Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Search Conduit

Search Conduit


Plagegeister aller Art und deren Bekämpfung: Search Conduit

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 02.01.2014, 13:07   #1
Vaikless
 
Search Conduit - Standard

Search Conduit


Hallo zusammen,

ich habe mir die Search Conduit Toolbar eingefangen und Nach dem Problem gegoogelt.

Bin auf dieses Forum gestoßen und habe all die Schritte aus dem folgenden Thema befolgt:
http://www.trojaner-board.de/146805-...entfernen.html



Jedoch! Findet adwcleaner immer noch in Google Chrome 2 Bedrohungen
Genauso wie ESET Online Scanner weiterhin noch min 7 Bedrohungen findet (scan läuft noch).

Ist es vielleicht falsch die Scan Programme im abgesicherten Modus mit Netzwerktreibern laufen zu lassen?

Grüße und vielen Dank im voraus!

Edit: Ich lese grade, dass man nicht blind die selben Schritte befolgen sollte.

Das wusste ich nicht, habe diese Info erst gelesen als ich mich hier registriert habe.

ESET Scan Results:
Zitat:
C:\ProgramData\Spybot - Search & Destroy\Recovery\myPCBackup.zip Win32/Bagle.gen.zip worm
C:\ProgramData\Spybot - Search & Destroy\Recovery\Pricepeep22.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\myPCBackup.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\Pricepeep22.zip Win32/Bagle.gen.zip worm
C:\Users\Vaikless\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JT2LW7FS\download[1].php a variant of Win32/Skintrim.LS trojan
C:\Users\Vaikless\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OFE7X3QC\LollipopInstaller_14762[1].exe a variant of Win32/Kryptik.BPVX trojan
C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\extensions\staged\ioyu7iu@zc-eiua.org\content\bg.js Win32/Adware.MultiPlug.H application
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool:
[QUOTE]Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01
Ran by Vaikless (administrator) on VAIKLESS-PC on 02-01-2014 13:17:08
Running from C:\Users\Vaikless\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Safe Mode (with Networking)

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Vaikless\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [Launch LCore] - C:\Program Files\Logitech Gaming Software\LCore.exe [8290584 2013-08-01] (Logitech Inc.)
HKLM-x32\...\Run: [AsioThk32Reg] - REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] - C:\Windows\\SysWOW64\CTHELPER.EXE [19456 2010-03-18] (Creative Technology Ltd)
HKLM-x32\...\Run: [LWS] - C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [190808 2011-03-01] (Logitech Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware  (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
Winlogon\Notify\LBTWlgn: C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
HKCU\...\Run: [Steam] - D:\Spiele\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3521464 2012-05-25] (Samsung Electronics Co., Ltd.)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [21432 2012-05-25] ()
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Vaikless\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [Google Update] - C:\Users\Vaikless\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-03-06] (Google Inc.)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3671904 2012-08-28] (DT Soft Ltd)
HKCU\...\RunOnce: [Report] - C:\AdwCleaner\AdwCleaner[S1].txt [1144 2014-01-02] ()
MountPoints2: {88e3d4ad-5644-11e0-9928-0023544fc5a7} - F:\INSTALL.EXE
MountPoints2: {d8fbab81-1621-11e2-80da-0023544fc5a7} - F:\setup.exe
Startup: C:\Users\Vaikless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Vaikless\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x148041DEE8FBCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15116/CTPID.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default
FF NetworkProxy: "backup.ftp", ""
FF NetworkProxy: "backup.ftp_port", 0
FF NetworkProxy: "backup.socks", ""
FF NetworkProxy: "backup.socks_port", 0
FF NetworkProxy: "backup.ssl", ""
FF NetworkProxy: "backup.ssl_port", 0
FF NetworkProxy: "ftp", "65.65.219.98"
FF NetworkProxy: "ftp_port", 29122
FF NetworkProxy: "http", "65.65.219.98"
FF NetworkProxy: "http_port", 29122
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "65.65.219.98"
FF NetworkProxy: "socks_port", 29122
FF NetworkProxy: "ssl", "65.65.219.98"
FF NetworkProxy: "ssl_port", 29122
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.2\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Vaikless\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Vaikless\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\Extensions\staged
FF Extension: DivX Web Player - C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\Extensions\DivXWebPlayer@divx.com.xpi
FF Extension: Adblock Plus - C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

==================== Services (Whitelisted) =================

S2 Akamai; c:\program files (x86)\common files\akamai/netsession_win_8fa3539.dll [4569856 2013-07-01] (Akamai Technologies, Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
S2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-24] ()
S3 TunngleService; D:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

