ADWARE/BProtector.E

Eumelinchen · 04.12.2013, 17:59

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-12-2013
Ran by Jasskas (administrator) on JASSKAS-PC on 04-12-2013 17:46:20
Running from C:\Users\Jasskas\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(Telefónica I+D) C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(IncrediMail, Ltd.) C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
() C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Nokia) C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
(IncrediMail, Ltd.) C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DellDock.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Nero AG) C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SunJavaUpdateSched] - "C:\Program Files\Java\jre7\bin\jusched.exe"
HKLM-x32\...\RunOnce: [Launcher] - C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe [165104 2009-09-17] (Softthinks)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4272640 2012-09-12] (Microsoft Corporation)
HKCU\...\Run: [IncrediMail] - C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe [367016 2013-09-14] (IncrediMail, Ltd.)
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-01-13] (Google Inc.)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [17418928 2012-07-13] (Skype Technologies S.A.)
HKCU\...\Run: [Rainlendar2] - C:\Program Files (x86)\Rainlendar2\Rainlendar2.exe [2498048 2012-07-02] ()
HKCU\...\Runonce: [Uninstall C:\Users\Jasskas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] - C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jasskas\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"
MountPoints2: {184b3263-e4ca-11df-b070-002564ec1b44} - I:\NokiaPCIA_Autorun.exe
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe [1807600 2009-11-13] ()
HKLM-x32\...\Run: [PDVDDXSrv] - C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-06-24] (CyberLink Corp.)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] ()
HKLM-x32\...\Run: [dellsupportcenter] - "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [NokiaMServer] - C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM-x32\...\Run: [NokiaMusic FastStart] - C:\Program Files (x86)\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [NBAgent] - C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1226024 2010-02-22] (Nero AG)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [spup] - C:\Users\Jasskas\AppData\Roaming\ShinyProfile\spup.exe [197664 2013-07-10] ()
AppInit_DLLs:   [ ] ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Jasskas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://start.funmoods.com/results.php?f=4&q={searchTerms}&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzutDtDtByDyCyE0E0CtC0ByEyEtBzyyC0DtN0D0Tzu0CtBtDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=1935535171
SearchScopes: HKLM-x32 - Backup.Old.DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
SearchScopes: HKLM-x32 - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = Google
SearchScopes: HKCU - Backup.Old.DefaultScope {CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
SearchScopes: HKCU - Bing URL = hxxp://www.bing.com/search?q={searchTerms}&form=OSDSRC
SearchScopes: HKCU - {9F6B9B67-C044-439A-A003-28236ADD3C2F} URL = 
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: ShinyProfile Class - {C8B7D03D-30D7-493A-95E5-6547E2FAC2FE} - C:\Users\Jasskas\AppData\Roaming\ShinyProfile\shinyprofile.dll (TODO: <Company name>)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MyEmoticons Class - {DCC39ACE-709B-44EA-B062-5F6BE2774644} - C:\Users\Jasskas\AppData\Roaming\MyEmoticons\myemoticons-1.6.1.dll (GreenTree Applications)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: HKLM-x32 {3860DD98-0549-4D50-AA72-5D17D200EE10} hxxp://cdn.scan.onecare.live.com/resource/download/scanner/en-us/wlscctrl2.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {E77F23EB-E7AB-4502-8F37-247DBAF1A147} hxxp://gfx2.hotmail.com/mail/w4/m3/photouploadcontrol/VistaMSNPUpldde-de.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default
FF SelectedSearchEngine: user_pref("browser.search.selectedEngine", "");
FF Homepage: hxxp://de.msn.com/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @canon.com/MycameraPlugin - C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pack.google.com/Google Updater;version=14 - C:\Program Files (x86)\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Jasskas\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101714.dll (Amazon.com, Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Firebug - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\firebug@software.joehewitt.com
FF Extension: Shiny Profile - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\{6236BA26-C117-4007-928C-DE0716C7FA80}
FF Extension: DownloadHelper - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: Page Speed - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}
FF Extension: FoxLingo - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}
FF Extension: firebug - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\firebug@software.joehewitt.com.xpi
FF Extension: No Name - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\firejump_1027.zip
FF Extension: defaults - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi
FF Extension: DVDVideoSoft Menu - C:\Users\Jasskas\AppData\Roaming\Mozilla\Firefox\Profiles\7gcy6dyr.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF HKLM-x32\...\Firefox\Extensions: [myemoticons@myemoticons.com] - C:\Users\Jasskas\AppData\Roaming\MyEmoticons\myemoticons@myemoticons.com-1.6.1
FF Extension: MyEmoticons - C:\Users\Jasskas\AppData\Roaming\MyEmoticons\myemoticons@myemoticons.com-1.6.1

