Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Windows 7: Trojaner - ClickCompare

Windows 7: Trojaner - ClickCompare


Plagegeister aller Art und deren Bekämpfung: Windows 7: Trojaner - ClickCompare

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 3 von 4 12 3 4
Alt 17.11.2013, 06:44   #31
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Recycler ist der Papoerkorb, der ist auf jedem Laufwerk. Finger weg davon. Systemsteuerung > Ordneroptionen > Ansicht > Versteckte Ordner ausblenden aktivieren
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.11.2013, 18:16   #32
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Das ist bereits aktiviert und ich hatte da ja auch nicht's verändert. Ich sehe das erst seit der Behandlung mit den Virenprogrammen.
__________________
Alt 18.11.2013, 09:49   #33
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Du siehst die Ordner Recycler obwohl du versteckte Dateien nicht anzeigen lässt?
Diese Ansicht wird von unsern Tools automatisch auf alles anzeigen geändert.

Screenshot bitte von den Ordnern und von der Einstellung in den Ordneroptionen.
__________________
__________________
Alt 18.11.2013, 15:40   #34
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare
Alt 19.11.2013, 10:15   #35
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Meine Frage? Bitte schick mir ne PM heut abend, auf Arbeit seh ich den Screenshot nicht sondern nur ne leere Antwort.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 19.11.2013, 19:43   #36
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Zitat:
Du siehst die Ordner Recycler obwohl du versteckte Dateien nicht anzeigen lässt?
Genau so ist es
Siehe Screenshot.

Alt 20.11.2013, 12:32   #37
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Du solltest mir eigentlich ne PM schicken

in meinem Kontrollzentrum stehen 140 Threads, da verliert man schnell den Überblick
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.11.2013, 12:38   #38
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Oh, pardon

Aber ist ja trotzdem alles nochmal gut gegangen

Alt 21.11.2013, 09:30   #39
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Lösch die Ordner bitte mal und reboote.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 21.11.2013, 14:04   #40
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Löschen aufgrund der genannten Fehlermeldungen nicht möglich.

Zitat:
1. Deren Ordner enthält Elemente die für den Papierkorb zu lang sind, endgültig löschen?

Wenn ich auf ja klicke kommt:

