
Available physical RAM: 1164.46 MB
Total Pagefile: 8179.4 MB
Available Pagefile: 5249.53 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:144.09 GB) (Free:91.67 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: () (Fixed) (Total:144 GB) (Free:79.75 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================

So das war alles soweit mit den Logs. Was muss ich weiteres tun?

Danke und Gruß
Jakasi

Was muss ich denn jetzt tun? Mein PC fängt langsam immer mehr an zu spinnen...:/

schrauber · 20.10.2013, 17:32

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Jakasi · 20.10.2013, 19:31

Hallo hier als Erstes das log von Malewarebytes:

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.20.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Jasmin :: JASMIN-PC [Administrator]

20.10.2013 18:34:23
mbam-log-2013-10-20 (18-34-23).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 247044
Laufzeit: 5 Minute(n), 50 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 17
HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} (PUP.Optional.BrowseFox.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23} (PUP.Optional.BrowseFox.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{F01D0FE5-C2F3-02CB-2927-74A10FA799D2} (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CrossriderApp0038532.BHO (PUP.Optional.CrossRider.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CrossriderApp0038532.BHO.1 (PUP.Optional.CrossRider.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CrossriderApp0038532.Sandbox (PUP.Optional.CrossRider.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CrossriderApp0038532.Sandbox.1 (PUP.Optional.CrossRider.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\DataMngr (PUP.Optional.DataMngr.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\Systweak\RegClean Pro (PUP.Optional.RegCleanerPro.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311851132} (PUP.Optional.CrossRider.M) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{11111111-1111-1111-1111-110311851132} (PUP.Optional.CrossRider.M) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{44444444-4444-4444-4444-440344854432} (PUP.Optional.CrossRider.M) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Interface\{55555555-5555-5555-5555-550355855532} (PUP.Optional.CrossRider.M) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311851132} (PUP.Optional.CrossRider.M) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 2O1R1G2Z1F1G1M -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.StartPage.A) -> Bösartig: (hxxp://www.searchgol.com/?babsrc=HP_ss&mntrId=E67C06216383B353&affID=125035&tsp=5027) Gut: (hxxp://www.google.com) -> Erfolgreich ersetzt und in Quarantäne gestellt.

Infizierte Verzeichnisse: 6
C:\Users\Jasmin_Arbeit\AppData\Roaming\PerformerSoft\PC Performer (PUP.Optional.PCPerformer.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin\AppData\Roaming\DealPly (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin\AppData\Roaming\DealPly\UpdateProc (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\AppData\Roaming\Iminent\Mediator (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\AppData\Roaming\Iminent\Mediator\Datas (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin\AppData\Roaming\File Scout (PUP.Optional.FileScout.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 11
C:\ProgramData\InstallMate\{5062C57D-91EF-4B5E-A9B5-D9CD8B81E78B}\Setup.exe (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\InstallMate\{5062C57D-91EF-4B5E-A9B5-D9CD8B81E78B}\TsuDll.dll (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin\AppData\Roaming\File Scout\filescout.exe (PUP.Optional.FileScout.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\Desktop\SoftonicDownloader_fuer_ikea-home-planer.exe (PUP.Optional.Softonic) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\Tasks\TubeSaver Update.job (PUP.Optional.TubeSaver.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\AppData\Roaming\PerformerSoft\PC Performer\log_04-19-2013.log (PUP.Optional.PCPerformer.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\AppData\Roaming\PerformerSoft\PC Performer\eng_rcp.dat (PUP.Optional.PCPerformer.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin\AppData\Roaming\DealPly\UpdateProc\config.dat (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\AppData\Roaming\Iminent\Mediator\Datas\globalcache.dat (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin_Arbeit\AppData\Roaming\Iminent\Mediator\Datas\user.dat (PUP.Optional.Iminent.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Jasmin\AppData\Roaming\File Scout\uninst.exe (PUP.Optional.FileScout.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

Gruß Jakasi

Hier nun das Log von adaware:

Code:

ATTFilter

# AdwCleaner v3.009 - Bericht erstellt am 20/10/2013 um 19:54:01
# Updated 19/10/2013 von Xplode
# Betriebssystem : Windows 7 Enterprise Service Pack 1 (64 bits)
# Benutzername : Jasmin - JASMIN-PC
# Gestartet von : C:\Users\Jasmin\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\Jasmin\AppData\LocalLow\OutBrowseToolbar
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\Common\LuaRT
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\DataMgr
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\Intermediate
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\PerformerSoft
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\SCheck
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\SSync
Ordner Gelöscht : C:\Users\Jasmin\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Jasmin_Arbeit\AppData\LocalLow\OutBrowseToolbar
Ordner Gelöscht : C:\Users\Jasmin_Arbeit\AppData\LocalLow\SimplyTech
Ordner Gelöscht : C:\Users\Jasmin_Arbeit\AppData\Roaming\Iminent
Ordner Gelöscht : C:\Users\Jasmin_Arbeit\AppData\Roaming\PerformerSoft
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\searchplugins\searchgol.xml
Datei Gelöscht : C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\DealPlyUpdate

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [Tubesaver@istqt.co]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [DataMgr]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Intermediate]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [scheck]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ssync]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{8B0295E2-967E-439E-9560-807D9F625B57}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\filescout
Schlüssel Gelöscht : HKCU\Software\httogroup
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\powerpack
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\systweak
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\simplytech
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\TubeSaver
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Tubesaver@istqt.co

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (de)

[ Datei : C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\prefs.js ]

Zeile gelöscht : user_pref("browser.search.defaultengine", "Web Search");
Zeile gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q=");
Zeile gelöscht : user_pref("extensions.searchgol.admin", false);
Zeile gelöscht : user_pref("extensions.searchgol.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.searchgol.appId", "{4277F7CF-0000-46CF-BA49-D624465C4BAB}");
Zeile gelöscht : user_pref("extensions.searchgol.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.searchgol.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.searchgol.excTlbr", false);
Zeile gelöscht : user_pref("extensions.searchgol.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.searchgol.id", "e67caa6d00000000000006216383b353");
Zeile gelöscht : user_pref("extensions.searchgol.instlDay", "15984");
Zeile gelöscht : user_pref("extensions.searchgol.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.searchgol.newTab", false);
Zeile gelöscht : user_pref("extensions.searchgol.prdct", "searchgol");
Zeile gelöscht : user_pref("extensions.searchgol.prtnrId", "searchgol");
Zeile gelöscht : user_pref("extensions.searchgol.rvrt", "false");
Zeile gelöscht : user_pref("extensions.searchgol.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.searchgol.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.searchgol.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.searchgol.vrsn", "1.8.16.19");
Zeile gelöscht : user_pref("extensions.searchgol.vrsnTs", "1.8.16.193:30:18");
Zeile gelöscht : user_pref("extensions.searchgol.vrsni", "1.8.16.19");
Zeile gelöscht : user_pref("om.config", "{\"active\":true,\"name\":\"twde\",\"id\":25,\"dispId\":\"CH-25\",\"aboutLink\":\"\",\"trackingGeneral\":true,\"gaAccount\":\"UA-39484183-1\",\"gaDomain\":\"offermosquito.com\"[...]

[ Datei : C:\Users\Jasmin_Arbeit\AppData\Roaming\Mozilla\Firefox\Profiles\q4tlb8bf.default-1381265718815\prefs.js ]

Zeile gelöscht : user_pref("extensions.crossrider.bic", "141a3d6811151c5f6c375b6470eb955a");

*************************

AdwCleaner[R0].txt - [16511 octets] - [20/10/2013 19:47:25]
AdwCleaner[S0].txt - [15593 octets] - [20/10/2013 19:54:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15654 octets] ##########

Gruß Jakasi

Hier nun das Log von JRT:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Enterprise x64
Ran by Jasmin on 20.10.2013 at 20:02:03,23
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3878677894-1913467077-845352140-1000\Software\SweetIM
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220322852232}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660366856632}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220322852232}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660366856632}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660366856632}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660366856632}



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Jasmin\AppData\Roaming\mozilla\firefox\profiles\30bzz6xf.default\minidumps [12 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.10.2013 at 20:21:05,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Gruß

Jakaqsi

und jetzt noch das neue FRST-log:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013
Ran by Jasmin (administrator) on JASMIN-PC on 20-10-2013 20:25:08
Running from C:\Users\Jasmin\Downloads
Windows 7 Enterprise Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Nero AG) D:\Installationen Jasmin\HSMServiceEntry.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() D:\Installationen Jasmin\HTC Sync\adb.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8081952 2009-08-24] (Realtek Semiconductor)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Snoozer] - C:\Users\Jasmin\AppData\Roaming\Snz\Snz.exe [1137764 2013-08-28] ()
HKCU\...\Run: [OMESupervisor] - C:\Users\Jasmin\AppData\Local\omesuperv.exe
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {30d97edc-52d5-11e2-bc8c-806e6f6e6963} - E:\SETUP.EXE
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Jasmin_Arbeit\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\Jasmin_Arbeit\...\Run: [icq] - C:\Users\Jasmin_Arbeit\AppData\Roaming\ICQM\icq.exe [26934632 2013-02-11] (ICQ)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - URL hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss_Btisdt7&mntrId=E67C06216383B353&affID=125035&tsp=5027
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=42102&gid=1&dbCode=1&command={searchTerms}
BHO: Feven 1.5 - {11111111-1111-1111-1111-110311851132} - C:\Program Files (x86)\Feven 1.5\Feven 1.5-bho64.dll No File
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6B863FAA-0C7B-461D-88C7-C30EE0D3B1C1}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\searchplugins\search_the_web.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ojcdnngpmbenohhjlickdajclhbcaada] - C:\Program Files (x86)\TubeSaver\126.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3128856 2012-02-28] (devolo AG)
R2 HTCMonitorService; D:\Installationen Jasmin\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2012-01-31] (CACE Technologies)
S3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S3 cleanhlp; \??\C:\Users\Jasmin\Desktop\Run\cleanhlp64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-20 20:21 - 2013-10-20 20:21 - 00001640 _____ C:\Users\Jasmin\Desktop\JRT.txt
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:40 - 2013-10-20 19:41 - 01954548 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:34 - 2013-10-20 19:54 - 00000000 ____D C:\AdwCleaner
2013-10-20 19:34 - 2013-10-20 19:34 - 01056666 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-20 18:53 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 18:53 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 18:52 - 2013-10-20 18:53 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:24 - 2013-10-20 18:24 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:24 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-19 20:30 - 2013-10-19 20:30 - 00045528 _____ C:\Users\Jasmin_Arbeit\Downloads\FRST.txt
2013-10-19 20:30 - 2013-10-19 20:30 - 00016233 _____ C:\Users\Jasmin_Arbeit\Downloads\Addition.txt
2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-13 11:37 - 2013-10-13 13:45 - 00000637 _____ C:\Windows\wininit.ini
2013-10-13 09:37 - 2013-10-13 09:43 - 189820904 _____ C:\Users\Jasmin_Arbeit\Downloads\EmsisoftEmergencyKit_4.0.0.13.exe
2013-10-13 09:28 - 2013-10-13 09:34 - 201413432 _____ (Emsisoft GmbH                                               ) C:\Users\Jasmin_Arbeit\Downloads\EmsisoftAntiMalwareSetup_8.1.0.19.exe
2013-10-11 03:24 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 03:24 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 03:24 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 03:24 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 03:24 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 03:23 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:19 - 2013-10-20 19:21 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:18 - 2013-10-20 18:53 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:12 - 2013-10-10 23:13 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-20 16:09 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-10 22:40 - 2013-10-11 06:56 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-10 22:40 - 2013-10-10 22:40 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:40 - 2013-08-30 09:48 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-10 22:40 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-10 22:39 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:55 - 2013-10-10 22:38 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:47 - 2013-10-10 21:53 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:24 - 2013-10-20 19:56 - 00001286 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-10-10 21:24 - 2013-10-20 19:56 - 00001188 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-10-10 21:24 - 2013-10-20 19:56 - 00001088 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-10-10 21:24 - 2013-10-10 21:24 - 00004316 _____ C:\Windows\System32\Tasks\Feven 1.5-updater
2013-10-10 21:24 - 2013-10-10 21:24 - 00004218 _____ C:\Windows\System32\Tasks\Feven 1.5-codedownloader
2013-10-10 21:24 - 2013-10-10 21:24 - 00004118 _____ C:\Windows\System32\Tasks\Feven 1.5-enabler
2013-10-10 21:23 - 2013-10-20 19:56 - 00001816 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-10-10 07:18 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:18 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:18 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:18 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 07:18 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 07:18 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:18 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 07:18 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 07:18 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 07:18 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 07:18 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 07:18 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:18 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:18 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:18 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:18 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 07:18 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 07:18 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 07:18 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 07:17 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:17 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:17 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:17 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:07 - 2013-10-09 21:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:06 - 2013-10-09 21:07 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-06 22:02 - 2013-10-07 03:39 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:30 - 2013-10-20 19:55 - 00001624 _____ C:\Windows\setupact.log
2013-10-06 17:30 - 2013-10-06 17:30 - 00000000 _____ C:\Windows\setuperr.log
2013-10-06 17:29 - 2013-10-20 18:42 - 00014270 _____ C:\Windows\PFRO.log
2013-10-06 16:20 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-06 16:20 - 2012-08-23 16:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2013-10-06 16:20 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-06 16:20 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-06 16:20 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-06 16:20 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-06 16:20 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-06 16:20 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-06 16:20 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-06 16:20 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-06 16:20 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-06 16:20 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-06 16:20 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-06 16:20 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-06 16:20 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-06 16:20 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-06 16:20 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-06 16:20 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-06 16:19 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-06 16:19 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-06 16:19 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-06 16:19 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-06 16:19 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 11:37 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-06 11:37 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-06 11:37 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-06 11:37 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-06 11:37 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:13 - 2011-10-15 17:39 - 00000000 ____D C:\Users\Jasmin\Downloads\709
2013-10-06 03:59 - 2013-10-06 04:12 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 03:31 - 2013-10-06 04:22 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 02:17 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-06 02:10 - 2013-10-06 02:10 - 00003070 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:18 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:52 - 2013-10-05 21:54 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 19:55 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:54 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-05 19:52 - 2013-10-05 19:53 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-04 21:20 - 2013-10-04 21:26 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod

==================== One Month Modified Files and Folders =======

2013-10-20 20:21 - 2013-10-20 20:21 - 00001640 _____ C:\Users\Jasmin\Desktop\JRT.txt
2013-10-20 20:03 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-20 20:03 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:56 - 2013-10-10 21:24 - 00001286 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-10-20 19:56 - 2013-10-10 21:24 - 00001188 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-10-20 19:56 - 2013-10-10 21:24 - 00001088 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-10-20 19:56 - 2013-10-10 21:23 - 00001816 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-10-20 19:56 - 2013-06-29 19:11 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-20 19:55 - 2013-10-06 17:30 - 00001624 _____ C:\Windows\setupact.log
2013-10-20 19:55 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-20 19:54 - 2013-10-20 19:34 - 00000000 ____D C:\AdwCleaner
2013-10-20 19:54 - 2012-12-31 01:11 - 01405517 _____ C:\Windows\WindowsUpdate.log
2013-10-20 19:41 - 2013-10-20 19:40 - 01954548 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:37 - 2013-06-29 19:11 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-20 19:34 - 2013-10-20 19:34 - 01056666 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-20 19:29 - 2012-12-31 02:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-20 19:21 - 2013-10-10 23:19 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 18:53 - 2013-10-20 18:52 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:53 - 2013-10-10 23:18 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-20 18:42 - 2013-10-06 17:29 - 00014270 _____ C:\Windows\PFRO.log
2013-10-20 18:24 - 2013-10-20 18:24 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 16:09 - 2013-10-10 22:40 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-20 16:08 - 2012-12-31 15:43 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Skype
2013-10-20 16:08 - 2012-12-31 01:12 - 00000000 ____D C:\Users\Jasmin
2013-10-20 13:18 - 2012-12-31 09:47 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Skype
2013-10-19 20:30 - 2013-10-19 20:30 - 00045528 _____ C:\Users\Jasmin_Arbeit\Downloads\FRST.txt
2013-10-19 20:30 - 2013-10-19 20:30 - 00016233 _____ C:\Users\Jasmin_Arbeit\Downloads\Addition.txt
2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-19 20:19 - 2013-01-18 15:37 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Paint.NET
2013-10-19 13:32 - 2013-06-29 19:11 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-19 13:32 - 2013-06-29 19:11 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-19 13:16 - 2010-11-21 08:22 - 03040104 _____ C:\Windows\system32\perfh007.dat
2013-10-19 13:16 - 2010-11-21 08:22 - 00908822 _____ C:\Windows\system32\perfc007.dat
2013-10-19 13:16 - 2009-07-14 07:13 - 00006324 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-13 13:45 - 2013-10-13 11:37 - 00000637 _____ C:\Windows\wininit.ini
2013-10-13 09:43 - 2013-10-13 09:37 - 189820904 _____ C:\Users\Jasmin_Arbeit\Downloads\EmsisoftEmergencyKit_4.0.0.13.exe
2013-10-13 09:34 - 2013-10-13 09:28 - 201413432 _____ (Emsisoft GmbH                                               ) C:\Users\Jasmin_Arbeit\Downloads\EmsisoftAntiMalwareSetup_8.1.0.19.exe
2013-10-11 06:56 - 2013-10-10 22:40 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-11 04:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 03:34 - 2012-02-23 22:19 - 00000000 ____D C:\Windows\Panther
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 03:32 - 2009-07-14 06:45 - 00431432 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 03:28 - 2012-12-31 02:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 03:12 - 2013-08-24 17:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 03:10 - 2012-02-23 22:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 23:14 - 2012-12-31 09:27 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Adobe
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:13 - 2013-10-10 23:12 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:13 - 2013-01-01 22:13 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Adobe
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-10 22:40 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 22:38 - 2013-10-10 21:55 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:53 - 2013-10-10 21:47 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-10 21:29 - 2012-12-31 02:39 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-10 21:24 - 2013-10-10 21:24 - 00004316 _____ C:\Windows\System32\Tasks\Feven 1.5-updater
2013-10-10 21:24 - 2013-10-10 21:24 - 00004218 _____ C:\Windows\System32\Tasks\Feven 1.5-codedownloader
2013-10-10 21:24 - 2013-10-10 21:24 - 00004118 _____ C:\Windows\System32\Tasks\Feven 1.5-enabler
2013-10-10 21:23 - 2013-06-29 19:11 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Google
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ____D C:\ProgramData\Skype
2013-10-09 21:46 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:08 - 2013-10-09 21:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:07 - 2013-10-09 21:06 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-09 21:07 - 2013-09-18 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-09 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-08 07:50 - 2013-10-20 18:53 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-20 18:53 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-07 03:39 - 2013-10-06 22:02 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:30 - 2013-10-06 17:30 - 00000000 _____ C:\Windows\setuperr.log
2013-10-06 17:27 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2013-10-06 16:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:22 - 2013-10-06 03:31 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 04:12 - 2013-10-06 03:59 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 02:17 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-06 02:10 - 2013-10-06 02:10 - 00003070 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:19 - 2013-10-06 00:18 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:54 - 2013-10-05 21:52 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 21:40 - 2013-10-05 19:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:56 - 2013-10-05 19:54 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:53 - 2013-10-05 19:52 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-05 19:33 - 2012-12-31 01:19 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Mozilla
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 19:32 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-05 10:46 - 2013-01-18 15:33 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2013-10-05 10:46 - 2013-01-18 15:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-10-05 10:45 - 2013-01-18 15:32 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Paint.NET
2013-10-04 21:26 - 2013-10-04 21:20 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 19:44 - 2013-01-02 15:24 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Jasmin_PC
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod
2013-09-23 01:28 - 2013-10-11 03:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-23 01:28 - 2013-10-11 03:24 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-23 01:27 - 2013-10-11 03:23 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-23 00:54 - 2013-10-11 03:24 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-21 05:38 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-21 05:30 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-21 04:48 - 2013-10-11 03:24 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-21 04:39 - 2013-10-11 03:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

Some content of TEMP:
====================
C:\Users\Jasmin\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Jasmin\AppData\Local\Temp\Player_Setup.exe
C:\Users\Jasmin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-11 02:26

==================== End Of Log ============================

--- --- ---

--- --- ---

Danke für Deine unkomplizierte Hilfe

Gruß

Jakasi

Jakasi · 20.10.2013, 19:44

Leider war beim Aufruf des Programms FRST64-Bit kein Häkchen bei Addition.txt. Habe das Programm deshalb nochmal gestartet und das Häkchen gesetzt und Dir jetzt nochmal beide TXT-Log gesendet.