S1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [14392 2007-12-17] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-10-14] (DT Soft Ltd)
S3 LADF_DHP2; C:\Windows\System32\DRIVERS\ladfDHP2amd64.sys [62168 2010-09-29] (Logitech)
S3 LADF_SBVM; C:\Windows\System32\DRIVERS\ladfSBVMamd64.sys [377176 2010-09-29] (Logitech)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
S3 PorscheWheelFilterUsb; C:\Windows\System32\DRIVERS\PWFilterUsb.sys [58448 2010-12-15] (Windows (R) Codename Longhorn DDK provider)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-02 13:17 - 2014-01-02 13:17 - 00013599 _____ C:\Users\Vaikless\Desktop\FRST.txt
2014-01-02 13:16 - 2014-01-02 13:16 - 00000858 _____ C:\Users\Vaikless\Desktop\ESET.txt
2014-01-02 13:16 - 2014-01-02 13:16 - 00000000 ____D C:\FRST
2014-01-02 13:15 - 2014-01-02 13:15 - 01931426 _____ (Farbar) C:\Users\Vaikless\Desktop\FRST64.exe
2014-01-02 12:26 - 2014-01-02 12:26 - 00000628 _____ C:\Users\Vaikless\Desktop\JRT.txt
2014-01-02 12:26 - 2014-01-02 12:26 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-02 12:22 - 2014-01-02 12:22 - 02347384 _____ (ESET) C:\Users\Vaikless\Desktop\esetsmartinstaller_enu.exe
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\Windows\ERUNT
2014-01-02 12:16 - 2014-01-02 12:23 - 00000000 ____D C:\AdwCleaner
2014-01-02 12:13 - 2014-01-02 12:13 - 01233962 _____ C:\Users\Vaikless\Desktop\adwcleaner.exe
2014-01-02 12:13 - 2014-01-02 12:13 - 01036305 _____ (Thisisu) C:\Users\Vaikless\Desktop\JRT.exe
2014-01-02 07:57 - 2014-01-02 07:57 - 00000673 _____ C:\DelFix.txt
2014-01-01 23:03 - 2014-01-01 23:03 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-01 23:03 - 2014-01-01 23:03 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Malwarebytes
2014-01-01 23:03 - 2014-01-01 23:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-01 23:03 - 2014-01-01 23:03 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-01 23:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-01 14:20 - 2014-01-01 14:20 - 00000241 _____ C:\Windows\wininit.ini
2014-01-01 00:42 - 2014-01-01 00:42 - 00005040 _____ C:\Users\Vaikless\Downloads\UL_Fantomas-47i6tmmk9n9fe.dlc
2013-12-31 18:08 - 2013-12-31 18:08 - 00000000 ____D C:\Users\Vaikless\.android
2013-12-31 18:08 - 2013-12-31 18:08 - 00000000 _____ C:\Users\Vaikless\daemonprocess.txt
2013-12-30 23:21 - 2013-12-30 23:21 - 00000000 ____D C:\Users\Vaikless\Documents\Codemasters
2013-12-30 00:25 - 2013-12-30 00:26 - 00000122 _____ C:\Users\Vaikless\Downloads\7days_server.log
2013-12-30 00:25 - 2013-12-30 00:25 - 01149440 _____ (pionner) C:\Users\Vaikless\Downloads\7DaysServerManager.exe
2013-12-27 15:09 - 2013-12-27 15:21 - 00000000 ____D C:\Users\Vaikless\Desktop\KENZO
2013-12-24 03:21 - 2013-12-24 03:21 - 00000000 ____D C:\Users\Vaikless\Documents\Podcast Studio
2013-12-24 03:21 - 2013-12-24 03:21 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2013-12-24 03:21 - 2013-12-24 03:21 - 00000000 ____D C:\Program Files (x86)\concept design
2013-12-24 03:20 - 2013-12-24 03:25 - 00000000 ____D C:\Users\Vaikless\Documents\onlineTV 8
2013-12-24 03:20 - 2013-12-24 03:25 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\concept design
2013-12-24 03:20 - 2012-03-01 11:08 - 00966144 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioInformation2.dll
2013-12-24 03:20 - 2012-03-01 11:08 - 00877568 _____ (NCT Company Ltd.) C:\Windows\SysWOW64\NCTAudioFile2.dll
2013-12-24 03:20 - 2012-03-01 11:08 - 00634880 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioEditor2.dll
2013-12-24 03:20 - 2012-03-01 11:08 - 00522752 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioTransform2.dll
2013-12-24 03:20 - 2012-03-01 11:08 - 00467968 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioRecord2.dll
2013-12-24 03:20 - 2012-03-01 11:08 - 00467456 _____ (Online Media Technologies Ltd.) C:\Windows\SysWOW64\NCTAudioPlayer2.dll
2013-12-24 03:20 - 2012-03-01 11:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2013-12-24 03:20 - 2012-02-11 21:07 - 00413696 _____ (Gabest) C:\Windows\SysWOW64\flvsplitter.ax
2013-12-24 03:20 - 2011-03-29 12:52 - 00962560 _____ (East Wind Software) C:\Windows\SysWOW64\advdaudio.ocx
2013-12-24 03:20 - 2011-03-29 12:52 - 00110080 _____ C:\Windows\SysWOW64\advd.dll
2013-12-24 03:20 - 2011-03-29 12:52 - 00023040 _____ C:\Windows\SysWOW64\auth.dll
2013-12-24 03:20 - 2003-08-07 14:01 - 00237568 _____ C:\Windows\SysWOW64\lame_enc.dll
2013-12-24 03:13 - 2013-12-24 03:13 - 25335488 _____ C:\Users\Vaikless\Downloads\OnlineTV8-worldwide_CHIP-Adventskalender.exe
2013-12-24 00:28 - 2013-12-24 00:28 - 00005080 _____ C:\Users\Vaikless\Downloads\8176c4b682e6cd45120bcdc243ffc0e3.dlc
2013-12-23 15:14 - 2013-12-23 15:14 - 94474240 _____ C:\Users\Vaikless\Downloads\YouPorn - Hot brunette gives blowjob and swallows cum.mpg
2013-12-21 20:18 - 2013-12-21 20:18 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-21 18:15 - 2013-12-21 18:15 - 00021912 _____ C:\Users\Vaikless\Downloads\relink.us__DIE_ABENTEUER_DES_JUNGEN_INDIANA_JONES_UL_ea288e36890f1cc195ead5f15b362d.dlc
2013-12-20 19:00 - 2013-12-20 19:00 - 00000000 ____D C:\Users\Vaikless\Downloads\3DMGAME
2013-12-20 18:55 - 2013-12-30 00:22 - 00000051 _____ C:\Users\Vaikless\Downloads\settings.ini
2013-12-20 18:54 - 2013-12-20 18:54 - 04776575 _____ (Equi4 Software) C:\Users\Vaikless\Downloads\serverlauncher.exe
2013-12-19 19:42 - 2013-12-19 19:42 - 00002096 _____ C:\Users\Vaikless\Downloads\3e83dfa70fb61e044ba0f8d9925c6bc4.dlc
2013-12-16 17:47 - 2013-12-16 17:47 - 00001008 _____ C:\Users\Vaikless\Downloads\r28m4dxv83z2gy6.dlc
2013-12-14 14:39 - 2013-12-14 14:39 - 00000236 _____ C:\Windows\LkmdfCoInst.log
2013-12-12 18:03 - 2013-12-12 18:03 - 00016496 _____ C:\Users\Vaikless\Downloads\UL_f4zwfxmksd1r.dlc