2. Das System kann den angegeben Pfad nicht finden. Folder_842925246

Alt 22.11.2013, 10:43   #41
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Poste mal bitte ein frisches FRST logfile.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 22.11.2013, 16:23   #42
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-11-2013
Ran by Daniel (administrator) on DANIEL-PC on 22-11-2013 16:20:52
Running from C:\Users\Daniel\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\FSGK32.EXE
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Device Control\fsdevcon64.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Common\FSHDLL32.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\PSIA.exe
(LULU Software) C:\Program Files (x86)\Soda PDF 5\HelperService.exe
(LULU Software) C:\Program Files (x86)\Soda PDF 5\ConversionService.exe
(Softwareentwicklung Remus - ArchiCrypt) C:\Windows\SysWOW64\STGRAMDiskHandler64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
() C:\Program Files\USBLogon\usblonsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Common\FSHDLL64.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\ORSP Client\fsorsp.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Common\FIH32.EXE
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fssm32.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\Anti-Virus\fsav32.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\RocketDock\RocketDock.exe
(AVM Berlin) C:\Program Files (x86)\avmwlanstick\WLanGUI.exe
(F-Secure Corporation) C:\Program Files (x86)\F-Secure\common\FSM32.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(PC-Doctor, Inc.) C:\Program Files\My Dell\uaclauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RunDLLEntry_THXCfg] - C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RunDLLEntry_EptMon] - C:\Windows\system32\RunDLL32.exe C:\Windows\system32\EptMon64.dll,RunDLLEntry EptMon64
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
HKCU\...\Run: [RocketDock] - C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] ()
HKCU\...\Policies\system: [DisableClock] 0
HKCU\...\Policies\system: [DisableLockWorkstation] 0
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKLM-x32\...\Run: [THX Audio Control Panel] - C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [AVMWlanClient] - C:\Program Files (x86)\avmwlanstick\WLanGUI.exe [1454080 2006-12-28] (AVM Berlin)
HKLM-x32\...\Run: [F-Secure Manager] - C:\Program Files (x86)\F-Secure\common\FSM32.EXE [306928 2012-06-26] (F-Secure Corporation)
HKLM-x32\...\Run: [F-Secure TNB] - C:\Program Files (x86)\F-Secure\FSGUI\tnbutil.exe [1654512 2012-06-26] (F-Secure Corporation)
HKU\Gastkonto\...\Policies\system: [DisableLockWorkstation] 0
HKU\Gastkonto\...\Policies\system: [DisableClock] 0
HKU\Gastkonto\...\Policies\system: [LogonHoursAction] 2
HKU\Gastkonto\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
AppInit_DLLs:  [ ] ()
Startup: C:\ProgramData\.zreglib ()
Startup: C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 ()
Startup: C:\ProgramData\Adobe ()
Startup: C:\ProgramData\Advanced Chemistry Development ()
Startup: C:\ProgramData\Anwendungsdaten ()
Startup: C:\ProgramData\Apple ()
Startup: C:\ProgramData\Apple Computer ()
Startup: C:\ProgramData\Application Data ()
Startup: C:\ProgramData\ashampoo ()
Startup: C:\ProgramData\ASUS ()
Startup: C:\ProgramData\Avery ()
Startup: C:\ProgramData\AVS4YOU ()
Startup: C:\ProgramData\BVRP Software ()
Startup: C:\ProgramData\Canneverbe Limited ()
Startup: C:\ProgramData\Caphyon ()
Startup: C:\ProgramData\Citrix ()
Startup: C:\ProgramData\Common Files ()
Startup: C:\ProgramData\Creative ()
Startup: C:\ProgramData\CyberLink ()
Startup: C:\ProgramData\DATA BECKER Downloads ()
Startup: C:\ProgramData\Dell ()
Startup: C:\ProgramData\Desktop ()
Startup: C:\ProgramData\Device ()
Startup: C:\ProgramData\Documents ()
Startup: C:\ProgramData\Dokumente ()
Startup: C:\ProgramData\EA Core ()
Startup: C:\ProgramData\Electronic Arts ()
Startup: C:\ProgramData\Engelmann Media ()
Startup: C:\ProgramData\EPSON ()
Startup: C:\ProgramData\EXPLAUNCHER ()
Startup: C:\ProgramData\F-Secure ()
Startup: C:\ProgramData\F-Secure uninstallationtool ()
Startup: C:\ProgramData\Favoriten ()
Startup: C:\ProgramData\Favorites ()
Startup: C:\ProgramData\FLEXnet ()
Startup: C:\ProgramData\Folderico ()
Startup: C:\ProgramData\fssg ()
Startup: C:\ProgramData\Google ()
Startup: C:\ProgramData\InstallMate ()
Startup: C:\ProgramData\InstallShield ()
Startup: C:\ProgramData\iolo ()
Startup: C:\ProgramData\Langenscheidt ()
Startup: C:\ProgramData\launcher ()
Startup: C:\ProgramData\Licenses ()
Startup: C:\ProgramData\MAGIX ()
Startup: C:\ProgramData\Malwarebytes ()
Startup: C:\ProgramData\Microsoft ()
Startup: C:\ProgramData\Microsoft Help ()
Startup: C:\ProgramData\Mozilla ()
Startup: C:\ProgramData\Nero ()
Startup: C:\ProgramData\Nokia ()
Startup: C:\ProgramData\NokiaInstallerCache ()
Startup: C:\ProgramData\NVIDIA ()
Startup: C:\ProgramData\NVIDIA Corporation ()
Startup: C:\ProgramData\Oracle ()
Startup: C:\ProgramData\Origin ()
Startup: C:\ProgramData\PC Suite ()
Startup: C:\ProgramData\PC-Doctor for Windows ()
Startup: C:\ProgramData\PCDr ()
Startup: C:\ProgramData\PCPitstop ()
Startup: C:\ProgramData\POP3Profiles ()
Startup: C:\ProgramData\POPWWPROFILES ()
Startup: C:\ProgramData\Publish Data ()
Startup: C:\ProgramData\RapidSolution ()
Startup: C:\ProgramData\Raxco ()
Startup: C:\ProgramData\regid.1986-12.com.adobe ()
Startup: C:\ProgramData\Roxio ()
Startup: C:\ProgramData\Samsung ()
Startup: C:\ProgramData\SecTaskMan ()
Startup: C:\ProgramData\Skype ()
Startup: C:\ProgramData\SlySoft ()
Startup: C:\ProgramData\soft Xpansion ()
Startup: C:\ProgramData\Solidshield ()
Startup: C:\ProgramData\Sonic ()
Startup: C:\ProgramData\Sony Ericsson ()
Startup: C:\ProgramData\Start Menu ()
Startup: C:\ProgramData\Startmenü ()
Startup: C:\ProgramData\Sun ()
Startup: C:\ProgramData\Sydatec ()
Startup: C:\ProgramData\TeamDrive ()
Startup: C:\ProgramData\TechSmith ()
Startup: C:\ProgramData\TEMP ()
Startup: C:\ProgramData\Templates ()
Startup: C:\ProgramData\Test Drive Unlimited ()
Startup: C:\ProgramData\TrackMania ()
Startup: C:\ProgramData\TuneUp Software ()
Startup: C:\ProgramData\Uninstall ()
Startup: C:\ProgramData\USBLogon ()
Startup: C:\ProgramData\Vorlagen ()
Startup: C:\ProgramData\VS Revo Group ()
Startup: C:\ProgramData\Z-Software ()
Startup: C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} ()
Startup: C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936} ()
Startup: C:\ProgramData\{68AAD244-0F3A-4B81-8F06-916C1F5599BD} ()
Startup: C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} ()
Startup: C:\ProgramData\{D19C2D22-6043-47E7-B400-83A351841204} ()