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013
Ran by Jasmin (administrator) on JASMIN-PC on 20-10-2013 20:34:39
Running from C:\Users\Jasmin\Downloads
Windows 7 Enterprise Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Nero AG) D:\Installationen Jasmin\HSMServiceEntry.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() D:\Installationen Jasmin\HTC Sync\adb.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8081952 2009-08-24] (Realtek Semiconductor)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Snoozer] - C:\Users\Jasmin\AppData\Roaming\Snz\Snz.exe [1137764 2013-08-28] ()
HKCU\...\Run: [OMESupervisor] - C:\Users\Jasmin\AppData\Local\omesuperv.exe
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {30d97edc-52d5-11e2-bc8c-806e6f6e6963} - E:\SETUP.EXE
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Jasmin_Arbeit\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\Jasmin_Arbeit\...\Run: [icq] - C:\Users\Jasmin_Arbeit\AppData\Roaming\ICQM\icq.exe [26934632 2013-02-11] (ICQ)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - URL hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss_Btisdt7&mntrId=E67C06216383B353&affID=125035&tsp=5027
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=42102&gid=1&dbCode=1&command={searchTerms}
BHO: Feven 1.5 - {11111111-1111-1111-1111-110311851132} - C:\Program Files (x86)\Feven 1.5\Feven 1.5-bho64.dll No File
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6B863FAA-0C7B-461D-88C7-C30EE0D3B1C1}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\searchplugins\search_the_web.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ojcdnngpmbenohhjlickdajclhbcaada] - C:\Program Files (x86)\TubeSaver\126.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3128856 2012-02-28] (devolo AG)
R2 HTCMonitorService; D:\Installationen Jasmin\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2012-01-31] (CACE Technologies)
S3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S3 cleanhlp; \??\C:\Users\Jasmin\Desktop\Run\cleanhlp64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-20 20:21 - 2013-10-20 20:21 - 00001640 _____ C:\Users\Jasmin\Desktop\JRT.txt
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:40 - 2013-10-20 19:41 - 01954548 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:34 - 2013-10-20 19:54 - 00000000 ____D C:\AdwCleaner
2013-10-20 19:34 - 2013-10-20 19:34 - 01056666 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-20 18:53 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 18:53 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 18:52 - 2013-10-20 18:53 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:24 - 2013-10-20 18:24 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:24 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-19 20:30 - 2013-10-19 20:30 - 00045528 _____ C:\Users\Jasmin_Arbeit\Downloads\FRST.txt
2013-10-19 20:30 - 2013-10-19 20:30 - 00016233 _____ C:\Users\Jasmin_Arbeit\Downloads\Addition.txt
2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-13 11:37 - 2013-10-13 13:45 - 00000637 _____ C:\Windows\wininit.ini
2013-10-13 09:37 - 2013-10-13 09:43 - 189820904 _____ C:\Users\Jasmin_Arbeit\Downloads\EmsisoftEmergencyKit_4.0.0.13.exe
2013-10-13 09:28 - 2013-10-13 09:34 - 201413432 _____ (Emsisoft GmbH                                               ) C:\Users\Jasmin_Arbeit\Downloads\EmsisoftAntiMalwareSetup_8.1.0.19.exe
2013-10-11 03:24 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 03:24 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 03:24 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 03:24 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 03:24 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 03:23 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:19 - 2013-10-20 19:21 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:18 - 2013-10-20 18:53 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:12 - 2013-10-10 23:13 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-20 16:09 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-10 22:40 - 2013-10-11 06:56 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-10 22:40 - 2013-10-10 22:40 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:40 - 2013-08-30 09:48 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-10 22:40 - 2013-08-30 09:48 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-10 22:40 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-10 22:39 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:55 - 2013-10-10 22:38 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:47 - 2013-10-10 21:53 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:24 - 2013-10-20 19:56 - 00001286 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-10-10 21:24 - 2013-10-20 19:56 - 00001188 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-10-10 21:24 - 2013-10-20 19:56 - 00001088 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-10-10 21:24 - 2013-10-10 21:24 - 00004316 _____ C:\Windows\System32\Tasks\Feven 1.5-updater
2013-10-10 21:24 - 2013-10-10 21:24 - 00004218 _____ C:\Windows\System32\Tasks\Feven 1.5-codedownloader
2013-10-10 21:24 - 2013-10-10 21:24 - 00004118 _____ C:\Windows\System32\Tasks\Feven 1.5-enabler
2013-10-10 21:23 - 2013-10-20 19:56 - 00001816 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-10-10 07:18 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:18 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:18 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:18 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 07:18 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 07:18 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:18 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 07:18 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 07:18 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 07:18 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 07:18 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 07:18 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:18 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:18 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:18 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:18 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 07:18 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 07:18 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 07:18 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 07:17 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:17 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:17 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:17 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:07 - 2013-10-09 21:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:06 - 2013-10-09 21:07 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-06 22:02 - 2013-10-07 03:39 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:30 - 2013-10-20 19:55 - 00001624 _____ C:\Windows\setupact.log
2013-10-06 17:30 - 2013-10-06 17:30 - 00000000 _____ C:\Windows\setuperr.log
2013-10-06 17:29 - 2013-10-20 18:42 - 00014270 _____ C:\Windows\PFRO.log
2013-10-06 16:20 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-06 16:20 - 2012-08-23 16:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2013-10-06 16:20 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-06 16:20 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-06 16:20 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-06 16:20 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-06 16:20 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-06 16:20 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-06 16:20 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-06 16:20 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-06 16:20 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-06 16:20 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-06 16:20 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-06 16:20 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-06 16:20 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-06 16:20 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-06 16:20 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-06 16:20 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-06 16:19 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-06 16:19 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-06 16:19 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-06 16:19 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-06 16:19 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 11:37 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-06 11:37 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-06 11:37 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-06 11:37 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-06 11:37 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:13 - 2011-10-15 17:39 - 00000000 ____D C:\Users\Jasmin\Downloads\709
2013-10-06 03:59 - 2013-10-06 04:12 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 03:31 - 2013-10-06 04:22 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 02:17 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-06 02:10 - 2013-10-06 02:10 - 00003070 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:18 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:52 - 2013-10-05 21:54 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 19:55 - 2013-10-05 21:40 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:54 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-05 19:52 - 2013-10-05 19:53 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-04 21:20 - 2013-10-04 21:26 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod

==================== One Month Modified Files and Folders =======

2013-10-20 20:29 - 2012-12-31 02:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-20 20:21 - 2013-10-20 20:21 - 00001640 _____ C:\Users\Jasmin\Desktop\JRT.txt
2013-10-20 20:03 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-20 20:03 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 20:00 - 2012-12-31 01:11 - 01405517 _____ C:\Windows\WindowsUpdate.log
2013-10-20 19:56 - 2013-10-10 21:24 - 00001286 _____ C:\Windows\Tasks\Feven 1.5-updater.job
2013-10-20 19:56 - 2013-10-10 21:24 - 00001188 _____ C:\Windows\Tasks\Feven 1.5-codedownloader.job
2013-10-20 19:56 - 2013-10-10 21:24 - 00001088 _____ C:\Windows\Tasks\Feven 1.5-enabler.job
2013-10-20 19:56 - 2013-10-10 21:23 - 00001816 _____ C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job
2013-10-20 19:56 - 2013-06-29 19:11 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-20 19:55 - 2013-10-06 17:30 - 00001624 _____ C:\Windows\setupact.log
2013-10-20 19:55 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-20 19:54 - 2013-10-20 19:34 - 00000000 ____D C:\AdwCleaner
2013-10-20 19:54 - 2013-08-05 11:57 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Common
2013-10-20 19:41 - 2013-10-20 19:40 - 01954548 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:37 - 2013-06-29 19:11 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-20 19:34 - 2013-10-20 19:34 - 01056666 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-20 19:21 - 2013-10-10 23:19 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 18:53 - 2013-10-20 18:52 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:53 - 2013-10-10 23:18 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-20 18:42 - 2013-10-06 17:29 - 00014270 _____ C:\Windows\PFRO.log
2013-10-20 18:24 - 2013-10-20 18:24 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 16:09 - 2013-10-10 22:40 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-20 16:08 - 2012-12-31 15:43 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Skype
2013-10-20 16:08 - 2012-12-31 01:12 - 00000000 ____D C:\Users\Jasmin
2013-10-20 13:18 - 2012-12-31 09:47 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Skype
2013-10-19 20:30 - 2013-10-19 20:30 - 00045528 _____ C:\Users\Jasmin_Arbeit\Downloads\FRST.txt
2013-10-19 20:30 - 2013-10-19 20:30 - 00016233 _____ C:\Users\Jasmin_Arbeit\Downloads\Addition.txt
2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-19 20:19 - 2013-01-18 15:37 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Paint.NET
2013-10-19 13:32 - 2013-06-29 19:11 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-19 13:32 - 2013-06-29 19:11 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-19 13:16 - 2010-11-21 08:22 - 03040104 _____ C:\Windows\system32\perfh007.dat
2013-10-19 13:16 - 2010-11-21 08:22 - 00908822 _____ C:\Windows\system32\perfc007.dat
2013-10-19 13:16 - 2009-07-14 07:13 - 00006324 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-13 13:45 - 2013-10-13 11:37 - 00000637 _____ C:\Windows\wininit.ini
2013-10-13 09:43 - 2013-10-13 09:37 - 189820904 _____ C:\Users\Jasmin_Arbeit\Downloads\EmsisoftEmergencyKit_4.0.0.13.exe
2013-10-13 09:34 - 2013-10-13 09:28 - 201413432 _____ (Emsisoft GmbH                                               ) C:\Users\Jasmin_Arbeit\Downloads\EmsisoftAntiMalwareSetup_8.1.0.19.exe
2013-10-11 06:56 - 2013-10-10 22:40 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-11 04:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 03:34 - 2012-02-23 22:19 - 00000000 ____D C:\Windows\Panther
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 03:32 - 2009-07-14 06:45 - 00431432 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 03:28 - 2012-12-31 02:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 03:12 - 2013-08-24 17:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 03:10 - 2012-02-23 22:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 23:14 - 2012-12-31 09:27 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Adobe
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:13 - 2013-10-10 23:12 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:13 - 2013-01-01 22:13 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Adobe
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-10 22:40 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 22:38 - 2013-10-10 21:55 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:53 - 2013-10-10 21:47 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-10 21:29 - 2012-12-31 02:39 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-10 21:24 - 2013-10-10 21:24 - 00004316 _____ C:\Windows\System32\Tasks\Feven 1.5-updater
2013-10-10 21:24 - 2013-10-10 21:24 - 00004218 _____ C:\Windows\System32\Tasks\Feven 1.5-codedownloader
2013-10-10 21:24 - 2013-10-10 21:24 - 00004118 _____ C:\Windows\System32\Tasks\Feven 1.5-enabler
2013-10-10 21:23 - 2013-06-29 19:11 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Google
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ____D C:\ProgramData\Skype
2013-10-09 21:46 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:08 - 2013-10-09 21:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:07 - 2013-10-09 21:06 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-09 21:07 - 2013-09-18 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-09 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-08 07:50 - 2013-10-20 18:53 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-20 18:53 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-07 03:39 - 2013-10-06 22:02 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:30 - 2013-10-06 17:30 - 00000000 _____ C:\Windows\setuperr.log
2013-10-06 17:27 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2013-10-06 16:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:22 - 2013-10-06 03:31 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 04:12 - 2013-10-06 03:59 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 02:17 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-06 02:10 - 2013-10-06 02:10 - 00003070 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:19 - 2013-10-06 00:18 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:54 - 2013-10-05 21:52 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 21:40 - 2013-10-05 19:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:56 - 2013-10-05 19:54 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:53 - 2013-10-05 19:52 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-05 19:33 - 2012-12-31 01:19 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Mozilla
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 19:32 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-05 10:46 - 2013-01-18 15:33 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2013-10-05 10:46 - 2013-01-18 15:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-10-05 10:45 - 2013-01-18 15:32 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Paint.NET
2013-10-04 21:26 - 2013-10-04 21:20 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 19:44 - 2013-01-02 15:24 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Jasmin_PC
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod
2013-09-23 01:28 - 2013-10-11 03:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-23 01:28 - 2013-10-11 03:24 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-23 01:27 - 2013-10-11 03:23 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-23 00:54 - 2013-10-11 03:24 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-21 05:38 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-21 05:30 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-21 04:48 - 2013-10-11 03:24 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-21 04:39 - 2013-10-11 03:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

Some content of TEMP:
====================
C:\Users\Jasmin\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Jasmin\AppData\Local\Temp\Player_Setup.exe
C:\Users\Jasmin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-11 02:26

==================== End Of Log ============================

--- --- ---

--- --- ---

zum Schluß noch die Addition-log:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-10-2013
Ran by Jasmin at 2013-10-20 20:35:44
Running from C:\Users\Jasmin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 13.2.1)
Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
avast! Free Antivirus (x32 Version: 8.0.1497.0)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.03)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
devolo dLAN Cockpit (x32 Version: 3.2.0.0)
dLAN Cockpit (x32 Version: 3.2.28)
Feven 1.5 (x32 Version: 1.28.153.5)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
HTC Driver Installer (x32 Version: 4.2.0.001)
HTC Sync Manager (x32 Version: 2.0.60.0)
IPTInstaller (x32 Version: 4.0.8)
iTunes (Version: 11.1.1.11)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Marvell Miniport Driver (x32 Version: 10.70.3.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyPhoneExplorer (x32 Version: 1.8.4)
NVIDIA Grafiktreiber 310.70 (Version: 310.70)
NVIDIA HD-Audiotreiber 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 310.70 (Version: 310.70)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Paint.NET v3.5.11 (Version: 3.61.0)
PeaZip 4.9 (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5923)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.9 (x32 Version: 6.9.106)
Spybot - Search & Destroy (x32 Version: 2.1.21)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)

==================== Restore Points  =========================

13-10-2013 11:46:22 S
18-10-2013 21:25:48 Windows Update
20-10-2013 16:52:01 Installed Java 7 Update 45