2013-12-12 00:40 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-12 00:40 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-12 00:40 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-12 00:40 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-12 00:39 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 00:39 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 00:39 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 00:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 00:39 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 00:39 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 00:39 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 00:39 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 00:39 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 00:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 00:39 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 00:39 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 00:39 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 00:39 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 00:39 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 00:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 00:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 00:39 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 00:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 00:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 00:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 00:39 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 00:39 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 00:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 00:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 00:39 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 00:39 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 00:39 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 00:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 00:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 00:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-11 23:28 - 2013-12-11 23:28 - 86333440 _____ C:\Users\Vaikless\Downloads\YouPorn - Cute Blonde.mpg
2013-12-11 23:27 - 2013-12-11 23:28 - 36227072 _____ C:\Users\Vaikless\Downloads\YouPorn - Hot 18yo college girl fucked at home POV.mpg
2013-12-11 14:39 - 2013-12-11 14:39 - 00005296 _____ C:\Users\Vaikless\Downloads\RD2_GER_1080p_BRay_x264_-_VCF-zkj33xms969 (1).dlc
2013-12-11 10:41 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-11 10:41 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-11 10:41 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-11 10:41 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-11 10:41 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-11 10:41 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-11 10:41 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-11 10:41 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-11 10:41 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-11 10:41 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-11 10:41 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-11 10:41 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-11 10:41 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-11 10:41 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-11 10:41 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-11 10:41 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-11 10:41 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-11 10:41 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-11 10:41 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-10 01:04 - 2013-12-10 01:04 - 00000000 ____D C:\Program Files (x86)\Xvid
2013-12-10 01:04 - 2011-05-30 14:42 - 00255488 _____ C:\Windows\system32\xvidvfw.dll
2013-12-10 01:04 - 2011-05-30 14:42 - 00240640 _____ C:\Windows\SysWOW64\xvidvfw.dll
2013-12-10 01:04 - 2011-05-23 10:52 - 00153088 _____ C:\Windows\SysWOW64\xvid.ax
2013-12-10 01:04 - 2011-05-23 08:49 - 00173568 _____ C:\Windows\system32\xvid.ax
2013-12-10 01:04 - 2011-05-23 08:46 - 00645632 _____ C:\Windows\SysWOW64\xvidcore.dll
2013-12-10 01:04 - 2011-05-23 08:45 - 00696832 _____ C:\Windows\system32\xvidcore.dll
2013-12-09 20:58 - 2013-12-09 20:58 - 00014404 _____ C:\Users\Vaikless\Downloads\8fbd7ce0a7277d0cefd297a771bcb28d.dlc
2013-12-09 18:32 - 2013-12-09 18:33 - 14396606 _____ C:\Users\Vaikless\Downloads\test_1280x720.mp4
2013-12-05 22:42 - 2014-01-02 13:08 - 00000000 ____D C:\Users\Vaikless\Documents\Outlook-Dateien
2013-12-05 22:30 - 2013-12-05 22:30 - 00005296 _____ C:\Users\Vaikless\Downloads\RD2_GER_1080p_BRay_x264_-_VCF-zkj33xms969.dlc
2013-12-04 01:24 - 2014-01-02 03:42 - 00199280 _____ C:\Windows\PFRO.log
2013-12-03 20:54 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-12-03 20:51 - 2013-12-03 20:54 - 00009768 _____ C:\Windows\IE11_main.log
2013-12-03 20:51 - 2013-12-03 20:51 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-03 20:51 - 2013-12-03 20:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-03 20:51 - 2013-12-03 20:51 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-03 20:51 - 2013-12-03 20:51 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-03 20:51 - 2013-12-03 20:51 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-03 20:51 - 2013-12-03 20:51 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-03 20:51 - 2013-12-03 20:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-03 17:19 - 2013-12-03 17:19 - 00000253 _____ C:\Users\Vaikless\AppData\Roaming\BreakingPoint_Login.ini
2013-12-03 17:13 - 2013-12-03 17:13 - 00000000 ____D C:\Breaking Point
2013-12-03 17:00 - 2013-12-03 17:00 - 00003156 _____ C:\Windows\System32\Tasks\{F32244A8-A922-4E7F-A573-FC8C0F6F7A40}
2013-12-03 13:07 - 2013-12-03 19:05 - 00000000 ____D C:\Users\Vaikless\Desktop\Kill them with color