Chrome: 
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: () - C:\Users\Jasskas\AppData\Local\Google\Chrome\User Data\Default\Extensions\oopofgccipckckifenoicncegojimpmf\1.6.1_0
CHR Extension: (Gmail) - C:\Users\Jasskas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\6.1.3_0
CHR HKLM-x32\...\Chrome\Extension: [ajeaeekpfakbiidigngcnelnclhnaibo] - C:\Users\Jasskas\AppData\Local\CRE\ajeaeekpfakbiidigngcnelnclhnaibo.crx
CHR HKLM-x32\...\Chrome\Extension: [oopofgccipckckifenoicncegojimpmf] - C:\Users\Jasskas\AppData\Roaming\MyEmoticons\oopofgccipckckifenoicncegojimpmf.crx

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 ServiceLayer; C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia)
R2 TGCM_ImportWiFiSvc; C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe [199600 2010-11-11] (Telefónica I+D)

==================== Drivers (Whitelisted) ====================

S3 AIDA32Driver; C:\Users\Jasskas\AppData\Local\Temp\aida32.sa6 [6144 2004-02-23] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [107416 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-14] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-14] (Avira Operations GmbH & Co. KG)
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [12800 2009-02-03] (ZTE Incorporated)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [68608 2005-08-10] (Protection Technology)
S4 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [89600 2005-11-03] (Protection Technology)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-05-18] (Duplex Secure Ltd.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] ()
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 cpuz132; \??\C:\Users\Jasskas\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [x]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-04 17:46 - 2013-12-04 17:46 - 01959766 _____ (Farbar) C:\Users\Jasskas\Downloads\FRST64.exe
2013-12-04 17:41 - 2013-12-04 17:41 - 00047590 _____ C:\Users\Jasskas\Desktop\JRT.txt
2013-12-04 17:33 - 2013-12-04 17:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-04 17:32 - 2013-12-04 17:32 - 01034531 _____ (Thisisu) C:\Users\Jasskas\Downloads\JRT.exe
2013-12-04 17:11 - 2013-12-04 17:21 - 00000000 ____D C:\AdwCleaner
2013-12-04 17:11 - 2013-12-04 17:11 - 01110034 _____ C:\Users\Jasskas\Downloads\adwcleaner.exe
2013-12-03 21:46 - 2013-12-03 21:46 - 00002020 _____ C:\Users\Jasskas\Downloads\86
2013-12-03 21:45 - 2013-12-03 21:45 - 00001666 _____ C:\Users\Jasskas\Downloads\87(2)
2013-12-03 21:35 - 2013-12-03 21:35 - 00001666 _____ C:\Users\Jasskas\Downloads\87(1)
2013-12-03 21:32 - 2013-12-03 21:32 - 00001666 _____ C:\Users\Jasskas\Downloads\87
2013-12-03 16:50 - 2013-12-03 16:50 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-03 16:50 - 2013-12-03 16:50 - 00000000 ____D C:\Users\Jasskas\AppData\Roaming\Malwarebytes
2013-12-03 16:50 - 2013-12-03 16:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-03 16:50 - 2013-12-03 16:50 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-03 16:50 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-03 16:48 - 2013-12-03 16:48 - 00614784 _____ C:\Users\Jasskas\Downloads\Malwarebytes Anti Malware - CHIP-Downloader.exe
2013-12-03 16:47 - 2013-12-03 16:47 - 00001665 _____ C:\Users\Jasskas\Downloads\85
2013-12-03 14:58 - 2013-12-03 14:59 - 00036485 _____ C:\Users\Jasskas\Downloads\Addition.txt
2013-12-03 14:53 - 2013-12-04 17:46 - 00018551 _____ C:\Users\Jasskas\Downloads\FRST.txt
2013-12-03 14:53 - 2013-12-03 14:53 - 00000000 ____D C:\FRST
2013-12-03 11:29 - 2013-12-03 11:29 - 00001144 _____ C:\Users\Jasskas\Desktop\My VuuPC.lnk
2013-12-03 11:28 - 2013-12-03 11:28 - 00602656 _____ C:\Users\Jasskas\Downloads\Setup(1).exe
2013-12-03 11:03 - 2013-12-03 11:04 - 00276768 _____ C:\Windows\Minidump\120313-25428-01.dmp
2013-12-03 10:56 - 2013-12-03 10:56 - 00276776 _____ C:\Windows\Minidump\120313-25584-01.dmp
2013-11-29 14:45 - 2013-11-29 14:45 - 00000000 ____D C:\Users\Jasskas\AppData\Roaming\ShinyProfile
