Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?

BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?


Log-Analyse und Auswertung: BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 19.01.2014, 12:50   #6
NeTTi13
 
BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert? - Standard

BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014
Ran by Janet (administrator) on JANET-PC on 19-01-2014 12:45:23
Running from C:\Users\Janet\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
() C:\Windows\SysWOW64\PSIService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Dolby Laboratories Inc.) C:\DOLBY PCEE4\pcee4.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-10-08] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2280232 2010-07-29] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-10] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2189416 2011-03-09] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [615584 2011-01-20] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-01-20] (Atheros Commnucations)
HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831528 2011-05-10] (Acer Incorporated)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\System32\LogiLDA.dll [1580368 2010-11-03] (Logitech, Inc.)
HKLM\...\Run: [Corel Photo Downloader] - C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531272 2007-08-28] (Corel, Inc.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2726728 2010-03-24] (CANON INC.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340336 2010-09-28] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-09-18] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-09-18] (Egis Technology Inc.)
HKLM-x32\...\Run: [Norton Online Backup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-03-09] (NTI Corporation)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1081424 2011-03-14] (Dritek System Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Dolby PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-05-09] (CyberLink Corp.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-05-23] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-08-21] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [17418928 2012-07-13] (Skype Technologies S.A.)
HKCU\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-05-23] (Samsung)
HKCU\...\Run: [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560 2013-05-22] (Samsung Electronics)
HKCU\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-23] (Samsung)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [226920 2011-03-30] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [193128 2011-03-30] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://t-online.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll ()
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
DPF: HKLM-x32 {3CA45906-EF10-4E4E-9BE4-B444D220FCB0} hxxp://ua.foto.com/ImageUploader6.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Janet\AppData\Roaming\Mozilla\Firefox\Profiles\0du26tms.Janet
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Janet\AppData\Roaming\Mozilla\Firefox\Profiles\0du26tms.Janet\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-17] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-02] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1011768 2013-12-18] (Avira Operations GmbH & Co. KG)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [257344 2011-03-09] (NTI Corporation)
R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] ()