==================== One Month Modified Files and Folders =======

2014-01-02 13:17 - 2014-01-02 13:17 - 00013599 _____ C:\Users\Vaikless\Desktop\FRST.txt
2014-01-02 13:16 - 2014-01-02 13:16 - 00000858 _____ C:\Users\Vaikless\Desktop\ESET.txt
2014-01-02 13:16 - 2014-01-02 13:16 - 00000000 ____D C:\FRST
2014-01-02 13:15 - 2014-01-02 13:15 - 01931426 _____ (Farbar) C:\Users\Vaikless\Desktop\FRST64.exe
2014-01-02 13:08 - 2013-12-05 22:42 - 00000000 ____D C:\Users\Vaikless\Documents\Outlook-Dateien
2014-01-02 13:08 - 2011-03-06 04:59 - 01648846 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-02 13:08 - 2009-07-14 18:58 - 00702964 _____ C:\Windows\system32\perfh007.dat
2014-01-02 13:08 - 2009-07-14 18:58 - 00150604 _____ C:\Windows\system32\perfc007.dat
2014-01-02 12:35 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-02 12:26 - 2014-01-02 12:26 - 00000628 _____ C:\Users\Vaikless\Desktop\JRT.txt
2014-01-02 12:26 - 2014-01-02 12:26 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-02 12:23 - 2014-01-02 12:16 - 00000000 ____D C:\AdwCleaner
2014-01-02 12:22 - 2014-01-02 12:22 - 02347384 _____ (ESET) C:\Users\Vaikless\Desktop\esetsmartinstaller_enu.exe
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\Windows\ERUNT
2014-01-02 12:13 - 2014-01-02 12:13 - 01233962 _____ C:\Users\Vaikless\Desktop\adwcleaner.exe
2014-01-02 12:13 - 2014-01-02 12:13 - 01036305 _____ (Thisisu) C:\Users\Vaikless\Desktop\JRT.exe
2014-01-02 12:05 - 2013-12-02 21:36 - 00011290 _____ C:\Windows\setupact.log
2014-01-02 12:05 - 2013-06-02 23:45 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-02 12:05 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-02 07:57 - 2014-01-02 07:57 - 00000673 _____ C:\DelFix.txt
2014-01-02 07:57 - 2012-03-11 02:10 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-02 03:42 - 2013-12-04 01:24 - 00199280 _____ C:\Windows\PFRO.log
2014-01-02 03:10 - 2012-04-03 09:47 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-02 03:10 - 2011-03-06 02:10 - 01813108 _____ C:\Windows\WindowsUpdate.log
2014-01-02 02:38 - 2011-03-07 19:48 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Dropbox
2014-01-02 02:27 - 2012-03-06 23:32 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2854172247-3498098367-280033443-1001UA.job
2014-01-02 01:25 - 2011-03-06 15:26 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\vlc
2014-01-02 00:27 - 2012-03-06 23:32 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2854172247-3498098367-280033443-1001Core.job
2014-01-01 23:46 - 2011-03-06 03:34 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Skype
2014-01-01 23:16 - 2009-07-14 05:45 - 00016720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-01 23:16 - 2009-07-14 05:45 - 00016720 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-01 23:03 - 2014-01-01 23:03 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-01 23:03 - 2014-01-01 23:03 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Malwarebytes
2014-01-01 23:03 - 2014-01-01 23:03 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-01 23:03 - 2014-01-01 23:03 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-01 22:55 - 2011-03-06 02:10 - 00000000 ___RD C:\Users\Vaikless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-01 14:20 - 2014-01-01 14:20 - 00000241 _____ C:\Windows\wininit.ini
2014-01-01 00:42 - 2014-01-01 00:42 - 00005040 _____ C:\Users\Vaikless\Downloads\UL_Fantomas-47i6tmmk9n9fe.dlc
2013-12-31 18:08 - 2013-12-31 18:08 - 00000000 ____D C:\Users\Vaikless\.android
2013-12-31 18:08 - 2013-12-31 18:08 - 00000000 _____ C:\Users\Vaikless\daemonprocess.txt
2013-12-31 18:08 - 2011-03-06 02:09 - 00000000 ____D C:\Users\Vaikless
2013-12-31 18:01 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-31 14:18 - 2013-10-29 17:30 - 00000000 ____D C:\ProgramData\Tunngle
2013-12-31 14:18 - 2011-09-06 22:36 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Tunngle
2013-12-30 23:21 - 2013-12-30 23:21 - 00000000 ____D C:\Users\Vaikless\Documents\Codemasters
2013-12-30 23:21 - 2011-04-10 20:17 - 00000000 ____D C:\ProgramData\Codemasters
2013-12-30 13:02 - 2011-12-12 19:53 - 00000600 _____ C:\Users\Vaikless\AppData\Roaming\winscp.rnd
2013-12-30 00:26 - 2013-12-30 00:25 - 00000122 _____ C:\Users\Vaikless\Downloads\7days_server.log
2013-12-30 00:25 - 2013-12-30 00:25 - 01149440 _____ (pionner) C:\Users\Vaikless\Downloads\7DaysServerManager.exe
2013-12-30 00:22 - 2013-12-20 18:55 - 00000051 _____ C:\Users\Vaikless\Downloads\settings.ini
2013-12-28 14:38 - 2013-02-27 20:20 - 00280792 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-28 14:38 - 2011-05-15 17:57 - 00280792 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-12-28 14:37 - 2011-03-07 21:28 - 00281032 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-27 15:21 - 2013-12-27 15:09 - 00000000 ____D C:\Users\Vaikless\Desktop\KENZO
2013-12-24 03:25 - 2013-12-24 03:20 - 00000000 ____D C:\Users\Vaikless\Documents\onlineTV 8
2013-12-24 03:25 - 2013-12-24 03:20 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\concept design