Startup: C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} ()
Startup: C:\Users\Daniel\.borland ()
Startup: C:\Users\Daniel\.gimp-2.6 ()
Startup: C:\Users\Daniel\.gimp-2.8 ()
Startup: C:\Users\Daniel\.mediathek ()
Startup: C:\Users\Daniel\.thumbnails ()
Startup: C:\Users\Daniel\.VirtualBox ()
Startup: C:\Users\Daniel\Anwendungsdaten ()
Startup: C:\Users\Daniel\AppData ()
Startup: C:\Users\Daniel\Application Data ()
Startup: C:\Users\Daniel\AVM_Driver ()
Startup: C:\Users\Daniel\Contacts ()
Startup: C:\Users\Daniel\Cookies ()
Startup: C:\Users\Daniel\Desktop ()
Startup: C:\Users\Daniel\Documents ()
Startup: C:\Users\Daniel\Downloads ()
Startup: C:\Users\Daniel\Dropbox ()
Startup: C:\Users\Daniel\Druckumgebung ()
Startup: C:\Users\Daniel\Eigene Dateien ()
Startup: C:\Users\Daniel\Favorites ()
Startup: C:\Users\Daniel\InstallAnywhere ()
Startup: C:\Users\Daniel\Links ()
Startup: C:\Users\Daniel\Lokale Einstellungen ()
Startup: C:\Users\Daniel\Music ()
Startup: C:\Users\Daniel\Netzwerkumgebung ()
Startup: C:\Users\Daniel\ntuser.dat ()
Startup: C:\Users\Daniel\ntuser.dat.LOG1 ()
Startup: C:\Users\Daniel\ntuser.dat.LOG2 ()
Startup: C:\Users\Daniel\NTUSER.DAT_tureg_new.LOG1 ()
Startup: C:\Users\Daniel\NTUSER.DAT_tureg_new.LOG2 ()
Startup: C:\Users\Daniel\NTUSER.DAT_tureg_old ()
Startup: C:\Users\Daniel\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
Startup: C:\Users\Daniel\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{400f5122-410e-11e0-ae81-806e6f6e6963}.TM.blf ()
Startup: C:\Users\Daniel\NTUSER.DAT{400f5122-410e-11e0-ae81-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{400f5122-410e-11e0-ae81-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Daniel\ntuser.dat{66748323-1c94-11e3-9db3-001c4aff6db0}.TM.blf ()
Startup: C:\Users\Daniel\ntuser.dat{66748323-1c94-11e3-9db3-001c4aff6db0}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Daniel\ntuser.dat{66748323-1c94-11e3-9db3-001c4aff6db0}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{90f6707e-d804-11e1-8ed6-806e6f6e6963}.TM.blf ()
Startup: C:\Users\Daniel\NTUSER.DAT{90f6707e-d804-11e1-8ed6-806e6f6e6963}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{90f6707e-d804-11e1-8ed6-806e6f6e6963}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{bf15720f-4ebc-11e2-b7c2-001c4aff6db0}.TM.blf ()
Startup: C:\Users\Daniel\NTUSER.DAT{bf15720f-4ebc-11e2-b7c2-001c4aff6db0}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Daniel\NTUSER.DAT{bf15720f-4ebc-11e2-b7c2-001c4aff6db0}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Daniel\ntuser.ini ()
Startup: C:\Users\Daniel\ntuser.pol ()
Startup: C:\Users\Daniel\Pictures ()
Startup: C:\Users\Daniel\Podcasts ()
Startup: C:\Users\Daniel\Projekte ()
Startup: C:\Users\Daniel\Recent ()
Startup: C:\Users\Daniel\Saved Games ()
Startup: C:\Users\Daniel\Searches ()
Startup: C:\Users\Daniel\SendTo ()
Startup: C:\Users\Daniel\setup.exe (LionSea SoftWare                                            )
Startup: C:\Users\Daniel\Startmenü ()
Startup: C:\Users\Daniel\Sti_Trace.log ()
Startup: C:\Users\Daniel\Videos ()
Startup: C:\Users\Daniel\Virtual Machines ()
Startup: C:\Users\Daniel\VirtualBox VMs ()
Startup: C:\Users\Daniel\Vorlagen ()
Startup: C:\Users\Default\Anwendungsdaten ()
Startup: C:\Users\Default\AppData ()
Startup: C:\Users\Default\Application Data ()
Startup: C:\Users\Default\Desktop ()
Startup: C:\Users\Default\Documents ()
Startup: C:\Users\Default\Downloads ()
Startup: C:\Users\Default\Druckumgebung ()
Startup: C:\Users\Default\Eigene Dateien ()
Startup: C:\Users\Default\Favorites ()
Startup: C:\Users\Default\Links ()
Startup: C:\Users\Default\Local Settings ()
Startup: C:\Users\Default\Lokale Einstellungen ()
Startup: C:\Users\Default\Music ()
Startup: C:\Users\Default\My Documents ()
Startup: C:\Users\Default\NetHood ()
Startup: C:\Users\Default\Netzwerkumgebung ()
Startup: C:\Users\Default\NTUSER.DAT ()
Startup: C:\Users\Default\NTUSER.DAT.LOG ()
Startup: C:\Users\Default\NTUSER.DAT.LOG1 ()
Startup: C:\Users\Default\NTUSER.DAT.LOG2 ()
Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Default\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Default\Pictures ()
Startup: C:\Users\Default\PrintHood ()
Startup: C:\Users\Default\Recent ()
Startup: C:\Users\Default\Saved Games ()
Startup: C:\Users\Default\SendTo ()
Startup: C:\Users\Default\Start Menu ()
Startup: C:\Users\Default\Startmenü ()
Startup: C:\Users\Default\Templates ()
Startup: C:\Users\Default\Videos ()
Startup: C:\Users\Default\Vorlagen ()
Startup: C:\Users\Gastkonto\AppData ()
Startup: C:\Users\Gastkonto\ntuser.dat ()
Startup: C:\Users\Gastkonto\ntuser.dat.LOG1 ()
Startup: C:\Users\Gastkonto\ntuser.dat.LOG2 ()
Startup: C:\Users\Gastkonto\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
Startup: C:\Users\Gastkonto\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\Gastkonto\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\Public\AppData ()
Startup: C:\Users\Public\Desktop ()
Startup: C:\Users\Public\Documents ()
Startup: C:\Users\Public\Downloads ()
Startup: C:\Users\Public\Favorites ()
Startup: C:\Users\Public\Libraries ()
Startup: C:\Users\Public\Music ()
Startup: C:\Users\Public\Pictures ()
Startup: C:\Users\Public\Recorded TV ()
Startup: C:\Users\Public\Videos ()
Startup: C:\Users\UpdatusUser\Anwendungsdaten ()
Startup: C:\Users\UpdatusUser\AppData ()
Startup: C:\Users\UpdatusUser\Contacts ()
Startup: C:\Users\UpdatusUser\Cookies ()
Startup: C:\Users\UpdatusUser\Desktop ()
Startup: C:\Users\UpdatusUser\Documents ()
Startup: C:\Users\UpdatusUser\Downloads ()
Startup: C:\Users\UpdatusUser\Druckumgebung ()
Startup: C:\Users\UpdatusUser\Eigene Dateien ()
Startup: C:\Users\UpdatusUser\Favorites ()
Startup: C:\Users\UpdatusUser\Links ()
Startup: C:\Users\UpdatusUser\Lokale Einstellungen ()
Startup: C:\Users\UpdatusUser\Music ()
Startup: C:\Users\UpdatusUser\Netzwerkumgebung ()
Startup: C:\Users\UpdatusUser\NTUSER.DAT ()
Startup: C:\Users\UpdatusUser\ntuser.dat.LOG1 ()
Startup: C:\Users\UpdatusUser\ntuser.dat.LOG2 ()
Startup: C:\Users\UpdatusUser\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf ()
Startup: C:\Users\UpdatusUser\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms ()
Startup: C:\Users\UpdatusUser\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms ()
Startup: C:\Users\UpdatusUser\ntuser.ini ()
Startup: C:\Users\UpdatusUser\Pictures ()
Startup: C:\Users\UpdatusUser\Recent ()
Startup: C:\Users\UpdatusUser\Saved Games ()
Startup: C:\Users\UpdatusUser\Searches ()
Startup: C:\Users\UpdatusUser\SendTo ()
Startup: C:\Users\UpdatusUser\Startmenü ()
Startup: C:\Users\UpdatusUser\Videos ()
Startup: C:\Users\UpdatusUser\Vorlagen ()
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation)
BootExecute: PDBoot.exeautocheck autochk * 