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-10-06 10:41 - 00000938 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {044567DB-5E9C-46AB-8EF0-AFA3E1E1B357} - System32\Tasks\Feven 1.5-firefoxinstaller => C:\Program Files (x86)\Feven 1.5\Feven 1.5-firefoxinstaller.exe
Task: {0B6125DB-FE18-4544-8424-8556BF75DC83} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {324517B5-22B9-4DC2-9A11-83BDD9980B61} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {3DDFCE8C-7941-429B-86C3-5DFE5FDDAA38} - System32\Tasks\Feven 1.5-codedownloader => C:\Program Files (x86)\Feven 1.5\Feven 1.5-codedownloader.exe
Task: {56CD782B-FE57-4775-B008-2B6BAF5D41CB} - System32\Tasks\{C372C202-8DF0-4FEC-B6A6-10A5052CC0EB} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.3.0.107/de/abandoninstall?page=tsProgressBar
Task: {82835D9D-2511-41B0-B414-0BBE0ABC6DF2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: {98A74AF9-C505-450B-9324-3BF6BAF972E2} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {9A9248D1-C186-43B2-BFB9-CB0525154184} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software)
Task: {A1B673E5-C267-4D14-9607-B98C3C524773} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {B478FD5F-F1E8-4CB8-B250-E089A634CE05} - \DealPlyUpdate No Task File
Task: {BAA4ED61-9345-4E60-8699-2644D26336FE} - System32\Tasks\Feven 1.5-enabler => C:\Program Files (x86)\Feven 1.5\Feven 1.5-enabler.exe
Task: {C1108790-BF97-43A3-92A6-387BA1183A1C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd)
Task: {CC4B8A2A-6824-4874-91B0-735A0D35C3E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E3D4C437-5222-4BAF-8B35-10FBD1671760} - System32\Tasks\Feven 1.5-updater => C:\Program Files (x86)\Feven 1.5\Feven 1.5-updater.exe
Task: {E5B7274A-C89B-4F05-841D-929E3FC6BE32} - System32\Tasks\{8A86079B-86CE-4DFF-949A-B309914A891F} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/abandoninstall?page=tsBing
Task: {E5B74243-AD53-42BF-80FE-63DED14E951A} - \DealPly No Task File
Task: {EEF14090-27D1-4835-AF06-85BBB14661B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-29] (Google Inc.)
Task: {FE53013C-5187-4822-A6CB-95F1D5C17438} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-29] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Feven 1.5-codedownloader.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-codedownloader.exe
Task: C:\Windows\Tasks\Feven 1.5-enabler.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-enabler.exe
Task: C:\Windows\Tasks\Feven 1.5-firefoxinstaller.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-firefoxinstaller.exe
Task: C:\Windows\Tasks\Feven 1.5-updater.job => C:\Program Files (x86)\Feven 1.5\Feven 1.5-updater.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-20 09:05 - 2013-10-20 08:07 - 02105856 _____ () C:\Program Files\AVAST Software\Avast\defs\13102000\algo.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-03 13:44 - 2013-04-03 13:44 - 00030056 _____ () D:\Installationen Jasmin\DbAccess.dll
2013-05-17 12:22 - 2013-05-17 12:22 - 00607376 _____ () D:\Installationen Jasmin\sqlite3.dll
2013-04-03 13:45 - 2013-04-03 13:45 - 00044392 _____ () D:\Installationen Jasmin\NAdvLog.dll
2013-04-03 13:45 - 2013-04-03 13:45 - 00036216 _____ () D:\Installationen Jasmin\NFileCacheDBAccess.dll
2013-04-03 13:46 - 2013-04-03 13:46 - 00080248 _____ () D:\Installationen Jasmin\ninstallerhelper.dll
2013-04-03 13:55 - 2013-04-03 13:55 - 00223592 _____ () D:\Installationen Jasmin\DevConnMon.dll
2013-10-05 19:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-10-05 19:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-10-05 19:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-10-05 19:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2013-10-05 19:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-09 21:07 - 2013-09-11 04:26 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
Description: Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Marvell
Service: yukonw7
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 37%
Total physical RAM: 4090.61 MB
Available physical RAM: 2560.05 MB
Total Pagefile: 8179.4 MB
Available Pagefile: 6412.76 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:144.09 GB) (Free:97.53 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:144 GB) (Free:79.75 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: B079B6F4)
Partition 1: (Not Active) - (Size=10 GB) - (Type=27)
Partition 2: (Active) - (Size=144 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=144 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Das ganze sind für mich spanische Dörfer! Gibt es hier eine Erklärung, was da alles in den Logs aufgezeichnet wird und was da abgeht ? Anwort nur, wenn Du Zeit und Lust hast. Mir ist schon geholfen,wenn ich wieder einen sauberen PC habe.

Gibst Dumir Bescheid,ob ich noch weitere Schritte machen muss ?

Gruß und noch einen schönen Sonntagabend

Jakasi

schrauber · 21.10.2013, 10:59

Wir machen noch nen Onlinescan, dann Reste entfernen:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Jakasi · 22.10.2013, 08:11

Hallo Schrauber,

ich habe mich für meine Tochter in der Sache eingeklinkt, da ich etwas mehr in Sachen EDV bewandert bin. Habe Dir gestern auch die ganzen Log-Files gesendet.
Spielt es eigentlich eine Rolle, ob ich bei den ganzen Aktionen im Adminkonto bin oder im User-Konto ? Habe gestern die Bereinigungen zuerst im Adminkonto vorgenommen und nachdem die ganzen Programme, die Du angegeben hattest, keinen Befall mehr angezeigt haben, bin ich aufs Userkonto gewechselt und habe dort die Programme auch nochmal laufen lassen und siehe da, Malwarebytes hat auf diesem Konto auch wieder Befall Wholokii angezeigt. Ich dachte wenn ich im Adminkonto bereinige, dass dann automatisch auch die Bereinigung im Userkonto stattfindet.

Werde heute Abend den Online-Scaner und SecurityCheck laufen lassen und die Logs dann einstellen. Hoffe der Spuck hat dann für meine Tochter entgültig ein Ende und Sie ihre Ruhe.

Herzliche Grüße

US

so nun dasLog von Eset Online Virenscaner

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=02d97782b887a44dbdaa4f8d9c3ca3a8
# engine=15569
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-21 08:20:26
# local_time=2013-10-21 10:20:26 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 83 85475 159096698 0 0
# compatibility_mode=5893 16776573 100 94 55485 134016676 0 0
# scanned=125435
# found=0
# cleaned=0
# scan_time=18820

Gruß Jakasi

so nun das Logfile von SecurityCheck:

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.74  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Spybot - Search & Destroy 
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Java 7 Update 45  
 Java version out of Date! 
 Adobe Flash Player 11.9.900.117  
 Adobe Reader XI  
 Mozilla Firefox (24.0) 
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Spybot Teatimer.exe is disabled! 
 Malwarebytes' Anti-Malware mbamscheduler.exe   
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

so und nun noch das FRST-Log:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-10-2013
Ran by Jasmin (administrator) on JASMIN-PC on 21-10-2013 22:50:42
Running from C:\Users\Jasmin\Downloads
Windows 7 Enterprise Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Nero AG) D:\Installationen Jasmin\HSMServiceEntry.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() D:\Installationen Jasmin\HTC Sync\adb.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8081952 2009-08-24] (Realtek Semiconductor)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: {30d97edc-52d5-11e2-bc8c-806e6f6e6963} - E:\SETUP.EXE
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3567800 2013-10-20] (AVAST Software)
HKU\Jasmin_Arbeit\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\Jasmin_Arbeit\...\Run: [icq] - C:\Users\Jasmin_Arbeit\AppData\Roaming\ICQM\icq.exe [26934632 2013-02-11] (ICQ)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - URL hxxp://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss_Btisdt7&mntrId=E67C06216383B353&affID=125035&tsp=5027
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=42102&gid=1&dbCode=1&command={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{6B863FAA-0C7B-461D-88C7-C30EE0D3B1C1}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\searchplugins\search_the_web.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ojcdnngpmbenohhjlickdajclhbcaada] - C:\Program Files (x86)\TubeSaver\126.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-20] (AVAST Software)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3128856 2012-02-28] (devolo AG)
R2 HTCMonitorService; D:\Installationen Jasmin\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-10-20] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-20] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2012-01-31] (CACE Technologies)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S3 cleanhlp; \??\C:\Users\Jasmin\Desktop\Run\cleanhlp64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-21 22:49 - 2013-10-21 22:49 - 01954670 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-21 22:30 - 2013-10-21 17:01 - 00891167 _____ C:\Users\Jasmin\Desktop\SecurityCheck.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 02347384 _____ (ESET) C:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 00891167 _____ C:\Users\Jasmin\Downloads\SecurityCheck.exe
2013-10-21 01:48 - 2013-10-21 01:48 - 00000756 _____ C:\Users\Jasmin\Desktop\JRT.txt
2013-10-21 01:09 - 2013-10-21 01:09 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Malwarebytes
2013-10-21 01:06 - 2013-10-21 01:06 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\AVAST Software
2013-10-21 01:00 - 2013-10-21 01:00 - 00000000 ____D C:\Users\Jasmin\Documents\ProcAlyzer Dumps
2013-10-21 00:06 - 2013-10-21 16:53 - 00000168 _____ C:\Windows\setupact.log
2013-10-21 00:06 - 2013-10-21 00:06 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 23:26 - 2013-10-20 23:26 - 04369632 _____ (Piriform Ltd) C:\Users\Jasmin\Downloads\ccsetup406.exe
2013-10-20 23:16 - 2013-10-20 23:16 - 00060844 _____ C:\Users\Jasmin\Downloads\registry_20102013.reg
2013-10-20 21:07 - 2013-10-20 21:07 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\AVAST Software
2013-10-20 20:57 - 2013-10-20 20:57 - 00000000 ____D C:\Users\Jasmin\AppData\Local\GHISLER
2013-10-20 20:55 - 2013-10-20 20:56 - 00000000 ____D C:\totalcmd
2013-10-20 20:55 - 2013-10-20 20:55 - 00000646 _____ C:\Users\Jasmin\Desktop\Total Commander 64 bit.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000632 _____ C:\Users\Jasmin\Desktop\Total Commander.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\GHISLER
2013-10-20 20:54 - 2013-10-20 20:54 - 05896408 _____ (Ghisler Software GmbH) C:\Users\Jasmin\Downloads\tcm801x32_64.exe
2013-10-20 20:35 - 2013-10-20 20:36 - 00014631 _____ C:\Users\Jasmin\Downloads\Addition.txt
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:34 - 2013-10-21 01:27 - 00000000 ____D C:\AdwCleaner
2013-10-20 19:34 - 2013-10-21 01:25 - 01060070 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-20 18:53 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 18:53 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 18:52 - 2013-10-20 18:53 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:24 - 2013-10-20 22:54 - 00002015 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:24 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-19 20:30 - 2013-10-19 20:30 - 00045528 _____ C:\Users\Jasmin_Arbeit\Downloads\FRST.txt
2013-10-19 20:30 - 2013-10-19 20:30 - 00016233 _____ C:\Users\Jasmin_Arbeit\Downloads\Addition.txt
2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-13 11:37 - 2013-10-13 13:45 - 00000637 _____ C:\Windows\wininit.ini
2013-10-11 03:24 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 03:24 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 03:24 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 03:24 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 03:24 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 03:23 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:19 - 2013-10-20 19:21 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:18 - 2013-10-20 18:53 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:12 - 2013-10-10 23:13 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-20 21:03 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-10 22:40 - 2013-10-20 21:03 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:40 - 2013-10-20 21:02 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-10 22:40 - 2013-10-20 21:02 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-10 22:40 - 2013-10-20 20:55 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-10 22:39 - 2013-10-20 21:02 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:55 - 2013-10-20 20:56 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:47 - 2013-10-10 21:53 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 07:18 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:18 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:18 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:18 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 07:18 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 07:18 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:18 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 07:18 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 07:18 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 07:18 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 07:18 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 07:18 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:18 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:18 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:18 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:18 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 07:18 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 07:18 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 07:18 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 07:17 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:17 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:17 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:17 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:07 - 2013-10-09 21:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:06 - 2013-10-09 21:07 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-06 22:02 - 2013-10-07 03:39 - 00000000 ____D C:\Windows\WinClon
2013-10-06 16:20 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-06 16:20 - 2012-08-23 16:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2013-10-06 16:20 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-06 16:20 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-06 16:20 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-06 16:20 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-06 16:20 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-06 16:20 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-06 16:20 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-06 16:20 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-06 16:20 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-06 16:20 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-06 16:20 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-06 16:20 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-06 16:20 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-06 16:20 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-06 16:20 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-06 16:20 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-06 16:19 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-06 16:19 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-06 16:19 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-06 16:19 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-06 16:19 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 11:37 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-06 11:37 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-06 11:37 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-06 11:37 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-06 11:37 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:13 - 2011-10-15 17:39 - 00000000 ____D C:\Users\Jasmin\Downloads\709
2013-10-06 03:59 - 2013-10-06 04:12 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 03:31 - 2013-10-06 04:22 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 02:17 - 2013-10-20 22:34 - 00000000 ____D C:\Windows\kmsem
2013-10-06 02:10 - 2013-10-20 23:48 - 00003072 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:18 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:52 - 2013-10-05 21:54 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 19:55 - 2013-10-21 00:59 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:54 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-05 19:52 - 2013-10-05 19:53 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-04 21:20 - 2013-10-04 21:26 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod

==================== One Month Modified Files and Folders =======

2013-10-21 22:49 - 2013-10-21 22:49 - 01954670 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-21 22:37 - 2012-12-31 01:11 - 01509191 _____ C:\Windows\WindowsUpdate.log
2013-10-21 21:59 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-21 21:59 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-21 17:02 - 2012-12-31 15:43 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Skype
2013-10-21 17:01 - 2013-10-21 22:30 - 00891167 _____ C:\Users\Jasmin\Desktop\SecurityCheck.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 02347384 _____ (ESET) C:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 00891167 _____ C:\Users\Jasmin\Downloads\SecurityCheck.exe
2013-10-21 16:53 - 2013-10-21 00:06 - 00000168 _____ C:\Windows\setupact.log
2013-10-21 16:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-21 01:48 - 2013-10-21 01:48 - 00000756 _____ C:\Users\Jasmin\Desktop\JRT.txt
2013-10-21 01:27 - 2013-10-20 19:34 - 00000000 ____D C:\AdwCleaner
2013-10-21 01:25 - 2013-10-20 19:34 - 01060070 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-21 01:23 - 2010-11-21 08:22 - 03085020 _____ C:\Windows\system32\perfh007.dat
2013-10-21 01:23 - 2010-11-21 08:22 - 00923570 _____ C:\Windows\system32\perfc007.dat
2013-10-21 01:23 - 2009-07-14 07:13 - 00006324 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-21 01:09 - 2013-10-21 01:09 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Malwarebytes
2013-10-21 01:06 - 2013-10-21 01:06 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\AVAST Software
2013-10-21 01:00 - 2013-10-21 01:00 - 00000000 ____D C:\Users\Jasmin\Documents\ProcAlyzer Dumps
2013-10-21 00:59 - 2013-10-05 19:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-21 00:06 - 2013-10-21 00:06 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 00:06 - 2013-06-29 19:11 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-21 00:06 - 2013-06-29 19:11 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-21 00:06 - 2012-12-31 02:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-20 23:48 - 2013-10-06 02:10 - 00003072 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-20 23:48 - 2013-06-30 15:36 - 00002776 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-20 23:48 - 2013-06-29 19:11 - 00004118 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-20 23:48 - 2013-06-29 19:11 - 00003866 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-20 23:47 - 2012-12-31 02:39 - 00003824 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-20 23:39 - 2013-06-30 15:36 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 23:28 - 2013-06-30 15:36 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-20 23:26 - 2013-10-20 23:26 - 04369632 _____ (Piriform Ltd) C:\Users\Jasmin\Downloads\ccsetup406.exe
2013-10-20 23:16 - 2013-10-20 23:16 - 00060844 _____ C:\Users\Jasmin\Downloads\registry_20102013.reg
2013-10-20 23:13 - 2012-02-23 22:19 - 00000000 ____D C:\Windows\Panther
2013-10-20 22:54 - 2013-10-20 18:24 - 00002015 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 22:34 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-20 21:07 - 2013-10-20 21:07 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\AVAST Software
2013-10-20 21:03 - 2013-10-10 22:40 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-20 21:03 - 2013-10-10 22:40 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-20 21:02 - 2013-10-10 22:40 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-20 21:02 - 2013-10-10 22:40 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-20 21:02 - 2013-10-10 22:39 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-20 20:57 - 2013-10-20 20:57 - 00000000 ____D C:\Users\Jasmin\AppData\Local\GHISLER
2013-10-20 20:56 - 2013-10-20 20:55 - 00000000 ____D C:\totalcmd
2013-10-20 20:56 - 2013-10-10 21:55 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-20 20:55 - 2013-10-20 20:55 - 00000646 _____ C:\Users\Jasmin\Desktop\Total Commander 64 bit.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000632 _____ C:\Users\Jasmin\Desktop\Total Commander.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\GHISLER
2013-10-20 20:55 - 2013-10-10 22:40 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-20 20:54 - 2013-10-20 20:54 - 05896408 _____ (Ghisler Software GmbH) C:\Users\Jasmin\Downloads\tcm801x32_64.exe
2013-10-20 20:36 - 2013-10-20 20:35 - 00014631 _____ C:\Users\Jasmin\Downloads\Addition.txt
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:54 - 2013-08-05 11:57 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Common
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:21 - 2013-10-10 23:19 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 18:53 - 2013-10-20 18:52 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:53 - 2013-10-10 23:18 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 16:08 - 2012-12-31 01:12 - 00000000 ____D C:\Users\Jasmin
2013-10-20 13:18 - 2012-12-31 09:47 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Skype
2013-10-19 20:30 - 2013-10-19 20:30 - 00045528 _____ C:\Users\Jasmin_Arbeit\Downloads\FRST.txt
2013-10-19 20:30 - 2013-10-19 20:30 - 00016233 _____ C:\Users\Jasmin_Arbeit\Downloads\Addition.txt
2013-10-19 20:29 - 2013-10-19 20:29 - 00000000 ____D C:\FRST
2013-10-19 20:28 - 2013-10-19 20:28 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64(1).exe
2013-10-19 20:27 - 2013-10-19 20:27 - 01954548 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-19 20:19 - 2013-01-18 15:37 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Paint.NET
2013-10-13 13:45 - 2013-10-13 11:37 - 00000637 _____ C:\Windows\wininit.ini
2013-10-11 04:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 03:32 - 2009-07-14 06:45 - 00431432 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 03:28 - 2012-12-31 02:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 03:12 - 2013-08-24 17:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 03:10 - 2012-02-23 22:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 23:14 - 2012-12-31 09:27 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Adobe
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:13 - 2013-10-10 23:12 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:13 - 2013-01-01 22:13 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Adobe
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:53 - 2013-10-10 21:47 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-10 21:23 - 2013-06-29 19:11 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Google
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ____D C:\ProgramData\Skype
2013-10-09 21:46 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:08 - 2013-10-09 21:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:07 - 2013-10-09 21:06 - 22537616 _____ (Mozilla) C:\Users\Jasmin_Arbeit\Downloads\Firefox_Setup_de24.0.exe
2013-10-09 21:07 - 2013-09-18 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-09 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-08 07:50 - 2013-10-20 18:53 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-20 18:53 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-07 03:39 - 2013-10-06 22:02 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:27 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2013-10-06 16:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:22 - 2013-10-06 03:31 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 04:12 - 2013-10-06 03:59 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:19 - 2013-10-06 00:18 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:54 - 2013-10-05 21:52 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 19:56 - 2013-10-05 19:54 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:53 - 2013-10-05 19:52 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-05 19:33 - 2012-12-31 01:19 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Mozilla
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 19:32 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-05 10:46 - 2013-01-18 15:33 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2013-10-05 10:46 - 2013-01-18 15:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-10-05 10:45 - 2013-01-18 15:32 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Paint.NET
2013-10-04 21:26 - 2013-10-04 21:20 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 19:44 - 2013-01-02 15:24 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Jasmin_PC
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod
2013-09-23 01:28 - 2013-10-11 03:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-23 01:28 - 2013-10-11 03:24 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-23 01:27 - 2013-10-11 03:23 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-23 00:54 - 2013-10-11 03:24 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-09-21 05:38 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-09-21 05:30 - 2013-10-11 03:24 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-09-21 04:48 - 2013-10-11 03:24 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-21 04:39 - 2013-10-11 03:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

Some content of TEMP:
====================
C:\Users\Jasmin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-21 03:38

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

--- --- ---

und das Addition-Log:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-10-2013
Ran by Jasmin at 2013-10-21 22:51:59
Running from C:\Users\Jasmin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 13.2.1)
Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
avast! Free Antivirus (x32 Version: 9.0.2006)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.06)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
devolo dLAN Cockpit (x32 Version: 3.2.0.0)
dLAN Cockpit (x32 Version: 3.2.28)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
HTC Driver Installer (x32 Version: 4.2.0.001)
HTC Sync Manager (x32 Version: 2.0.60.0)
IPTInstaller (x32 Version: 4.0.8)
iTunes (Version: 11.1.1.11)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Marvell Miniport Driver (x32 Version: 10.70.3.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyPhoneExplorer (x32 Version: 1.8.4)
NVIDIA Grafiktreiber 310.70 (Version: 310.70)
NVIDIA HD-Audiotreiber 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 310.70 (Version: 310.70)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Paint.NET v3.5.11 (Version: 3.61.0)
PeaZip 4.9 (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5923)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.9 (x32 Version: 6.9.106)
Spybot - Search & Destroy (x32 Version: 2.1.21)
Total Commander 64-bit (Remove or Repair) (Version: 8.01)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)

==================== Restore Points  =========================

13-10-2013 11:46:22 S
18-10-2013 21:25:48 Windows Update
20-10-2013 16:52:01 Installed Java 7 Update 45
20-10-2013 18:56:31 avast! antivirus system restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-10-06 10:41 - 00000938 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0B6125DB-FE18-4544-8424-8556BF75DC83} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {324517B5-22B9-4DC2-9A11-83BDD9980B61} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {56CD782B-FE57-4775-B008-2B6BAF5D41CB} - System32\Tasks\{C372C202-8DF0-4FEC-B6A6-10A5052CC0EB} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.3.0.107/de/abandoninstall?page=tsProgressBar
Task: {82835D9D-2511-41B0-B414-0BBE0ABC6DF2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: {98A74AF9-C505-450B-9324-3BF6BAF972E2} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {A1B673E5-C267-4D14-9607-B98C3C524773} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {B478FD5F-F1E8-4CB8-B250-E089A634CE05} - \DealPlyUpdate No Task File
Task: {C1108790-BF97-43A3-92A6-387BA1183A1C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {C5C0C9E1-3CA3-45A4-A88A-CB0DA1E9F013} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-10-20] (AVAST Software)
Task: {CC4B8A2A-6824-4874-91B0-735A0D35C3E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E5B7274A-C89B-4F05-841D-929E3FC6BE32} - System32\Tasks\{8A86079B-86CE-4DFF-949A-B309914A891F} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/abandoninstall?page=tsBing
Task: {E5B74243-AD53-42BF-80FE-63DED14E951A} - \DealPly No Task File
Task: {EEF14090-27D1-4835-AF06-85BBB14661B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-29] (Google Inc.)
Task: {FE53013C-5187-4822-A6CB-95F1D5C17438} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-29] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-21 16:58 - 2013-10-21 16:02 - 02136576 _____ () C:\Program Files\AVAST Software\Avast\defs\13102100\algo.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-03 13:44 - 2013-04-03 13:44 - 00030056 _____ () D:\Installationen Jasmin\DbAccess.dll
2013-05-17 12:22 - 2013-05-17 12:22 - 00607376 _____ () D:\Installationen Jasmin\sqlite3.dll
2013-04-03 13:45 - 2013-04-03 13:45 - 00044392 _____ () D:\Installationen Jasmin\NAdvLog.dll
2013-04-03 13:45 - 2013-04-03 13:45 - 00036216 _____ () D:\Installationen Jasmin\NFileCacheDBAccess.dll
2013-04-03 13:46 - 2013-04-03 13:46 - 00080248 _____ () D:\Installationen Jasmin\ninstallerhelper.dll
2013-04-03 13:55 - 2013-04-03 13:55 - 00223592 _____ () D:\Installationen Jasmin\DevConnMon.dll
2013-10-05 19:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-10-05 19:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-10-05 19:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-10-05 19:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2013-10-05 19:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-20 21:01 - 2013-10-20 21:02 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-10-09 21:07 - 2013-09-11 04:26 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Atheros AR5007EG Wireless Network Adapter
Description: Atheros AR5007EG Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/21/2013 10:21:39 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (10/21/2013 10:21:39 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe


==================== Memory info =========================== 

Percentage of memory in use: 49%
Total physical RAM: 4090.61 MB
Available physical RAM: 2058.01 MB
Total Pagefile: 8179.4 MB
Available Pagefile: 5982.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:144.09 GB) (Free:97.24 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:144 GB) (Free:79.75 GB) NTFS
Drive f: (INTENSO) (Removable) (Total:29.66 GB) (Free:29.04 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: B079B6F4)
Partition 1: (Not Active) - (Size=10 GB) - (Type=27)
Partition 2: (Active) - (Size=144 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=144 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 30 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=30 GB) - (Type=0C)

==================== End Of Log ============================

Ist jetzt alles in Ordung ? Gib mir bitte Bescheid,ob ich noch etwas machen muss.
Danke Gruß Jakasi

Guten Morgen Schrauber,

habe Dir gestern die verschiedene Logfiles mit meiner Tochter zugesendet. Später sind wir noch im Userkonto gewesen und dort hatte ich nochmals den ESET Scaner laufen lassen und den Security Check. als ich im Anschluss FRST 64-Bit aufgerufen habe, wurde angezeigt, dass das Programm nicht mehr aktuell sei und ob ich updaten will. Nach bestätigen dieser Abfrage wurde ich auf eine Seite geleitet, die mir suspekt erschien und ich habe den Vorgang abgebrochen. Im Internetexplorer hatte ich nun plötzlich als Suchseite "search to web (softronic)" und auch in den Addons war der Mist neben einem weiteren Eintrag (bing) enthalten. Konnte den Eintrag bei den Suchanbietern unter Addons zwar von Hand deaktivieren, bekomme ihn aber dort nicht gelöscht. Da scheint auf dem PC meiner Tochter doch noch was zu sein, dass nicht hingehört. Auf der Festplatte ist komischerweise neben dem Programmordner "Programme (x86)" noch zweimal ein Ordner Programme, wobei einer mit einem Schloss (geschützt) versehen ist. Das kenne ich vo0n meinen anderen Rechnern so nicht. Müsste Dir ggf. mal einen Screen senden.

Wenn das so weitergeht, werden wir wohl um eine Neuinstallation nicht rumkommen oder siehst Du noch eine Chance, die Kiste clean zu bekommen?

Gruß

US

schrauber · 22.10.2013, 16:49

Und das ist nur im normalen User-Konto?

Bitte mal AdwCleaner dort laufen lassen, aber mit Adminrechten, dann FRST löschen, von meinem Link im ersten Post neu laden und dort scannen lassen, Logfiles posten.

Und ja, nen Screenshot bitte.

Jakasi · 22.10.2013, 21:00

Habe heute in der Mittagspause noch ein wenig gegoogelt. Das mit der doppelten Ansicht hat offensichtlich seine Richtigkeit, wenn ich richtig gelesen habe. Ist scheinbar eine Sache der Einstellung (was soll im Explorer angezeigt werden).

so steht es auf jeden Fall in dem Bericht auf der Seite:

Doppelte Ordner unter Windows 7 - com!-Magazin

Die restlichen Aufgaben werde ich heute oder morgen erledigen und die log-files dann wieder posten.

Schönen Abend.

Gruß

US

hier das Logfile vom User-Benutzerkonto von adaware :

Code:

ATTFilter

# AdwCleaner v3.010 - Bericht erstellt am 22/10/2013 um 21:24:06
# Updated 20/10/2013 von Xplode
# Betriebssystem : Windows 7 Enterprise Service Pack 1 (64 bits)
# Benutzername : Jasmin - JASMIN-PC
# Gestartet von : C:\Users\Jasmin_Arbeit\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Mozilla Firefox v24.0 (de)

[ Datei : C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\prefs.js ]


[ Datei : C:\Users\Jasmin_Arbeit\AppData\Roaming\Mozilla\Firefox\Profiles\q4tlb8bf.default-1381265718815\prefs.js ]


*************************

AdwCleaner[R0].txt - [16511 octets] - [20/10/2013 19:47:25]
AdwCleaner[R1].txt - [1045 octets] - [21/10/2013 01:26:17]
AdwCleaner[R2].txt - [3919 octets] - [21/10/2013 23:24:04]
AdwCleaner[R3].txt - [1289 octets] - [22/10/2013 21:20:12]
AdwCleaner[S0].txt - [15923 octets] - [20/10/2013 19:54:01]
AdwCleaner[S1].txt - [1107 octets] - [21/10/2013 01:27:54]
AdwCleaner[S2].txt - [3986 octets] - [21/10/2013 23:27:06]
AdwCleaner[S3].txt - [1213 octets] - [22/10/2013 21:24:06]

########## EOF - \AdwCleaner\AdwCleaner[S3].txt - [1273 octets] ##########

hier nun das Logfile von FRST aus dem Userkonto (FRST als Admin gestartet):

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-10-2013
Ran by Jasmin (administrator) on JASMIN-PC on 22-10-2013 21:41:28
Running from C:\Users\Jasmin_Arbeit\Desktop
Windows 7 Enterprise Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Nero AG) D:\Installationen Jasmin\HSMServiceEntry.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() D:\Installationen Jasmin\HTC Sync\adb.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8081952 2009-08-24] (Realtek Semiconductor)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKCU\...\RunOnce: [Report] - \AdwCleaner\AdwCleaner[S3].txt [1351 2013-10-22] ()
MountPoints2: {30d97edc-52d5-11e2-bc8c-806e6f6e6963} - E:\SETUP.EXE
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3567800 2013-10-20] (AVAST Software)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{6B863FAA-0C7B-461D-88C7-C30EE0D3B1C1}: [NameServer]192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\searchplugins\search_the_web.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Jasmin\AppData\Roaming\Mozilla\Firefox\Profiles\30bzz6xf.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [ojcdnngpmbenohhjlickdajclhbcaada] - C:\Program Files (x86)\TubeSaver\126.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-20] (AVAST Software)
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [7168 2009-07-14] (Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3128856 2012-02-28] (devolo AG)
R2 HTCMonitorService; D:\Installationen Jasmin\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 msiserver; C:\Windows\SysWow64\msiexec.exe [73216 2010-11-21] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-20] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-10-20] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-20] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 NPF_devolo; C:\Windows\sysWOW64\drivers\npf_devolo.sys [34048 2012-01-31] (CACE Technologies)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
S3 cleanhlp; \??\C:\Users\Jasmin\Desktop\Run\cleanhlp64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-22 21:41 - 2013-10-22 21:41 - 00000000 ____D C:\FRST
2013-10-22 21:40 - 2013-10-22 21:39 - 01954682 _____ (Farbar) C:\Users\Jasmin_Arbeit\Desktop\FRST64.exe
2013-10-22 21:39 - 2013-10-22 21:39 - 01954682 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-22 21:19 - 2013-10-21 01:25 - 01060070 _____ C:\Users\Jasmin_Arbeit\Desktop\adwcleaner.exe
2013-10-21 23:28 - 2013-10-22 21:25 - 00003680 _____ C:\Windows\PFRO.log
2013-10-21 23:28 - 2013-10-22 21:25 - 00000168 _____ C:\Windows\setupact.log
2013-10-21 23:28 - 2013-10-21 23:28 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 23:05 - 2013-10-12 16:56 - 01200440 _____ (Magical Jelly Bean                                          ) C:\Users\Jasmin\Downloads\keyfinderinstaller.exe
2013-10-21 22:49 - 2013-10-21 22:49 - 01954670 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-21 22:30 - 2013-10-21 17:01 - 00891167 _____ C:\Users\Jasmin\Desktop\SecurityCheck.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 02347384 _____ (ESET) C:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 00891167 _____ C:\Users\Jasmin\Downloads\SecurityCheck.exe
2013-10-21 01:09 - 2013-10-21 01:09 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Malwarebytes
2013-10-21 01:06 - 2013-10-21 01:06 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\AVAST Software
2013-10-21 01:00 - 2013-10-21 01:00 - 00000000 ____D C:\Users\Jasmin\Documents\ProcAlyzer Dumps
2013-10-20 23:26 - 2013-10-20 23:26 - 04369632 _____ (Piriform Ltd) C:\Users\Jasmin\Downloads\ccsetup406.exe
2013-10-20 23:16 - 2013-10-20 23:16 - 00060844 _____ C:\Users\Jasmin\Downloads\registry_20102013.reg
2013-10-20 21:07 - 2013-10-20 21:07 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\AVAST Software
2013-10-20 20:57 - 2013-10-20 20:57 - 00000000 ____D C:\Users\Jasmin\AppData\Local\GHISLER
2013-10-20 20:55 - 2013-10-20 20:56 - 00000000 ____D C:\totalcmd
2013-10-20 20:55 - 2013-10-20 20:55 - 00000646 _____ C:\Users\Jasmin\Desktop\Total Commander 64 bit.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000632 _____ C:\Users\Jasmin\Desktop\Total Commander.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\GHISLER
2013-10-20 20:54 - 2013-10-20 20:54 - 05896408 _____ (Ghisler Software GmbH) C:\Users\Jasmin\Downloads\tcm801x32_64.exe
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:34 - 2013-10-22 21:24 - 00000000 ____D C:\AdwCleaner
2013-10-20 19:34 - 2013-10-21 01:25 - 01060070 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-20 18:53 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-20 18:53 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-20 18:53 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-20 18:52 - 2013-10-20 18:53 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:24 - 2013-10-20 22:54 - 00002015 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:24 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-13 11:37 - 2013-10-13 13:45 - 00000637 _____ C:\Windows\wininit.ini
2013-10-11 03:24 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-11 03:24 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-11 03:24 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-11 03:24 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-11 03:24 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-11 03:24 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-11 03:24 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-11 03:24 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-11 03:23 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-10 23:19 - 2013-10-20 19:21 - 00000000 ____D C:\ProgramData\Oracle
2013-10-10 23:18 - 2013-10-20 18:53 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:12 - 2013-10-10 23:13 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:40 - 2013-10-20 21:03 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-10 22:40 - 2013-10-20 21:03 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-10 22:40 - 2013-10-20 21:02 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-10 22:40 - 2013-10-20 21:02 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-10 22:40 - 2013-10-20 21:02 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-10 22:40 - 2013-10-20 20:55 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-10 22:39 - 2013-10-20 21:02 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:55 - 2013-10-20 20:56 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-10 21:47 - 2013-10-10 21:53 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 07:18 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-10 07:18 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-10 07:18 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-10 07:18 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-10 07:18 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-10 07:18 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-10 07:18 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-10 07:18 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-10 07:18 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-10 07:18 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-10 07:18 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-10 07:18 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-10 07:18 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-10 07:18 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-10 07:18 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-10-10 07:18 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-10 07:18 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-10 07:18 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-10 07:18 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-10 07:18 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-10 07:18 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-10 07:18 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-10 07:18 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-10 07:18 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-10 07:18 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-10 07:18 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-10 07:18 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-10 07:18 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-10 07:18 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-10 07:18 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-10 07:18 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-10 07:17 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-10 07:17 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-10 07:17 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-10 07:17 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:07 - 2013-10-09 21:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-06 22:02 - 2013-10-07 03:39 - 00000000 ____D C:\Windows\WinClon
2013-10-06 16:20 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-10-06 16:20 - 2012-08-23 16:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2013-10-06 16:20 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-10-06 16:20 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-10-06 16:20 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-10-06 16:20 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-10-06 16:20 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-10-06 16:20 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-10-06 16:20 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-10-06 16:20 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-10-06 16:20 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-06 16:20 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-10-06 16:20 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-06 16:20 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-10-06 16:20 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-06 16:20 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-10-06 16:20 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-10-06 16:20 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-10-06 16:20 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-10-06 16:20 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-06 16:20 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-06 16:20 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-06 16:20 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-06 16:19 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-06 16:19 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-06 16:19 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-06 16:19 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-06 16:19 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-06 16:19 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 11:37 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-06 11:37 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-06 11:37 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-06 11:37 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-06 11:37 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-06 11:37 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-06 11:37 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:13 - 2011-10-15 17:39 - 00000000 ____D C:\Users\Jasmin\Downloads\709
2013-10-06 03:59 - 2013-10-06 04:12 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 03:31 - 2013-10-06 04:22 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 02:17 - 2013-10-20 22:34 - 00000000 ____D C:\Windows\kmsem
2013-10-06 02:10 - 2013-10-20 23:48 - 00003072 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:18 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:52 - 2013-10-05 21:54 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 19:55 - 2013-10-21 00:59 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:56 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:54 - 2009-01-25 13:14 - 00017272 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-05 19:52 - 2013-10-05 19:53 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-04 21:20 - 2013-10-04 21:26 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:28 - 2013-10-04 09:29 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod

==================== One Month Modified Files and Folders =======

2013-10-22 21:41 - 2013-10-22 21:41 - 00000000 ____D C:\FRST
2013-10-22 21:39 - 2013-10-22 21:40 - 01954682 _____ (Farbar) C:\Users\Jasmin_Arbeit\Desktop\FRST64.exe
2013-10-22 21:39 - 2013-10-22 21:39 - 01954682 _____ (Farbar) C:\Users\Jasmin_Arbeit\Downloads\FRST64.exe
2013-10-22 21:37 - 2012-12-31 01:11 - 01602048 _____ C:\Windows\WindowsUpdate.log
2013-10-22 21:33 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-22 21:33 - 2009-07-14 06:45 - 00017552 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-22 21:25 - 2013-10-21 23:28 - 00003680 _____ C:\Windows\PFRO.log
2013-10-22 21:25 - 2013-10-21 23:28 - 00000168 _____ C:\Windows\setupact.log
2013-10-22 21:25 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-22 21:24 - 2013-10-20 19:34 - 00000000 ____D C:\AdwCleaner
2013-10-21 23:28 - 2013-10-21 23:28 - 00000000 _____ C:\Windows\setuperr.log
2013-10-21 22:49 - 2013-10-21 22:49 - 01954670 _____ (Farbar) C:\Users\Jasmin\Downloads\FRST64.exe
2013-10-21 17:02 - 2012-12-31 15:43 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Skype
2013-10-21 17:01 - 2013-10-21 22:30 - 00891167 _____ C:\Users\Jasmin\Desktop\SecurityCheck.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 02347384 _____ (ESET) C:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe
2013-10-21 17:01 - 2013-10-21 17:01 - 00891167 _____ C:\Users\Jasmin\Downloads\SecurityCheck.exe
2013-10-21 01:25 - 2013-10-22 21:19 - 01060070 _____ C:\Users\Jasmin_Arbeit\Desktop\adwcleaner.exe
2013-10-21 01:25 - 2013-10-20 19:34 - 01060070 _____ C:\Users\Jasmin\Downloads\adwcleaner.exe
2013-10-21 01:23 - 2010-11-21 08:22 - 03085020 _____ C:\Windows\system32\perfh007.dat
2013-10-21 01:23 - 2010-11-21 08:22 - 00923570 _____ C:\Windows\system32\perfc007.dat
2013-10-21 01:23 - 2009-07-14 07:13 - 00006324 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-21 01:09 - 2013-10-21 01:09 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Malwarebytes
2013-10-21 01:06 - 2013-10-21 01:06 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\AVAST Software
2013-10-21 01:00 - 2013-10-21 01:00 - 00000000 ____D C:\Users\Jasmin\Documents\ProcAlyzer Dumps
2013-10-21 00:59 - 2013-10-05 19:55 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-21 00:06 - 2013-06-29 19:11 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-21 00:06 - 2013-06-29 19:11 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-21 00:06 - 2012-12-31 02:39 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-10-20 23:48 - 2013-10-06 02:10 - 00003072 _____ C:\Windows\System32\Tasks\{FE1790F7-D408-4E98-A144-E5479E1F9582}
2013-10-20 23:48 - 2013-06-30 15:36 - 00002776 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-20 23:48 - 2013-06-29 19:11 - 00004118 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-20 23:48 - 2013-06-29 19:11 - 00003866 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-20 23:47 - 2012-12-31 02:39 - 00003824 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-10-20 23:39 - 2013-06-30 15:36 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 23:28 - 2013-06-30 15:36 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-20 23:26 - 2013-10-20 23:26 - 04369632 _____ (Piriform Ltd) C:\Users\Jasmin\Downloads\ccsetup406.exe
2013-10-20 23:16 - 2013-10-20 23:16 - 00060844 _____ C:\Users\Jasmin\Downloads\registry_20102013.reg
2013-10-20 23:13 - 2012-02-23 22:19 - 00000000 ____D C:\Windows\Panther
2013-10-20 22:54 - 2013-10-20 18:24 - 00002015 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-20 22:34 - 2013-10-06 02:17 - 00000000 ____D C:\Windows\kmsem
2013-10-20 21:07 - 2013-10-20 21:07 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\AVAST Software
2013-10-20 21:03 - 2013-10-10 22:40 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-10-20 21:03 - 2013-10-10 22:40 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-10-20 21:02 - 2013-10-10 22:40 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-10-20 21:02 - 2013-10-10 22:40 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-10-20 21:02 - 2013-10-10 22:40 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-10-20 21:02 - 2013-10-10 22:39 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-10-20 20:57 - 2013-10-20 20:57 - 00000000 ____D C:\Users\Jasmin\AppData\Local\GHISLER
2013-10-20 20:56 - 2013-10-20 20:55 - 00000000 ____D C:\totalcmd
2013-10-20 20:56 - 2013-10-10 21:55 - 00000000 ____D C:\ProgramData\AVAST Software
2013-10-20 20:55 - 2013-10-20 20:55 - 00000646 _____ C:\Users\Jasmin\Desktop\Total Commander 64 bit.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000632 _____ C:\Users\Jasmin\Desktop\Total Commander.lnk
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2013-10-20 20:55 - 2013-10-20 20:55 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\GHISLER
2013-10-20 20:55 - 2013-10-10 22:40 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-10-20 20:54 - 2013-10-20 20:54 - 05896408 _____ (Ghisler Software GmbH) C:\Users\Jasmin\Downloads\tcm801x32_64.exe
2013-10-20 20:01 - 2013-10-20 20:01 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 19:54 - 2013-08-05 11:57 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Common
2013-10-20 19:39 - 2013-10-20 19:39 - 01033335 _____ (Thisisu) C:\Users\Jasmin\Downloads\JRT.exe
2013-10-20 19:21 - 2013-10-10 23:19 - 00000000 ____D C:\ProgramData\Oracle
2013-10-20 18:53 - 2013-10-20 18:52 - 00004278 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-20 18:53 - 2013-10-10 23:18 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 18:24 - 2013-10-20 18:24 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 18:23 - 2013-10-20 18:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Jasmin\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 16:08 - 2012-12-31 01:12 - 00000000 ____D C:\Users\Jasmin
2013-10-20 13:18 - 2012-12-31 09:47 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Skype
2013-10-19 20:19 - 2013-01-18 15:37 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Paint.NET
2013-10-13 13:45 - 2013-10-13 11:37 - 00000637 _____ C:\Windows\wininit.ini
2013-10-12 16:56 - 2013-10-21 23:05 - 01200440 _____ (Magical Jelly Bean                                          ) C:\Users\Jasmin\Downloads\keyfinderinstaller.exe
2013-10-11 04:34 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-11 03:32 - 2013-09-13 22:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-11 03:32 - 2009-07-14 06:45 - 00431432 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-11 03:28 - 2012-12-31 02:52 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-11 03:12 - 2013-08-24 17:12 - 00000000 ____D C:\Windows\system32\MRT
2013-10-11 03:10 - 2012-02-23 22:44 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-10 23:14 - 2012-12-31 09:27 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Roaming\Adobe
2013-10-10 23:13 - 2013-10-10 23:13 - 00913832 _____ (Oracle Corporation) C:\Users\Jasmin_Arbeit\Downloads\jxpiinstall.exe
2013-10-10 23:13 - 2013-10-10 23:12 - 08833540 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller(1).exe.part
2013-10-10 23:13 - 2013-01-01 22:13 - 00000000 ____D C:\Users\Jasmin_Arbeit\AppData\Local\Adobe
2013-10-10 23:10 - 2013-10-10 23:10 - 18080872 _____ (Adobe Systems Inc.) C:\Users\Jasmin_Arbeit\Downloads\AdobeAIRInstaller.exe
2013-10-10 22:38 - 2013-10-10 22:38 - 00000000 ____D C:\Program Files\AVAST Software
2013-10-10 21:53 - 2013-10-10 21:47 - 131918888 _____ C:\Users\Jasmin_Arbeit\Downloads\avast_free_antivirus_setup.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-10 21:29 - 2012-12-31 02:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-10 21:23 - 2013-06-29 19:11 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Google
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-10 21:16 - 2012-12-31 09:47 - 00000000 ____D C:\ProgramData\Skype
2013-10-09 21:46 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-09 21:08 - 2013-10-09 21:08 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-10-09 21:08 - 2013-10-09 21:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-10-09 21:07 - 2013-09-18 22:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-09 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-08 07:50 - 2013-10-20 18:53 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-20 18:53 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-20 18:53 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-07 03:39 - 2013-10-06 22:02 - 00000000 ____D C:\Windows\WinClon
2013-10-06 17:27 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini
2013-10-06 16:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-06 14:28 - 2013-10-06 14:28 - 00006306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-06 12:27 - 2013-10-06 12:27 - 00054410 _____ C:\Users\Jasmin\Downloads\cc_20131006_122715.reg
2013-10-06 11:41 - 2013-10-06 11:41 - 13309984 _____ (Microsoft Corporation) C:\Users\Jasmin\Downloads\NDP40-KB2742595-x64.exe
2013-10-06 10:37 - 2013-10-06 10:37 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{08ca8914-754a-4fe8-aec1-9aba5fb34d0b}
2013-10-06 10:35 - 2013-10-06 10:35 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{c8a5fe9a-53f5-4190-8ca8-1a1d0fba87ac}
2013-10-06 04:46 - 2013-10-06 04:46 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{88801e50-2c3d-4948-b851-798792aabee6}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{efe09128-4e7a-49e3-8b3a-64c5c55dce7e}
2013-10-06 04:44 - 2013-10-06 04:44 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\{687f03cf-2e70-4bef-a04c-8bd6b1188b71}
2013-10-06 04:22 - 2013-10-06 03:31 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-10-06 04:12 - 2013-10-06 03:59 - 10698751 _____ C:\Users\Jasmin\Downloads\709.rar
2013-10-06 03:42 - 2013-10-06 03:42 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\WinRAR
2013-10-06 00:19 - 2013-10-06 00:19 - 00000000 ____D C:\ProgramData\SummerSoft
2013-10-06 00:19 - 2013-10-06 00:18 - 00000000 ____D C:\ProgramData\InstallMate
2013-10-05 23:28 - 2013-10-05 23:28 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2013-10-05 21:54 - 2013-10-05 21:52 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\PeaZip
2013-10-05 19:56 - 2013-10-05 19:54 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-05 19:55 - 2013-10-05 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2013-10-05 19:54 - 2013-10-05 19:54 - 00001379 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-05 19:53 - 2013-10-05 19:52 - 37672592 _____ (Safer-Networking Ltd.                                       ) C:\Users\Jasmin\Downloads\spybotsd-2.1.21-SR2.exe
2013-10-05 19:33 - 2013-10-05 19:33 - 00000000 ____D C:\Users\Jasmin\AppData\Roaming\Snz
2013-10-05 19:33 - 2012-12-31 01:19 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Mozilla
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-05 19:32 - 2012-12-31 01:12 - 00000000 ___RD C:\Users\Jasmin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-05 19:32 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-10-05 10:46 - 2013-01-18 15:33 - 00001288 _____ C:\Users\Public\Desktop\Paint.NET.lnk
2013-10-05 10:46 - 2013-01-18 15:32 - 00000000 ____D C:\Program Files\Paint.NET
2013-10-05 10:45 - 2013-01-18 15:32 - 00000000 ____D C:\Users\Jasmin\AppData\Local\Paint.NET
2013-10-04 21:26 - 2013-10-04 21:20 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Mixtape
2013-10-04 19:44 - 2013-01-02 15:24 - 00000000 ____D C:\Users\Jasmin_Arbeit\Desktop\Jasmin_PC
2013-10-04 09:29 - 2013-10-04 09:29 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 09:29 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-10-04 09:28 - 2013-10-04 09:28 - 00000000 ____D C:\Program Files\iPod
2013-09-23 01:28 - 2013-10-11 03:24 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-09-23 01:28 - 2013-10-11 03:24 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-09-23 01:27 - 2013-10-11 03:24 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-09-23 01:27 - 2013-10-11 03:23 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-09-23 00:55 - 2013-10-11 03:24 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-09-23 00:54 - 2013-10-11 03:24 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-09-23 00:54 - 2013-10-11 03:24 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