2013-12-24 03:21 - 2013-12-24 03:21 - 00000000 ____D C:\Users\Vaikless\Documents\Podcast Studio
2013-12-24 03:21 - 2013-12-24 03:21 - 00000000 ____D C:\Users\Vaikless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2013-12-24 03:21 - 2013-12-24 03:21 - 00000000 ____D C:\Program Files (x86)\concept design
2013-12-24 03:13 - 2013-12-24 03:13 - 25335488 _____ C:\Users\Vaikless\Downloads\OnlineTV8-worldwide_CHIP-Adventskalender.exe
2013-12-24 00:28 - 2013-12-24 00:28 - 00005080 _____ C:\Users\Vaikless\Downloads\8176c4b682e6cd45120bcdc243ffc0e3.dlc
2013-12-23 15:14 - 2013-12-23 15:14 - 94474240 _____ C:\Users\Vaikless\Downloads\YouPorn - Hot brunette gives blowjob and swallows cum.mpg
2013-12-21 20:18 - 2013-12-21 20:18 - 00001066 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-12-21 18:15 - 2013-12-21 18:15 - 00021912 _____ C:\Users\Vaikless\Downloads\relink.us__DIE_ABENTEUER_DES_JUNGEN_INDIANA_JONES_UL_ea288e36890f1cc195ead5f15b362d.dlc
2013-12-20 19:00 - 2013-12-20 19:00 - 00000000 ____D C:\Users\Vaikless\Downloads\3DMGAME
2013-12-20 18:54 - 2013-12-20 18:54 - 04776575 _____ (Equi4 Software) C:\Users\Vaikless\Downloads\serverlauncher.exe
2013-12-19 19:42 - 2013-12-19 19:42 - 00002096 _____ C:\Users\Vaikless\Downloads\3e83dfa70fb61e044ba0f8d9925c6bc4.dlc
2013-12-16 17:47 - 2013-12-16 17:47 - 00001008 _____ C:\Users\Vaikless\Downloads\r28m4dxv83z2gy6.dlc
2013-12-14 15:03 - 2013-08-15 14:04 - 00000000 ____D C:\Windows\system32\MRT
2013-12-14 15:02 - 2011-03-09 13:05 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-14 14:39 - 2013-12-14 14:39 - 00000236 _____ C:\Windows\LkmdfCoInst.log
2013-12-14 14:39 - 2011-03-06 02:36 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2013-12-12 20:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-12 18:03 - 2013-12-12 18:03 - 00016496 _____ C:\Users\Vaikless\Downloads\UL_f4zwfxmksd1r.dlc
2013-12-12 09:06 - 2009-07-14 05:45 - 05163624 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-12 00:40 - 2011-03-06 03:05 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 23:28 - 2013-12-11 23:28 - 86333440 _____ C:\Users\Vaikless\Downloads\YouPorn - Cute Blonde.mpg
2013-12-11 23:28 - 2013-12-11 23:27 - 36227072 _____ C:\Users\Vaikless\Downloads\YouPorn - Hot 18yo college girl fucked at home POV.mpg
2013-12-11 23:10 - 2012-04-03 09:47 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 23:10 - 2012-04-03 09:47 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 23:10 - 2011-05-16 07:29 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 14:39 - 2013-12-11 14:39 - 00005296 _____ C:\Users\Vaikless\Downloads\RD2_GER_1080p_BRay_x264_-_VCF-zkj33xms969 (1).dlc
2013-12-10 01:04 - 2013-12-10 01:04 - 00000000 ____D C:\Program Files (x86)\Xvid
2013-12-10 01:04 - 2013-09-29 19:33 - 00000000 ____D C:\ProgramData\Package Cache
2013-12-09 20:58 - 2013-12-09 20:58 - 00014404 _____ C:\Users\Vaikless\Downloads\8fbd7ce0a7277d0cefd297a771bcb28d.dlc
2013-12-09 18:33 - 2013-12-09 18:32 - 14396606 _____ C:\Users\Vaikless\Downloads\test_1280x720.mp4
2013-12-09 00:22 - 2012-03-06 23:32 - 00004108 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2854172247-3498098367-280033443-1001UA
2013-12-09 00:22 - 2012-03-06 23:32 - 00003712 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2854172247-3498098367-280033443-1001Core
2013-12-05 22:30 - 2013-12-05 22:30 - 00005296 _____ C:\Users\Vaikless\Downloads\RD2_GER_1080p_BRay_x264_-_VCF-zkj33xms969.dlc
2013-12-04 01:25 - 2011-03-06 02:10 - 00001421 _____ C:\Users\Vaikless\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-04 01:25 - 2011-03-06 02:01 - 00000000 ____D C:\Windows\Panther
2013-12-04 01:25 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-03 20:54 - 2013-12-03 20:51 - 00009768 _____ C:\Windows\IE11_main.log
2013-12-03 20:51 - 2013-12-03 20:51 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-12-03 20:51 - 2013-12-03 20:51 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-12-03 20:51 - 2013-12-03 20:51 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-12-03 20:51 - 2013-12-03 20:51 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-12-03 20:51 - 2013-12-03 20:51 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-12-03 20:51 - 2013-12-03 20:51 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-12-03 20:51 - 2013-12-03 20:51 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-12-03 20:51 - 2013-12-03 20:51 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-12-03 20:51 - 2013-12-03 20:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-12-03 19:05 - 2013-12-03 13:07 - 00000000 ____D C:\Users\Vaikless\Desktop\Kill them with color
2013-12-03 18:55 - 2011-03-12 00:14 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-12-03 17:19 - 2013-12-03 17:19 - 00000253 _____ C:\Users\Vaikless\AppData\Roaming\BreakingPoint_Login.ini
2013-12-03 17:13 - 2013-12-03 17:13 - 00000000 ____D C:\Breaking Point
2013-12-03 17:00 - 2013-12-03 17:00 - 00003156 _____ C:\Windows\System32\Tasks\{F32244A8-A922-4E7F-A573-FC8C0F6F7A40}