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = 
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - DefaultScope {1940599C-32B7-46B3-863C-8A626C042730} URL = 
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll No File
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Browsing Protection Class - {C6867EB7-8350-4856-877F-93CF8AE3DC9C} - C:\Program Files (x86)\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)
BHO-x32: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files (x86)\Soda PDF 5\PDFIEHelper.dll (LULU Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Perfect PDF 5 - {9DE41FB9-ACA7-4847-982B-D984042588FC} - C:\Program Files (x86)\soft Xpansion\Perfect PDF 5\PDF4ie.dll (soft Xpansion)
Toolbar: HKLM-x32 - Steganos Password Manager Toolbar - {9C65D12D-CF9D-454D-8049-61965D8C6FFF} - C:\Program Files (x86)\Steganos Privacy Suite 2012\SPMIEToolbar.dll (Steganos Software GmbH)
Toolbar: HKLM-x32 - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files (x86)\Soda PDF 5\PDFIEPlugin.dll (LULU Software)
Toolbar: HKLM-x32 - Browsing Protection Toolbar - {265EEE8E-3228-44D3-AEA5-F7FDF5860049} - C:\Program Files (x86)\F-Secure\NRS\iescript\baselitmus.dll (F-Secure Corporation)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} -  No File
Handler-x32: hddlife - {BD758015-47D9-477A-8873-4B688A2BC0E2} - C:\Program Files (x86)\Common Files\BinarySense\hlAPP.dll (BinarySense, Inc.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=1.6.0_33 - C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll No File
FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nielsen/FirefoxTracker - C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll No File
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=1.1.10 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Daniel\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Daniel\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
FF SearchPlugin: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Click&Clean - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\clickclean@hotcleaner.com
FF Extension: facebook - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\facebook@disconnect.me.xpi
FF Extension: jid1-F9UJ2thwoAm5gQ - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi
FF Extension: longurlplease - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\longurlplease@darragh.curran.xpi
FF Extension: testpilot - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\testpilot@labs.mozilla.com.xpi
FF Extension: trackerblock - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\trackerblock@privacychoice.org.xpi
FF Extension: sap - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\{2e61e246-e640-4c56-b1ed-f146dbed48cd}.xpi
FF Extension: noscript - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF Extension: Adblock Plus - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: greasemonkey - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\dph0vwph.tarnfox\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 2012\pfplugin
FF Extension: Steganos Private Favorites - C:\Program Files (x86)\Steganos Privacy Suite 2012\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 2012\spmplugin3
FF Extension: Steganos Password Manager - C:\Program Files (x86)\Steganos Privacy Suite 2012\spmplugin3
FF HKLM-x32\...\Firefox\Extensions: [fe_12.0@nokia.com] - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_12.0
FF HKLM-x32\...\Firefox\Extensions: [litmus-ff@f-secure.com] - C:\Program Files (x86)\F-Secure\NRS\litmus-ff@f-secure.com
FF Extension: Browsing Protection - C:\Program Files (x86)\F-Secure\NRS\litmus-ff@f-secure.com
FF HKLM-x32\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF HKLM-x32\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi

Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)
R2 AVM WLAN Connection Service; C:\Program Files (x86)\avmwlanstick\WlanNetService.exe [356352 2006-12-28] (AVM Berlin)
R2 F-Secure Gatekeeper Handler Starter; C:\Program Files (x86)\F-Secure\Anti-Virus\fsgk32st.exe [220912 2012-06-26] (F-Secure Corporation)
R3 F-Secure Network Request Broker; C:\Program Files (x86)\F-Secure\Common\FNRB32.EXE [188144 2012-06-26] (F-Secure Corporation)
R2 fsdevcon; C:\Program Files (x86)\F-Secure\Device Control\\fsdevcon64.exe [516848 2012-06-26] (F-Secure Corporation)
R2 FSMA; C:\Program Files (x86)\F-Secure\Common\FSMA32.EXE [188144 2012-06-26] (F-Secure Corporation)
R3 FSORSPClient; C:\Program Files (x86)\F-Secure\ORSP Client\fsorsp.exe [60352 2013-06-06] (F-Secure Corporation)
R2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [841544 2011-02-18] (BinarySense, Inc.)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PDAgent; C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe [1488136 2009-07-23] (Raxco Software, Inc.)
S3 PDEngine; C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe [1486600 2009-07-23] (Raxco Software, Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1326176 2012-07-25] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [681056 2012-07-25] (Secunia)
R2 Soda PDF 5 Helper Service; C:\Program Files (x86)\Soda PDF 5\HelperService.exe [1237856 2013-01-25] (LULU Software)
R2 Soda PDF 5 Service; C:\Program Files (x86)\Soda PDF 5\ConversionService.exe [877920 2013-01-25] (LULU Software)
R2 Steganos Volatile Disk; C:\Windows\SysWow64\STGRAMDiskHandler64.exe [450560 2012-10-29] (Softwareentwicklung Remus - ArchiCrypt)
S3 SXDS10; C:\Program Files (x86)\Common Files\soft Xpansion\SXDS10.exe [160768 2009-07-13] (soft Xpansion)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2144056 2013-10-22] (TuneUp Software)
R2 USBLogonService; C:\Program Files\USBLogon\usblonsvc.exe [9216 2012-10-06] ()
S3 GoToAssist; "C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe" Start=service [x]
S2 SessionLauncher; c:\Users\ADMINI~1\AppData\Local\Temp\DX9\SessionLauncher.exe [x]