Some content of TEMP:
====================
C:\Users\Jasmin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-21 03:38

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

hier nun das Logfile von Addition aus dem Userkonto (FRST als Admin gestartet):

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-10-2013
Ran by Jasmin at 2013-10-22 21:42:48
Running from C:\Users\Jasmin_Arbeit\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 13.2.1)
Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
avast! Free Antivirus (x32 Version: 9.0.2006)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.06)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
devolo dLAN Cockpit (x32 Version: 3.2.0.0)
dLAN Cockpit (x32 Version: 3.2.28)
Google Earth Plug-in (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.165)
HTC Driver Installer (x32 Version: 4.2.0.001)
HTC Sync Manager (x32 Version: 2.0.60.0)
IPTInstaller (x32 Version: 4.0.8)
iTunes (Version: 11.1.1.11)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Marvell Miniport Driver (x32 Version: 10.70.3.3)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyPhoneExplorer (x32 Version: 1.8.4)
NVIDIA Grafiktreiber 310.70 (Version: 310.70)
NVIDIA HD-Audiotreiber 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.95.599)
NVIDIA PhysX (x32 Version: 9.12.1031)
NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)
NVIDIA Systemsteuerung 310.70 (Version: 310.70)
NVIDIA Update 1.11.3 (Version: 1.11.3)
NVIDIA Update Components (Version: 1.11.3)
Paint.NET v3.5.11 (Version: 3.61.0)
PeaZip 4.9 (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.5923)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Skype Click to Call (x32 Version: 6.3.11079)
Skype™ 6.9 (x32 Version: 6.9.106)
Spybot - Search & Destroy (x32 Version: 2.1.21)
Total Commander 64-bit (Remove or Repair) (Version: 8.01)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)

==================== Restore Points  =========================

13-10-2013 11:46:22 S
18-10-2013 21:25:48 Windows Update
20-10-2013 16:52:01 Installed Java 7 Update 45
20-10-2013 18:56:31 avast! antivirus system restore point
22-10-2013 19:36:06 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2013-10-06 10:41 - 00000938 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0B6125DB-FE18-4544-8424-8556BF75DC83} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {324517B5-22B9-4DC2-9A11-83BDD9980B61} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {56CD782B-FE57-4775-B008-2B6BAF5D41CB} - System32\Tasks\{C372C202-8DF0-4FEC-B6A6-10A5052CC0EB} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.3.0.107/de/abandoninstall?page=tsProgressBar
Task: {82835D9D-2511-41B0-B414-0BBE0ABC6DF2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: {98A74AF9-C505-450B-9324-3BF6BAF972E2} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {A1B673E5-C267-4D14-9607-B98C3C524773} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {B478FD5F-F1E8-4CB8-B250-E089A634CE05} - \DealPlyUpdate No Task File
Task: {C1108790-BF97-43A3-92A6-387BA1183A1C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {C5C0C9E1-3CA3-45A4-A88A-CB0DA1E9F013} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-10-20] (AVAST Software)
Task: {CC4B8A2A-6824-4874-91B0-735A0D35C3E9} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E5B7274A-C89B-4F05-841D-929E3FC6BE32} - System32\Tasks\{8A86079B-86CE-4DFF-949A-B309914A891F} => Firefox.exe hxxp://ui.skype.com/ui/0/6.6.0.106/de/abandoninstall?page=tsBing
Task: {E5B74243-AD53-42BF-80FE-63DED14E951A} - \DealPly No Task File
Task: {EEF14090-27D1-4835-AF06-85BBB14661B6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-29] (Google Inc.)
Task: {FE53013C-5187-4822-A6CB-95F1D5C17438} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-29] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-22 21:35 - 2013-10-22 19:45 - 02136576 _____ () C:\Program Files\AVAST Software\Avast\defs\13102201\algo.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-11-28 15:13 - 2012-11-28 15:13 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-03 13:44 - 2013-04-03 13:44 - 00030056 _____ () D:\Installationen Jasmin\DbAccess.dll
2013-05-17 12:22 - 2013-05-17 12:22 - 00607376 _____ () D:\Installationen Jasmin\sqlite3.dll
2013-04-03 13:45 - 2013-04-03 13:45 - 00044392 _____ () D:\Installationen Jasmin\NAdvLog.dll
2013-04-03 13:45 - 2013-04-03 13:45 - 00036216 _____ () D:\Installationen Jasmin\NFileCacheDBAccess.dll
2013-04-03 13:46 - 2013-04-03 13:46 - 00080248 _____ () D:\Installationen Jasmin\ninstallerhelper.dll
2013-04-03 13:55 - 2013-04-03 13:55 - 00223592 _____ () D:\Installationen Jasmin\DevConnMon.dll
2013-10-05 19:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-10-05 19:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-10-05 19:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-10-05 19:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2013-10-05 19:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-10-20 21:01 - 2013-10-20 21:02 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-10-09 21:07 - 2013-09-11 04:26 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-10 21:29 - 2013-10-10 21:29 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Atheros AR5007EG Wireless Network Adapter
Description: Atheros AR5007EG Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/22/2013 09:26:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/22/2013 09:17:01 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: DUI70.dll, Version: 6.1.7600.16385, Zeitstempel: 0x4a5bdf25
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000335f
ID des fehlerhaften Prozesses: 0x50c
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3

Error: (10/22/2013 09:09:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/22/2013 00:11:26 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/22/2013 00:00:48 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/22/2013 00:00:41 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/22/2013 00:00:41 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/21/2013 11:58:46 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/21/2013 11:58:39 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/21/2013 11:58:39 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (10/22/2013 09:26:04 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/22/2013 09:17:01 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4DUI70.dll6.1.7600.163854a5bdf25c0000005000000000000335f50c01cecf5a00aa660cC:\Windows\Explorer.EXEC:\Windows\system32\DUI70.dll86b7dce5-3b4e-11e3-b5fd-001377ac5cf6

Error: (10/22/2013 09:09:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/22/2013 00:11:26 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (10/22/2013 00:00:48 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe

Error: (10/22/2013 00:00:41 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe

Error: (10/22/2013 00:00:41 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe

Error: (10/21/2013 11:58:46 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe

Error: (10/21/2013 11:58:39 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe

Error: (10/21/2013 11:58:39 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Jasmin\Downloads\esetsmartinstaller_enu.exe


==================== Memory info =========================== 

Percentage of memory in use: 40%
Total physical RAM: 4090.61 MB
Available physical RAM: 2431.92 MB
Total Pagefile: 8179.4 MB
Available Pagefile: 6243.45 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:144.09 GB) (Free:96.95 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:144 GB) (Free:79.75 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: B079B6F4)
Partition 1: (Not Active) - (Size=10 GB) - (Type=27)
Partition 2: (Active) - (Size=144 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=144 GB) - (Type=07 NTFS)

==================== End Of Log ============================

hier noch eine Hardcopy des Bildschirms mit den doppelten Ordner wie heute Mittag beschrieben (schein ja so in Ordnung zu sein, wie ich Dir geschrieben habe). Gibst Du mir wieder Bescheid, was ich noch tun muss? Gruß US

schrauber · 23.10.2013, 12:56

Wenn es keine Probleme mehr gibt, dann:

Fertig

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Jakasi · 24.10.2013, 16:41

Hallo Schrauber,

habe ich dies richtig verstanden ?

Die Programme Defogger und Combofix hatte ich nie angewendet, da Du mich nicht dazu aufgefordert hast. Somit brauche ich auch dahingehend kein uninstall.

Somit müsste ich nur noch das DeFix ausführen und somit wäre alles wieder ok stimmt ?

Gruß

US

schrauber · 25.10.2013, 09:51

genau

Jakasi · 26.10.2013, 08:49

alles erledigt. Jetzt hoffe ich dass meine Tochter Ruhe hat.
Vielen Dank für die unkomplizierte Hilfe. Darf ich mich nochmal melden,wenn es weitere oder wieder Probleme gibt ?

Gruß

US

schrauber · 26.10.2013, 13:22

Klar

Gern Geschehen

25.10.2013, 09:51	#13
schrauber /// the machine /// TB-Ausbilder	Whilokii Virus genau __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

26.10.2013, 13:22	#15
schrauber /// the machine /// TB-Ausbilder	Whilokii Virus Klar Gern Geschehen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Whilokii Virus

Log-Analyse und Auswertung: Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Whilokii Virus

Ähnliche Themen: Whilokii Virus

24.10.2013, 16:41	#12
Jakasi	Whilokii Virus Hallo Schrauber, habe ich dies richtig verstanden ? Die Programme Defogger und Combofix hatte ich nie angewendet, da Du mich nicht dazu aufgefordert hast. Somit brauche ich auch dahingehend kein uninstall. Somit müsste ich nur noch das DeFix ausführen und somit wäre alles wieder ok stimmt ? Gruß US

26.10.2013, 08:49	#14
Jakasi	Whilokii Virus alles erledigt. Jetzt hoffe ich dass meine Tochter Ruhe hat. Vielen Dank für die unkomplizierte Hilfe. Darf ich mich nochmal melden,wenn es weitere oder wieder Probleme gibt ? Gruß US