2013-11-29 14:45 - 2013-11-29 14:45 - 00000000 ____D C:\Users\Jasskas\AppData\Local\C
2013-11-29 14:43 - 2013-11-29 14:43 - 00338984 _____ (Amônétízé Ltd) C:\Users\Jasskas\Downloads\Jurassic Realm__3385_il2638368.exe
2013-11-24 15:20 - 2013-11-24 15:20 - 00001088 _____ C:\Users\Public\Desktop\dm-Fotowelt.lnk
2013-11-13 10:36 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 10:36 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 10:36 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 10:36 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 10:36 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 10:36 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 10:36 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 10:36 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 10:36 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 10:35 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 10:35 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 10:35 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 10:35 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 10:35 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 10:35 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 10:35 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 10:35 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 10:35 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 10:35 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 10:35 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 10:35 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 10:35 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 10:35 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 10:35 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 10:35 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 10:35 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 10:35 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 10:35 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 10:35 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 10:35 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-12 23:01 - 2013-11-12 23:01 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 23:01 - 2013-11-12 23:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 23:01 - 2013-11-12 23:01 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 23:01 - 2013-11-12 23:01 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-12 23:01 - 2013-11-12 23:01 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-12 23:01 - 2013-11-12 23:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 23:01 - 2013-11-12 23:01 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 23:01 - 2013-11-12 23:01 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-12 23:01 - 2013-11-12 23:01 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 23:01 - 2013-11-12 23:01 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-12 23:01 - 2013-11-12 23:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-12 22:59 - 2013-11-12 23:02 - 00005684 _____ C:\Windows\IE11_main.log
2013-11-12 17:33 - 2013-11-12 17:33 - 103912569 _____ C:\Windows\SysWOW64\ಗ舣“
2013-11-10 21:21 - 2013-12-04 17:21 - 00003494 _____ C:\Windows\System32\Tasks\Jasskas NBAgent 5 4
2013-11-10 17:56 - 2013-11-10 17:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-10 17:55 - 2013-11-10 17:55 - 29040552 _____ (Oracle Corporation) C:\Users\Jasskas\Downloads\jre-7u45-windows-i586.exe
2013-11-10 17:54 - 2013-11-10 17:55 - 30694824 _____ (Oracle Corporation) C:\Users\Jasskas\Downloads\jre-7u45-windows-x64(1).exe
2013-11-10 17:52 - 2013-11-10 17:56 - 00000000 ____D C:\ProgramData\Oracle
2013-11-10 17:52 - 2013-11-10 17:52 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-10 17:50 - 2013-11-10 17:50 - 30694824 _____ (Oracle Corporation) C:\Users\Jasskas\Downloads\jre-7u45-windows-x64.exe
2013-11-04 19:02 - 2013-11-04 19:02 - 00001382 _____ C:\Users\Jasskas\Downloads\impulsvortrag-von-henning-koehler.ics