==================== Drivers (Whitelisted) ====================

R2 acedrv09; C:\Windows\system32\drivers\acedrv09.sys [294720 2010-06-14] (Protect Software GmbH)
R2 acehlp09; C:\Windows\system32\drivers\acehlp09.sys [195248 2010-06-14] (Protect Software GmbH)
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2006-12-28] (AVM Berlin)
R3 cbfs3; C:\Windows\System32\DRIVERS\cbfs3.sys [352144 2012-04-09] (EldoS Corporation)
S4 F-Secure Filter; C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSfilter.sys [41072 2012-06-26] ()
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsgk.sys [202176 2013-07-17] (F-Secure Corporation)
S4 F-Secure Recognizer; C:\Program Files (x86)\F-Secure\Anti-Virus\Win2K\FSrec.sys [26352 2012-06-26] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R1 fsvista; C:\Program Files (x86)\F-Secure\Anti-Virus\minifilter\fsvista.sys [14064 2012-06-26] ()
R3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2006-12-28] (AVM GmbH)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
S3 s1018bus; C:\Windows\System32\DRIVERS\s1018bus.sys [113704 2009-03-25] (MCCI Corporation)
S3 s1018mdfl; C:\Windows\System32\DRIVERS\s1018mdfl.sys [19496 2009-03-25] (MCCI Corporation)
S3 s1018mdm; C:\Windows\System32\DRIVERS\s1018mdm.sys [153128 2009-03-25] (MCCI Corporation)
S3 s1018mgmt; C:\Windows\System32\DRIVERS\s1018mgmt.sys [133160 2009-03-25] (MCCI Corporation)
S3 s1018nd5; C:\Windows\System32\DRIVERS\s1018nd5.sys [34856 2009-03-25] (MCCI Corporation)
S3 s1018obex; C:\Windows\System32\DRIVERS\s1018obex.sys [128552 2009-03-25] (MCCI Corporation)
S3 s1018unic; C:\Windows\System32\DRIVERS\s1018unic.sys [146472 2009-03-25] (MCCI Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R1 SLEE_17_DRIVER; C:\Windows\Sleen1764.sys [108256 2010-02-17] (Softwareentwicklung Remus - ArchiCrypt - )
R1 SLEE_18_DRIVER; C:\Windows\Sleen1864.sys [108648 2012-07-24] (Softwareentwicklung Remus - ArchiCrypt - )
S3 StarOpen; No ImagePath
R1 STGMFEngine64; C:\Windows\system32\drivers\STGMFEngine64.sys [28576 2012-10-29] (Softwareentwicklung Remus - ArchiCrypt.com)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [11856 2011-11-08] (TuneUp Software)
S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [53840 2011-03-03] (Windows (R) 2000 DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [528464 2011-03-03] (Paragon)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 connctfy; system32\DRIVERS\connctfy.sys [x]
S3 connctfyMP; system32\DRIVERS\connctfy.sys [x]
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
U5 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2012-08-15] ()
U5 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [33408 2012-10-14] ()
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [x]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-22 16:20 - 2013-11-22 16:21 - 00036957 _____ C:\Users\Daniel\Downloads\FRST.txt
2013-11-22 16:20 - 2013-11-22 16:20 - 01957998 _____ (Farbar) C:\Users\Daniel\Downloads\FRST64.exe
2013-11-22 16:20 - 2013-11-22 16:20 - 00000000 ____D C:\FRST
2013-11-22 16:19 - 2013-11-22 16:19 - 01090925 _____ (Farbar) C:\Users\Daniel\Downloads\FRST.exe
2013-11-21 14:41 - 2013-11-21 14:41 - 00000000 _____ C:\Users\Daniel\Sti_Trace.log
2013-11-21 14:38 - 2013-11-14 12:56 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-21 14:38 - 2013-11-14 12:56 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-21 14:38 - 2013-11-14 12:56 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-21 14:37 - 2013-11-21 14:37 - 00000000 ____D C:\NVIDIA
2013-11-17 19:43 - 2013-11-17 19:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 13:34 - 2013-11-16 13:34 - 00000000 ____D C:\Users\Daniel\Downloads\BitDefender Mobile Security
2013-11-16 12:09 - 2013-11-22 16:14 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-16 12:09 - 2013-11-22 16:13 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-16 12:09 - 2013-11-16 12:09 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-16 12:09 - 2013-11-16 12:09 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-16 11:37 - 2013-11-16 11:37 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-11-13 21:27 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-13 21:27 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-13 21:27 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-13 21:27 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-13 21:27 - 2013-10-12 09:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-13 21:27 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-13 21:27 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-13 21:27 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-13 21:27 - 2013-10-12 07:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-13 21:27 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-13 21:27 - 2013-10-12 06:44 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-13 21:27 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-13 16:07 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 16:07 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 16:07 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 16:06 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 16:06 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 16:06 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 16:06 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 16:06 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 16:06 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 16:06 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 16:06 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 16:06 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 16:06 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 16:06 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 16:06 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 16:06 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 16:06 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 16:06 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 16:06 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 16:06 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 16:06 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 16:06 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 16:06 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 16:06 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 16:06 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 16:06 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 16:06 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 16:06 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 16:06 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 16:06 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-12 20:38 - 2013-11-12 20:38 - 02816072 _____ (LionSea SoftWare                                            ) C:\Users\Daniel\setup.exe
2013-11-12 20:38 - 2013-11-12 20:38 - 00000000 ____D C:\Users\Daniel\AppData\Local\DriverTuner
2013-11-12 19:10 - 2013-11-12 19:10 - 00000000 ____D C:\ProgramData\ASUS
2013-11-12 19:08 - 2013-11-12 19:19 - 00000000 ____D C:\Program Files (x86)\ASUS
2013-11-12 19:03 - 2013-11-12 19:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2013-11-12 18:37 - 2013-11-12 19:26 - 00001526 _____ C:\Windows\Ascd_tmp.ini
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-05 21:27 - 2013-11-05 21:28 - 00000000 ____D C:\Users\Daniel\.borland
2013-11-05 21:26 - 2013-11-05 21:26 - 00000000 ____D C:\Program Files (x86)\Borland
2013-11-04 15:39 - 2013-11-04 15:39 - 00000000 ____D C:\ProgramData\Oracle
2013-11-04 15:39 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-04 15:39 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-04 15:39 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-04 15:39 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-04 15:38 - 2013-11-04 15:39 - 00004886 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-03 20:46 - 2013-11-03 20:46 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2013-11-03 15:10 - 2013-11-17 18:20 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2013-11-03 13:13 - 2013-11-03 13:13 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2013-11-03 13:11 - 2013-11-08 21:47 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-03 13:11 - 2013-11-08 21:47 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-03 13:11 - 2013-11-03 13:11 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-11-03 13:10 - 2013-11-03 13:10 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-11-03 13:10 - 2013-07-30 16:50 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Macromedia
2013-11-03 13:10 - 2012-03-23 17:49 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2013-11-03 13:10 - 2010-05-29 22:26 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\SoftThinks
2013-11-03 13:10 - 2010-05-29 22:19 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-03 13:10 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-11-03 13:10 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-11-03 13:07 - 2013-11-14 12:56 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-03 13:07 - 2013-10-23 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-11-03 13:07 - 2013-10-23 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll
2013-11-03 13:07 - 2013-09-28 00:01 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-11-03 13:07 - 2013-09-28 00:01 - 00029984 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2013-11-03 13:07 - 2013-09-28 00:01 - 00028960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-11-03 13:05 - 2013-11-03 13:05 - 00000000 ____D C:\Program Files\NVIDIA
2013-11-03 12:15 - 2013-11-03 13:04 - 00000000 ____D C:\Users\Daniel\Downloads\Grafiktreiber
2013-11-03 11:43 - 2013-11-16 12:16 - 00000000 ____D C:\Windows\ERUNT
2013-11-03 11:42 - 2013-11-14 12:56 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-11-03 11:42 - 2013-11-14 12:56 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-11-03 11:28 - 2013-11-03 11:28 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\F-Secure
2013-11-02 19:32 - 2013-11-22 16:06 - 00003178 _____ C:\Windows\System32\Tasks\Scheduled scanning task
2013-11-02 19:32 - 2013-11-22 16:06 - 00000542 _____ C:\Windows\Tasks\Scheduled scanning task.job
2013-11-02 19:09 - 2013-11-02 19:21 - 00000000 ____D C:\Windows\erdnt
2013-11-02 17:48 - 2013-11-02 17:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-02 17:48 - 2013-11-02 17:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-02 16:14 - 2009-07-14 02:14 - 01397248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utilman.exe
2013-11-02 15:13 - 2013-11-02 19:55 - 00012852 _____ C:\Windows\DPINST.LOG
2013-11-01 19:11 - 2013-11-01 19:11 - 00000000 _____ C:\Windows\coreldrw.INI