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-30 15:11

==================== End Of Log ============================
--- --- ---
Geändert von Vaikless (02.01.2014 um 13:20 Uhr)

Alt 02.01.2014, 16:36   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Search Conduit - Standard

Search Conduit


Hi,

poste mal noch bitte die LOgfiles der Tools.
__________________

__________________
Alt 04.01.2014, 14:48   #3
Vaikless
 
Search Conduit - Standard

Search Conduit


hallo,

von jedem einzelnen scanner? oder was meinst du mit tools?

Malwarebytes Anti-Malware 1.75.0.1300
Zitat:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.01.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Vaikless :: VAIKLESS-PC [Administrator]

03.01.2014 11:18:27
mbam-log-2014-01-03 (11-18-27).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 476788
Laufzeit: 39 Minute(n), 4 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
AdwCleaner v3.016 funde
AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.016 - Bericht erstellt am 03/01/2014 um 12:01:19
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Vaikless - VAIKLESS-PC
# Gestartet von : C:\Users\Vaikless\Desktop\adwcleaner.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v

[ Datei : C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Vaikless\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gefunden : urls_to_restore_on_startup
Gefunden : urls_to_restore_on_startup
Gefunden : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [901 octets] - [03/01/2014 12:01:19]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [960 octets] ##########
--- --- ---


ADWcleaner nach reboot
AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.016 - Bericht erstellt am 03/01/2014 um 12:03:27
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Vaikless - VAIKLESS-PC
# Gestartet von : C:\Users\Vaikless\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v

[ Datei : C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\prefs.js ]


-\\ Google Chrome v

[ Datei : C:\Users\Vaikless\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [1039 octets] - [03/01/2014 12:01:19]
AdwCleaner[S0].txt - [884 octets] - [03/01/2014 12:03:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [943 octets] ##########
--- --- ---