==================== One Month Modified Files and Folders =======

2013-12-04 17:47 - 2013-12-03 14:53 - 00018551 _____ C:\Users\Jasskas\Downloads\FRST.txt
2013-12-04 17:46 - 2013-12-04 17:46 - 01959766 _____ (Farbar) C:\Users\Jasskas\Downloads\FRST64.exe
2013-12-04 17:41 - 2013-12-04 17:41 - 00047590 _____ C:\Users\Jasskas\Desktop\JRT.txt
2013-12-04 17:33 - 2013-12-04 17:33 - 00000000 ____D C:\Windows\ERUNT
2013-12-04 17:32 - 2013-12-04 17:32 - 01034531 _____ (Thisisu) C:\Users\Jasskas\Downloads\JRT.exe
2013-12-04 17:31 - 2009-07-14 05:45 - 00014032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-04 17:31 - 2009-07-14 05:45 - 00014032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-04 17:24 - 2012-09-14 18:03 - 00000000 ____D C:\Users\Jasskas\.rainlendar2
2013-12-04 17:24 - 2010-01-12 21:09 - 00000000 ____D C:\Users\Jasskas\Tracing
2013-12-04 17:24 - 2010-01-12 17:17 - 00000000 ____D C:\Users\Jasskas\AppData\Local\SoftThinks
2013-12-04 17:23 - 2012-10-23 21:22 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2013-12-04 17:23 - 2011-03-13 11:39 - 00148110 _____ C:\Windows\setupact.log
2013-12-04 17:23 - 2010-01-08 20:02 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-04 17:23 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-04 17:23 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\tracing
2013-12-04 17:22 - 2013-10-25 22:23 - 00000000 ____D C:\Nero Autobackup
2013-12-04 17:22 - 2009-07-14 06:10 - 01559437 _____ C:\Windows\WindowsUpdate.log
2013-12-04 17:21 - 2013-12-04 17:11 - 00000000 ____D C:\AdwCleaner
2013-12-04 17:21 - 2013-11-10 21:21 - 00003494 _____ C:\Windows\System32\Tasks\Jasskas NBAgent 5 4
2013-12-04 17:11 - 2013-12-04 17:11 - 01110034 _____ C:\Users\Jasskas\Downloads\adwcleaner.exe
2013-12-04 16:48 - 2012-06-06 12:22 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-04 16:14 - 2013-05-22 09:55 - 00003440 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2013-12-04 14:17 - 2011-11-06 17:22 - 00000000 ____D C:\Users\Jasskas\AppData\Local\Windows Live
2013-12-03 21:46 - 2013-12-03 21:46 - 00002020 _____ C:\Users\Jasskas\Downloads\86
2013-12-03 21:45 - 2013-12-03 21:45 - 00001666 _____ C:\Users\Jasskas\Downloads\87(2)
2013-12-03 21:35 - 2013-12-03 21:35 - 00001666 _____ C:\Users\Jasskas\Downloads\87(1)
2013-12-03 21:32 - 2013-12-03 21:32 - 00001666 _____ C:\Users\Jasskas\Downloads\87
2013-12-03 16:50 - 2013-12-03 16:50 - 00001071 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-03 16:50 - 2013-12-03 16:50 - 00000000 ____D C:\Users\Jasskas\AppData\Roaming\Malwarebytes
2013-12-03 16:50 - 2013-12-03 16:50 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-03 16:50 - 2013-12-03 16:50 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-03 16:48 - 2013-12-03 16:48 - 00614784 _____ C:\Users\Jasskas\Downloads\Malwarebytes Anti Malware - CHIP-Downloader.exe
2013-12-03 16:47 - 2013-12-03 16:47 - 00001665 _____ C:\Users\Jasskas\Downloads\85
2013-12-03 14:59 - 2013-12-03 14:58 - 00036485 _____ C:\Users\Jasskas\Downloads\Addition.txt
2013-12-03 14:53 - 2013-12-03 14:53 - 00000000 ____D C:\FRST
2013-12-03 11:29 - 2013-12-03 11:29 - 00001144 _____ C:\Users\Jasskas\Desktop\My VuuPC.lnk
2013-12-03 11:28 - 2013-12-03 11:28 - 00602656 _____ C:\Users\Jasskas\Downloads\Setup(1).exe
2013-12-03 11:26 - 2010-01-13 11:44 - 00001034 _____ C:\Windows\Tasks\Google Software Updater.job
2013-12-03 11:04 - 2013-12-03 11:03 - 00276768 _____ C:\Windows\Minidump\120313-25428-01.dmp
2013-12-03 11:03 - 2010-03-21 22:20 - 00000000 ____D C:\Windows\Minidump
2013-12-03 11:03 - 2010-03-21 22:19 - 561420990 _____ C:\Windows\MEMORY.DMP
2013-12-03 11:02 - 2009-07-14 06:08 - 00032640 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-03 10:56 - 2013-12-03 10:56 - 00276776 _____ C:\Windows\Minidump\120313-25584-01.dmp
2013-12-03 10:06 - 2013-03-27 10:12 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-12-01 17:41 - 2010-01-08 20:03 - 00000000 ____D C:\Program Files (x86)\Java
2013-12-01 17:40 - 2010-01-08 20:04 - 00000000 ____D C:\Program Files\Java
2013-12-01 17:27 - 2012-09-01 12:04 - 00000000 ____D C:\Users\Jasskas\AppData\Roaming\Skype
2013-11-30 15:25 - 2011-03-31 07:49 - 00161240 _____ C:\Windows\PFRO.log
2013-11-29 14:45 - 2013-11-29 14:45 - 00000000 ____D C:\Users\Jasskas\AppData\Roaming\ShinyProfile