==================== One Month Modified Files and Folders =======

2013-11-22 16:21 - 2013-11-22 16:20 - 00036957 _____ C:\Users\Daniel\Downloads\FRST.txt
2013-11-22 16:20 - 2013-11-22 16:20 - 01957998 _____ (Farbar) C:\Users\Daniel\Downloads\FRST64.exe
2013-11-22 16:20 - 2013-11-22 16:20 - 00000000 ____D C:\FRST
2013-11-22 16:19 - 2013-11-22 16:19 - 01090925 _____ (Farbar) C:\Users\Daniel\Downloads\FRST.exe
2013-11-22 16:16 - 2010-06-05 18:56 - 00000000 ____D C:\Users\Daniel\AppData\Local\Adobe
2013-11-22 16:15 - 2009-07-14 06:10 - 01422953 _____ C:\Windows\WindowsUpdate.log
2013-11-22 16:14 - 2013-11-16 12:09 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-22 16:13 - 2013-11-16 12:09 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-22 16:13 - 2009-07-14 05:45 - 00014256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-22 16:13 - 2009-07-14 05:45 - 00014256 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-22 16:12 - 2009-07-14 18:58 - 00721544 _____ C:\Windows\system32\perfh007.dat
2013-11-22 16:12 - 2009-07-14 18:58 - 00159054 _____ C:\Windows\system32\perfc007.dat
2013-11-22 16:12 - 2009-07-14 06:13 - 01678874 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-22 16:06 - 2013-11-02 19:32 - 00003178 _____ C:\Windows\System32\Tasks\Scheduled scanning task
2013-11-22 16:06 - 2013-11-02 19:32 - 00000542 _____ C:\Windows\Tasks\Scheduled scanning task.job
2013-11-22 16:05 - 2012-08-28 17:26 - 00079558 _____ C:\Windows\setupact.log
2013-11-22 16:05 - 2010-05-29 21:44 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-22 16:05 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-21 14:54 - 2012-03-29 10:48 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-21 14:41 - 2013-11-21 14:41 - 00000000 _____ C:\Users\Daniel\Sti_Trace.log
2013-11-21 14:41 - 2011-04-05 12:41 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-21 14:41 - 2010-06-05 10:42 - 00000000 ____D C:\Users\Daniel
2013-11-21 14:37 - 2013-11-21 14:37 - 00000000 ____D C:\NVIDIA
2013-11-21 14:24 - 2013-05-22 16:49 - 00003440 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-11-20 14:14 - 2013-01-11 17:03 - 00000000 ___RD C:\Users\Daniel\Projekte
2013-11-19 08:10 - 2009-07-14 05:45 - 05127944 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-18 18:16 - 2010-06-05 10:42 - 00173000 _____ C:\Users\Daniel\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-18 17:43 - 2012-03-23 15:38 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-18 16:04 - 2010-06-08 20:09 - 00018432 _____ C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-18 15:19 - 2012-10-22 14:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-17 19:43 - 2013-11-17 19:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-17 19:32 - 2010-06-05 20:09 - 00000000 ____D C:\Users\Daniel\AppData\Local\Mozilla
2013-11-17 18:20 - 2013-11-03 15:10 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2013-11-17 16:12 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-17 15:39 - 2013-05-22 16:49 - 00000000 ____D C:\Program Files\My Dell
2013-11-17 15:39 - 2010-05-29 22:06 - 00000000 ____D C:\ProgramData\PCDr
2013-11-16 16:43 - 2012-10-14 19:46 - 00080960 _____ C:\Windows\PFRO.log
2013-11-16 13:34 - 2013-11-16 13:34 - 00000000 ____D C:\Users\Daniel\Downloads\BitDefender Mobile Security
2013-11-16 12:16 - 2013-11-03 11:43 - 00000000 ____D C:\Windows\ERUNT
2013-11-16 12:12 - 2010-06-05 20:50 - 00000000 ____D C:\Program Files (x86)\Google
2013-11-16 12:12 - 2010-06-05 20:12 - 00000000 ____D C:\Users\Daniel\AppData\Local\Google
2013-11-16 12:09 - 2013-11-16 12:09 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-11-16 12:09 - 2013-11-16 12:09 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-11-16 11:37 - 2013-11-16 11:37 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2013-11-14 12:56 - 2013-11-21 14:38 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-14 12:56 - 2013-11-21 14:38 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-14 12:56 - 2013-11-21 14:38 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-14 12:56 - 2013-11-03 13:07 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-14 12:56 - 2013-11-03 11:42 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-11-14 12:56 - 2013-11-03 11:42 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-11-14 12:56 - 2013-08-27 07:53 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-14 12:56 - 2013-08-27 07:53 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-14 12:56 - 2010-05-30 07:29 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-14 12:56 - 2010-05-30 07:29 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-14 12:56 - 2010-05-30 07:29 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-13 21:25 - 2013-07-19 10:37 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 21:23 - 2010-06-05 19:31 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 15:56 - 2013-08-14 18:40 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2012
2013-11-12 20:38 - 2013-11-12 20:38 - 02816072 _____ (LionSea SoftWare                                            ) C:\Users\Daniel\setup.exe
2013-11-12 20:38 - 2013-11-12 20:38 - 00000000 ____D C:\Users\Daniel\AppData\Local\DriverTuner
2013-11-12 19:26 - 2013-11-12 18:37 - 00001526 _____ C:\Windows\Ascd_tmp.ini
2013-11-12 19:19 - 2013-11-12 19:08 - 00000000 ____D C:\Program Files (x86)\ASUS
2013-11-12 19:10 - 2013-11-12 19:10 - 00000000 ____D C:\ProgramData\ASUS
2013-11-12 19:03 - 2013-11-12 19:03 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA Corporation
2013-11-11 19:11 - 2010-09-27 14:53 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\FileZilla
2013-11-11 16:02 - 2009-09-27 17:22 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-11 16:02 - 2009-09-27 17:22 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-11 16:01 - 2009-09-27 17:22 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-11 16:01 - 2009-09-27 17:22 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-11 16:01 - 2009-09-27 17:22 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-11 16:01 - 2009-09-27 17:22 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-11 08:59 - 2013-11-11 08:59 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-10 17:27 - 2011-09-02 14:53 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\vlc
2013-11-09 23:42 - 2010-09-20 19:34 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Skype
2013-11-09 12:31 - 2010-06-07 15:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Deployment
2013-11-08 21:47 - 2013-11-03 13:11 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-11-03 13:11 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-07 19:53 - 2011-01-08 18:14 - 00003704 _____ C:\Windows\System32\Tasks\Java Update Scheduler
2013-11-05 21:28 - 2013-11-05 21:27 - 00000000 ____D C:\Users\Daniel\.borland
2013-11-05 21:26 - 2013-11-05 21:26 - 00000000 ____D C:\Program Files (x86)\Borland
2013-11-05 21:22 - 2013-08-28 13:26 - 00000000 ____D C:\Users\Daniel\Downloads\Delphi 7
2013-11-04 15:39 - 2013-11-04 15:39 - 00000000 ____D C:\ProgramData\Oracle
2013-11-04 15:39 - 2013-11-04 15:38 - 00004886 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-11-04 15:39 - 2010-06-05 21:23 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-03 20:46 - 2013-11-03 20:46 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\NVIDIA
2013-11-03 18:15 - 2013-04-17 13:56 - 00000000 ___RD C:\Users\Daniel\Dropbox
2013-11-03 18:15 - 2013-04-17 13:53 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\Dropbox
2013-11-03 15:09 - 2010-06-07 15:19 - 00000000 ____D C:\Users\Daniel\AppData\Local\Apps\2.0
2013-11-03 13:13 - 2013-11-03 13:13 - 00000000 ____D C:\Users\Daniel\AppData\Local\NVIDIA
2013-11-03 13:12 - 2013-09-13 16:18 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-11-03 13:11 - 2013-11-03 13:11 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2013-11-03 13:11 - 2013-09-13 16:17 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-03 13:10 - 2013-11-03 13:10 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-11-03 13:05 - 2013-11-03 13:05 - 00000000 ____D C:\Program Files\NVIDIA
2013-11-03 13:04 - 2013-11-03 12:15 - 00000000 ____D C:\Users\Daniel\Downloads\Grafiktreiber
2013-11-03 11:28 - 2013-11-03 11:28 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\F-Secure
2013-11-03 10:54 - 2012-08-11 12:29 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-02 20:23 - 2010-05-29 22:08 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-11-02 20:19 - 2012-12-25 17:51 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-11-02 20:19 - 2010-05-29 22:01 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-02 20:06 - 2013-03-09 23:32 - 00000000 ____D C:\Users\Daniel\AppData\Local\RadioSure
2013-11-02 19:55 - 2013-11-02 15:13 - 00012852 _____ C:\Windows\DPINST.LOG
2013-11-02 19:51 - 2012-08-28 15:37 - 00000000 ____D C:\Users\Daniel\AppData\Local\Image Comparator
2013-11-02 19:22 - 2012-07-27 12:17 - 00000000 ____D C:\Users\Gastkonto
2013-11-02 19:21 - 2013-11-02 19:09 - 00000000 ____D C:\Windows\erdnt
2013-11-02 19:21 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-02 19:20 - 2012-10-24 14:22 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\convert
2013-11-02 19:04 - 2010-05-29 22:04 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-11-02 17:48 - 2013-11-02 17:48 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-11-02 17:48 - 2013-11-02 17:48 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-11-02 17:48 - 2013-04-06 13:03 - 00000000 ____D C:\Program Files (x86)\SmartTools
2013-11-02 16:34 - 2009-07-14 19:18 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-11-02 15:16 - 2013-03-10 13:02 - 00000000 ____D C:\ProgramData\iolo
2013-11-02 15:16 - 2012-10-20 14:32 - 00000000 ____D C:\Users\Daniel\AppData\Roaming\MotionStudios
2013-11-02 14:55 - 2012-07-27 12:22 - 00000000 _____ C:\Windows\SysWOW64\excltmp~.dat
2013-11-02 14:43 - 2010-11-23 17:54 - 00000000 ____D C:\Users\Daniel\Downloads\Filezilla
2013-11-02 14:43 - 2010-09-27 14:53 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2013-11-01 19:11 - 2013-11-01 19:11 - 00000000 _____ C:\Windows\coreldrw.INI
2013-11-01 19:09 - 2012-11-05 18:21 - 00000000 ____D C:\Users\Daniel\.gimp-2.8
2013-10-27 18:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-10-23 11:30 - 2013-11-03 13:07 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433165.dll
2013-10-23 11:30 - 2013-11-03 13:07 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433165.dll