JRT

Zitat:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 7 Professional x64
Ran by Vaikless on 03.01.2014 at 12:25:30,80
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Vaikless\AppData\Roaming\mozilla\firefox\profiles\jvlgbzgp.default\extensions\staged
Successfully deleted the following from C:\Users\Vaikless\AppData\Roaming\mozilla\firefox\profiles\jvlgbzgp.default\prefs.js

user_pref("extensions.vidbar.usersearch-url", "hxxp://bing.zugotoolbar.com/s/?site=Bing&pid=87&q=");
Emptied folder: C:\Users\Vaikless\AppData\Roaming\mozilla\firefox\profiles\jvlgbzgp.default\minidumps [20 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.01.2014 at 12:29:43,72
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
ESET habe ich auch nochmal gestartet läuft momentan noch

ESET:

Zitat:
ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=2cf3f016f58ef445ad78ddf3f46a96b5
# engine=16484
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-02 12:15:47
# local_time=2014-01-02 01:15:47 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 15138861 140294797 0 0
# scanned=261071
# found=7
# cleaned=0
# scan_time=2692
sh=BAC5FFF796D05C93E7C6509951277AA7669B7794 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm" ac=I fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\myPCBackup.zip"
sh=BD13836EC09297DFD24AB7A518A13FF86DB7627E ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm" ac=I fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\Pricepeep22.zip"
sh=BAC5FFF796D05C93E7C6509951277AA7669B7794 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\myPCBackup.zip"
sh=BD13836EC09297DFD24AB7A518A13FF86DB7627E ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\Pricepeep22.zip"
sh=D4C436FDC99034BC7EECCE960647A3ACB0CE0B7C ft=1 fh=2fb05321752ea8cf vn="a variant of Win32/Skintrim.LS trojan" ac=I fn="C:\Users\Vaikless\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JT2LW7FS\download[1].php"
sh=74A8FBA1D249306A8EA059B1EE81248FC798FC96 ft=1 fh=f0dc34d52d47e5f6 vn="a variant of Win32/Kryptik.BPVX trojan" ac=I fn="C:\Users\Vaikless\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OFE7X3QC\LollipopInstaller_14762[1].exe"
sh=EB354F06D3DA9919120774A3F5816095883131C0 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H application" ac=I fn="C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\extensions\staged\ioyu7iu@zc-eiua.org\content\bg.js"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=2cf3f016f58ef445ad78ddf3f46a96b5
# engine=16487
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-02 02:14:30
# local_time=2014-01-02 03:14:30 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 15145984 140301920 0 0
# scanned=611727
# found=9
# cleaned=7
# scan_time=5541
sh=BAC5FFF796D05C93E7C6509951277AA7669B7794 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\myPCBackup.zip"
sh=BD13836EC09297DFD24AB7A518A13FF86DB7627E ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\Pricepeep22.zip"
sh=BAC5FFF796D05C93E7C6509951277AA7669B7794 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm (cleaned by deleting - quarantined)" ac=C fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\myPCBackup.zip"
sh=BD13836EC09297DFD24AB7A518A13FF86DB7627E ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip worm (cleaned by deleting - quarantined)" ac=C fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\Pricepeep22.zip"
sh=D4C436FDC99034BC7EECCE960647A3ACB0CE0B7C ft=1 fh=2fb05321752ea8cf vn="a variant of Win32/Skintrim.LS trojan (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Vaikless\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JT2LW7FS\download[1].php"
sh=74A8FBA1D249306A8EA059B1EE81248FC798FC96 ft=1 fh=f0dc34d52d47e5f6 vn="a variant of Win32/Kryptik.BPVX trojan (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Vaikless\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OFE7X3QC\LollipopInstaller_14762[1].exe"
sh=EB354F06D3DA9919120774A3F5816095883131C0 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H application (cleaned by deleting - quarantined)" ac=C fn="C:\Users\Vaikless\AppData\Roaming\Mozilla\Firefox\Profiles\jvlgbzgp.default\extensions\staged\ioyu7iu@zc-eiua.org\content\bg.js"
sh=8FCCC46311F67DD17FDBC0124C5ACB91E4FD8C55 ft=1 fh=f9c15dce14dd30ee vn="a variant of Win32/Packed.VMProtect.ABD trojan (cleaned by deleting - quarantined)" ac=C fn="D:\Downloads\r28m4dxv83z2gy6\Game\7 Days To Die\steam_api.dll"
sh=B92968949C25789806FA548A32D9B2985B893645 ft=1 fh=643e99e4ed4640fe vn="a variant of Win32/Packed.VMProtect.AAA trojan (cleaned by deleting - quarantined)" ac=C fn="D:\Downloads\r28m4dxv83z2gy6\Game\7 Days To Die\steam_api64.dll"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=2cf3f016f58ef445ad78ddf3f46a96b5