2013-11-29 14:45 - 2013-11-29 14:45 - 00000000 ____D C:\Users\Jasskas\AppData\Local\C
2013-11-29 14:43 - 2013-11-29 14:43 - 00338984 _____ (Amônétízé Ltd) C:\Users\Jasskas\Downloads\Jurassic Realm__3385_il2638368.exe
2013-11-29 09:11 - 2012-06-06 12:22 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-29 09:11 - 2012-06-06 12:22 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-29 09:11 - 2011-05-17 07:27 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-29 09:11 - 2010-01-22 15:40 - 00000000 ____D C:\Users\Jasskas\AppData\Local\Adobe
2013-11-28 15:17 - 2013-01-10 18:14 - 00000000 ____D C:\Users\Jasskas\Documents\Bewerbungen
2013-11-24 15:36 - 2011-06-10 16:36 - 00000000 ____D C:\ProgramData\tmp
2013-11-24 15:34 - 2011-06-10 16:36 - 00000000 ____D C:\ProgramData\hps
2013-11-24 15:20 - 2013-11-24 15:20 - 00001088 _____ C:\Users\Public\Desktop\dm-Fotowelt.lnk
2013-11-17 09:51 - 2012-04-25 23:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-16 19:39 - 2013-06-26 10:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 17:06 - 2013-05-22 09:54 - 00000000 ____D C:\Program Files\My Dell
2013-11-15 17:06 - 2010-01-08 20:10 - 00000000 ____D C:\ProgramData\PCDr
2013-11-14 14:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-14 11:14 - 2013-05-06 09:49 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-14 11:14 - 2013-03-27 10:12 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-14 11:14 - 2013-03-27 10:12 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-13 23:33 - 2010-01-08 20:12 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 23:32 - 2013-08-15 23:34 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 23:30 - 2010-01-18 08:03 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 10:24 - 2010-01-12 17:22 - 00001423 _____ C:\Users\Jasskas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-13 10:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-12 23:02 - 2013-11-12 22:59 - 00005684 _____ C:\Windows\IE11_main.log
2013-11-12 23:01 - 2013-11-12 23:01 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 23:01 - 2013-11-12 23:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 23:01 - 2013-11-12 23:01 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 23:01 - 2013-11-12 23:01 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-12 23:01 - 2013-11-12 23:01 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-12 23:01 - 2013-11-12 23:01 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 23:01 - 2013-11-12 23:01 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 23:01 - 2013-11-12 23:01 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-12 23:01 - 2013-11-12 23:01 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 23:01 - 2013-11-12 23:01 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-12 23:01 - 2013-11-12 23:01 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-12 23:01 - 2013-11-12 23:01 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 23:01 - 2013-11-12 23:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-12 17:33 - 2013-11-12 17:33 - 103912569 _____ C:\Windows\SysWOW64\ಗ舣“
2013-11-10 17:56 - 2013-11-10 17:56 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-10 17:56 - 2013-11-10 17:52 - 00000000 ____D C:\ProgramData\Oracle
2013-11-10 17:56 - 2013-01-14 20:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-10 17:56 - 2013-01-14 20:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-10 17:56 - 2013-01-14 20:45 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-10 17:55 - 2013-11-10 17:55 - 29040552 _____ (Oracle Corporation) C:\Users\Jasskas\Downloads\jre-7u45-windows-i586.exe
2013-11-10 17:55 - 2013-11-10 17:54 - 30694824 _____ (Oracle Corporation) C:\Users\Jasskas\Downloads\jre-7u45-windows-x64(1).exe
2013-11-10 17:52 - 2013-11-10 17:52 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-11-10 17:52 - 2013-01-20 10:14 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-11-10 17:52 - 2013-01-20 10:14 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-11-10 17:52 - 2013-01-20 10:14 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-11-10 17:50 - 2013-11-10 17:50 - 30694824 _____ (Oracle Corporation) C:\Users\Jasskas\Downloads\jre-7u45-windows-x64.exe
2013-11-04 19:02 - 2013-11-04 19:02 - 00001382 _____ C:\Users\Jasskas\Downloads\impulsvortrag-von-henning-koehler.ics