Files to move or delete:
====================
C:\Users\Daniel\setup.exe
C:\Users\Daniel\AppData\Roaming\Origin


Some content of TEMP:
====================
C:\Users\Daniel\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\Daniel\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Daniel\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\Daniel\AppData\Local\Temp\nvStInst.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-10 12:15

==================== End Of Log ============================
--- --- ---
Alt 23.11.2013, 07:43   #43
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
C:\Recycler

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.11.2013, 14:39   #44
daniel_4
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-11-2013
Ran by Daniel at 2013-11-24 14:38:26 Run:1
Running from C:\Users\Daniel\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Recycler
*****************

C:\Recycler => Moved successfully.

==== End of Fixlog ====

Alt 25.11.2013, 08:07   #45
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 7: Trojaner - ClickCompare - Standard

Windows 7: Trojaner - ClickCompare


Was siehst du nun?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort
Seite 3 von 4 12 3 4

Themen zu Windows 7: Trojaner - ClickCompare
adware.installbrain, computer, pup.optional.1clickdownload.a, pup.optional.amonetize.a, pup.optional.babylon.a, pup.optional.bprotector.a, pup.optional.browsefox.a, pup.optional.conduit, pup.optional.conduit.a, pup.optional.crossrider.a, pup.optional.crossrider.m, pup.optional.datamngr.a, pup.optional.delta.a, pup.optional.filescout.a, pup.optional.installcore.a, pup.optional.lizardlink.a, pup.optional.opencandy, pup.optional.plushd.a, pup.optional.sweetim.a, pup.optional.tarma.a, pup.optional.wajam.a, unterstrichen, viel werbung, win32/adware.yontoo, win32/agent.szw, wörter unterstrichen


« weißer bildschirm, schwarzer bildschirm, maus laggs nach systemstart, mausbewegungen in boxen. | biclient.exe und angemeldet von frankfurt »


Ähnliche Themen: Windows 7: Trojaner - ClickCompare


  1. Problem mit Clickcompare
    Plagegeister aller Art und deren Bekämpfung - 22.03.2014 (13)
  2. Clickcompare-Virus in Firefox / Windows 7
    Plagegeister aller Art und deren Bekämpfung - 26.01.2014 (7)
  3. Clickcompare Virus
    Plagegeister aller Art und deren Bekämpfung - 25.01.2014 (13)
  4. ClickCompare Malware auf Win 8 x64
    Log-Analyse und Auswertung - 15.08.2013 (15)
  5. clickcompare Linkerstellung durch Trojaner?
    Log-Analyse und Auswertung - 11.08.2013 (19)
  6. Trojaner clickcompare.info - Bitte um Hilfe!!
    Log-Analyse und Auswertung - 27.07.2013 (9)
  7. ClickCompare und Cupondropdown
    Plagegeister aller Art und deren Bekämpfung - 01.07.2013 (9)
  8. Verlinkungen zu Clickcompare
    Log-Analyse und Auswertung - 01.06.2013 (20)
  9. clickcompare Trojaner (?)
    Plagegeister aller Art und deren Bekämpfung - 19.05.2013 (4)
  10. clickcompare und dealply Probleme
    Log-Analyse und Auswertung - 09.05.2013 (7)
  11. Clickcompare Virus
    Plagegeister aller Art und deren Bekämpfung - 18.04.2013 (5)
  12. Clickcompare Trojaner
    Plagegeister aller Art und deren Bekämpfung - 16.04.2013 (4)
  13. clickcompare trojaner
    Plagegeister aller Art und deren Bekämpfung - 05.04.2013 (8)
  14. ClickCompare und Werbung - wie entfernen?
    Plagegeister aller Art und deren Bekämpfung - 23.03.2013 (4)
  15. Trojaner clickcompare entfernen
    Plagegeister aller Art und deren Bekämpfung - 16.02.2013 (12)
  16. Clickcompare Virus
    Plagegeister aller Art und deren Bekämpfung - 14.02.2013 (5)
  17. Clickcompare in Internetforen
    Plagegeister aller Art und deren Bekämpfung - 22.01.2013 (17)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 7: Trojaner - ClickCompare - Recycler ist der Papoerkorb, der ist auf jedem Laufwerk. Finger weg davon. Systemsteuerung > Ordneroptionen > Ansicht > Versteckte Ordner ausblenden aktivieren - Windows 7: Trojaner - ClickCompare...
Archiv
Du betrachtest: Windows 7: Trojaner - ClickCompare auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55