# engine=16499
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-03 05:26:33
# local_time=2014-01-03 06:26:33 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 15243907 140399843 0 0
# scanned=611382
# found=3
# cleaned=3
# scan_time=21329
sh=3F90321BCC6A98C3EA6BE75F02613AB3D1A7B9D8 ft=0 fh=0000000000000000 vn="multiple threats (deleted - quarantined)" ac=C fn="D:\Downloads\r28m4dxv83z2gy6\test.rar"
sh=18E2640CCFA5BFC4E9647549B7043008E3553E89 ft=0 fh=0000000000000000 vn="multiple threats (deleted - quarantined)" ac=C fn="D:\Downloads\r28m4dxv83z2gy6\Game\fotos.7z"
sh=53EE4519766E760A638BB29C188421404AE5E533 ft=0 fh=0000000000000000 vn="multiple threats (deleted - quarantined)" ac=C fn="D:\Downloads\r28m4dxv83z2gy6\Game\test2.zip"
Security Check version 0.99.78
Zitat:
Results of screen317's Security Check version 0.99.78
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
Malwarebytes Anti-Malware Version 1.75.0.1300
Java 7 Update 45
Adobe Flash Player 11.9.900.170
Adobe Reader 10.1.8 Adobe Reader out of Date!
Google Chrome 31.0.1650.57
Google Chrome 31.0.1650.63
````````Process Check: objlist.exe by Laurent````````
Microsoft Security Essentials MSMpEng.exe
Microsoft Security Essentials msseces.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
__________________
Alt 05.01.2014, 11:56   #4
schrauber
/// the machine
/// TB-Ausbilder
 
Search Conduit - Standard

Search Conduit


Sieht gut aus, aktuell noch Probleme? Die 3 Funde von ESET kannste manuell löschen.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 05.01.2014, 20:01   #5
Vaikless
 
Search Conduit - Standard

Search Conduit


ja, leider öffnet sich jedes mal wenn ich den browser starte diese seite:

Zitat:
!!!!! search.conduit.com/?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP7A38ACB1-949D-43F5-B919-BE22B7335497&SSPV=
obwohl alle einstellungen als startseite google.de angeben.

und in einem 2. tab öffnet sich immer diese seite mit:

Zitat:
!!!!! google.de/?gws_rd=cr&ei=eavJUvqdJZDPsgbkwoHoBQ

das erste mit hxxp:// das 2. mit https://www. und beides natürlich ohne "!!!!!"


Alt 06.01.2014, 16:35   #6
schrauber
/// the machine
/// TB-Ausbilder
 
Search Conduit - Standard

Search Conduit


Den Browser komplett deinstallieren, keine Daten behalten und neu installieren.
__________________
--> Search Conduit

Antwort

Themen zu Search Conduit
abgesicherten, adblock, bedrohungen, eingefangen, folgende, gefangen, google, hallo zusammen, helper.exe, laufen, launch, lws.exe, netzwerk, plug-in, problem, programme, scanner, search, thema, toolbar, win32/adware.multiplug.h, win32/bagle.gen.zip, win32/kryptik.bpvx, win32/skintrim.ls, zusammen


« COM Surrogate Prozess macht den Arbeitsspeicher voll | Ereignissprotokolle fehler nach Malware »


Ähnliche Themen: Search Conduit


  1. Lab.search.conduit.com entfernen
    Anleitungen, FAQs & Links - 08.05.2014 (2)
  2. conduit search
    Plagegeister aller Art und deren Bekämpfung - 24.04.2014 (7)
  3. Search Conduit Entfernen
    Log-Analyse und Auswertung - 15.04.2014 (16)
  4. Conduit Search
    Log-Analyse und Auswertung - 23.03.2014 (7)
  5. Conduit Search Befall, Pop-Ups und Werbung
    Log-Analyse und Auswertung - 19.02.2014 (2)
  6. Search protect - conduit
    Plagegeister aller Art und deren Bekämpfung - 27.01.2014 (17)
  7. Windows 7: Search Protect by Conduit
    Log-Analyse und Auswertung - 17.01.2014 (19)
  8. search.conduit - Werbebanner und Pop-Ups
    Plagegeister aller Art und deren Bekämpfung - 15.01.2014 (7)
  9. search.conduit-Trojaner
    Plagegeister aller Art und deren Bekämpfung - 12.01.2014 (9)
  10. Search.conduit.com auf Windows 8
    Plagegeister aller Art und deren Bekämpfung - 05.01.2014 (7)
  11. Windows7: Search Protect by Conduit
    Log-Analyse und Auswertung - 04.01.2014 (7)
  12. Search Conduit entfernen
    Plagegeister aller Art und deren Bekämpfung - 31.12.2013 (7)
  13. search protect by conduit
    Plagegeister aller Art und deren Bekämpfung - 19.12.2013 (11)
  14. Search Protect by Conduit (u.a.?)
    Log-Analyse und Auswertung - 10.12.2013 (11)
  15. Conduit Search - ist das ein Trojaner?
    Plagegeister aller Art und deren Bekämpfung - 18.09.2013 (5)
  16. Search conduit aus Firefox entfernen?
    Plagegeister aller Art und deren Bekämpfung - 06.08.2013 (13)
  17. search protect by conduit
    Plagegeister aller Art und deren Bekämpfung - 31.05.2013 (8)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Search Conduit - Hallo zusammen, ich habe mir die Search Conduit Toolbar eingefangen und Nach dem Problem gegoogelt. Bin auf dieses Forum gestoßen und habe all die Schritte aus dem folgenden Thema befolgt: - Search Conduit...
Archiv
Du betrachtest: Search Conduit auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131