Some content of TEMP:
====================
C:\Users\Jasskas\AppData\Local\Temp\7z920.exe
C:\Users\Jasskas\AppData\Local\Temp\7za.exe
C:\Users\Jasskas\AppData\Local\Temp\AMPing.exe
C:\Users\Jasskas\AppData\Local\Temp\AskSLib.dll
C:\Users\Jasskas\AppData\Local\Temp\avgnt.exe
C:\Users\Jasskas\AppData\Local\Temp\BABYLON.EXE
C:\Users\Jasskas\AppData\Local\Temp\Browser_Helper_Companion_DE.exe
C:\Users\Jasskas\AppData\Local\Temp\card_setup.exe
C:\Users\Jasskas\AppData\Local\Temp\chatzum_aff50_nt_s.exe
C:\Users\Jasskas\AppData\Local\Temp\contentDATs.exe
C:\Users\Jasskas\AppData\Local\Temp\FreeTwitTube-S-Setup_Suite1.exe
C:\Users\Jasskas\AppData\Local\Temp\HssInstaller64.exe
C:\Users\Jasskas\AppData\Local\Temp\iMesh_setup.exe
C:\Users\Jasskas\AppData\Local\Temp\IminentSetup.exe
C:\Users\Jasskas\AppData\Local\Temp\IminentSetup[1].exe
C:\Users\Jasskas\AppData\Local\Temp\InstallManager_BAB_BAB.exe
C:\Users\Jasskas\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
C:\Users\Jasskas\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Jasskas\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Jasskas\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe
C:\Users\Jasskas\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Jasskas\AppData\Local\Temp\mediaimpression_2.0.53.938_2.0.53.1090_update_all.exe
C:\Users\Jasskas\AppData\Local\Temp\MouseKeyboardCenterx64_1031.exe
C:\Users\Jasskas\AppData\Local\Temp\NEventMessages.dll
C:\Users\Jasskas\AppData\Local\Temp\OptChrome.exe
C:\Users\Jasskas\AppData\Local\Temp\Quarantine.exe
C:\Users\Jasskas\AppData\Local\Temp\readSTILog.dll
C:\Users\Jasskas\AppData\Local\Temp\setup.exe
C:\Users\Jasskas\AppData\Local\Temp\setup_fsu_cid.exe
C:\Users\Jasskas\AppData\Local\Temp\sqlite3.dll
C:\Users\Jasskas\AppData\Local\Temp\sqlite3.exe
C:\Users\Jasskas\AppData\Local\Temp\uninst1.exe
C:\Users\Jasskas\AppData\Local\Temp\YontooIEClient.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-01 10:31

==================== End Of Log ============================

--- --- ---

ADWARE/BProtector.E

Plagegeister aller Art und deren Bekämpfung: ADWARE/BProtector.E

ADWARE/BProtector.E

Ähnliche Themen: ADWARE/BProtector.E