==================== Drivers (Whitelisted) ====================

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [138152 2013-11-26] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [138152 2013-11-26] (SlySoft, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-02] (Avira Operations GmbH & Co. KG)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-05-22] ()
S3 MHIKEY10; C:\Windows\System32\Drivers\MHIKEY10x64.sys [60288 2010-09-15] (Generic USB smartcard reader)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-19 12:45 - 2014-01-19 12:45 - 00000000 ____D C:\Users\Janet\Downloads\FRST-OlderVersion
2014-01-19 12:32 - 2014-01-19 12:32 - 00092280 _____ C:\Users\Janet\Desktop\JRT.txt
2014-01-19 12:24 - 2014-01-19 12:24 - 00000000 ____D C:\Windows\ERUNT
2014-01-19 11:58 - 2014-01-19 12:05 - 00000000 ____D C:\AdwCleaner
2014-01-19 11:33 - 2014-01-19 11:33 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Malwarebytes
2014-01-19 11:32 - 2014-01-19 11:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-19 11:32 - 2014-01-19 11:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-19 11:32 - 2014-01-19 11:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-19 11:32 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-19 11:28 - 2014-01-19 11:28 - 01236282 _____ C:\Users\Janet\Downloads\adwcleaner.exe
2014-01-19 11:28 - 2014-01-19 11:28 - 01037068 _____ (Thisisu) C:\Users\Janet\Downloads\JRT.exe
2014-01-19 11:27 - 2014-01-19 11:27 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Janet\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-18 18:42 - 2014-01-18 18:42 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2014-01-18 16:05 - 2014-01-18 16:05 - 00000000 ____D C:\Users\Janet\Documents\My PSP Files
2014-01-18 15:26 - 2014-01-18 15:26 - 00032980 _____ C:\ComboFix.txt
2014-01-18 15:12 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2014-01-18 15:12 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2014-01-18 15:12 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-01-18 15:12 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-01-18 15:12 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-01-18 15:12 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2014-01-18 15:12 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2014-01-18 15:12 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2014-01-18 15:11 - 2014-01-18 15:26 - 00000000 ____D C:\Qoobox
2014-01-18 15:11 - 2014-01-18 15:24 - 00000000 ____D C:\Windows\erdnt
2014-01-17 21:53 - 2014-01-17 21:54 - 00047528 _____ C:\Users\Janet\Downloads\Addition.txt
2014-01-17 21:52 - 2014-01-19 12:45 - 00017777 _____ C:\Users\Janet\Downloads\FRST.txt
2014-01-17 21:51 - 2014-01-19 12:45 - 00000000 ____D C:\FRST
2014-01-17 21:50 - 2014-01-17 21:50 - 00000472 _____ C:\Users\Janet\Downloads\defogger_disable.log
2014-01-17 21:50 - 2014-01-17 21:50 - 00000000 _____ C:\Users\Janet\defogger_reenable
2014-01-17 21:43 - 2014-01-17 21:43 - 00370610 _____ C:\Users\Janet\Downloads\gmer_2.1.19323.zip
2014-01-17 21:42 - 2014-01-19 12:45 - 02076672 _____ (Farbar) C:\Users\Janet\Downloads\FRST64.exe
2014-01-17 21:33 - 2014-01-17 21:34 - 00050477 _____ C:\Users\Janet\Downloads\Defogger.exe
2014-01-17 07:49 - 2014-01-17 07:49 - 00002029 _____ C:\Users\Janet\Desktop\Entfernen des Avira EU-Cleaners.lnk
2014-01-17 07:49 - 2014-01-17 07:49 - 00001973 _____ C:\Users\Janet\Desktop\Avira EU-Cleaner.lnk
2014-01-16 20:28 - 2014-01-16 20:28 - 00000000 ____D C:\Users\Janet\Documents\Adobe
2014-01-16 16:55 - 2014-01-16 20:46 - 00000000 ____D C:\Users\Janet\Eigene DVD
2014-01-16 16:54 - 2014-01-16 16:54 - 00000000 ____D C:\Users\Janet\Downloads\Neuer Ordner
2014-01-15 23:22 - 2014-01-16 16:52 - 00000000 ____D C:\Users\Janet\Documents\Aimersoft Video Converter Ultimate
2014-01-15 23:22 - 2014-01-15 23:22 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Aimersoft Video Converter Ultimate
2014-01-15 23:21 - 2014-01-16 16:49 - 00000000 ____D C:\ProgramData\Aimersoft Video Converter Ultimate
2014-01-15 23:21 - 2014-01-15 23:21 - 00001446 _____ C:\Users\Public\Desktop\Aimersoft Video Converter Ultimate.lnk
2014-01-15 23:21 - 2014-01-15 23:21 - 00000000 ____D C:\Users\Janet\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-01-15 23:21 - 2014-01-15 23:21 - 00000000 ____D C:\Program Files\Common Files\Aimersoft
2014-01-15 23:21 - 2013-08-23 13:36 - 00721263 _____ () C:\Windows\SysWOW64\AiCM64.dll
2014-01-15 23:21 - 2013-08-07 14:31 - 00214528 _____ () C:\Windows\SysWOW64\AiCM32.dll
2014-01-15 23:19 - 2014-01-15 23:20 - 36573803 _____ (Aimersoft Software                                          ) C:\Users\Janet\Downloads\aimer-video-ultimate_full523.exe
2014-01-15 21:53 - 2014-01-15 21:53 - 00000000 ____D C:\ProgramData\xml_param
2014-01-15 21:47 - 2014-01-15 21:47 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Aimersoft DVD Ripper
2014-01-15 21:46 - 2014-01-15 23:21 - 00000000 ____D C:\Program Files (x86)\Aimersoft
2014-01-15 21:46 - 2014-01-15 21:47 - 00001220 _____ C:\Users\Janet\Desktop\Aimersoft DVD Ripper.lnk
2014-01-15 21:46 - 2014-01-15 21:46 - 00000000 ____D C:\Users\Janet\Documents\Aimersoft DVD Ripper
2014-01-15 21:46 - 2014-01-15 21:46 - 00000000 ____D C:\Users\Janet\AppData\Local\Aimersoft
2014-01-15 21:46 - 2014-01-15 21:46 - 00000000 ____D C:\ProgramData\Aimersoft DVD Ripper
2014-01-15 21:46 - 2013-05-07 09:08 - 00892928 _____ (Free Software Foundation) C:\Windows\SysWOW64\iconv.dll
2014-01-15 21:46 - 2013-05-07 09:08 - 00675840 _____ () C:\Windows\SysWOW64\ac3filter.ax
2014-01-15 21:46 - 2013-05-07 09:08 - 00496640 _____ C:\Windows\SysWOW64\xvid.ax
2014-01-15 20:49 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 20:49 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 20:49 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 20:49 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 20:49 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 20:49 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 20:49 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 20:49 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 20:49 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 00:22 - 2014-01-15 00:23 - 00000021 _____ C:\Windows\DVDShrink.txt
2014-01-15 00:21 - 2014-01-15 00:21 - 00001157 _____ C:\Users\Public\Desktop\AVS DVD Copy.lnk
2014-01-15 00:21 - 2011-09-22 19:55 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2014-01-15 00:21 - 2011-09-22 19:55 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2014-01-15 00:19 - 2014-01-15 00:20 - 14837688 _____ (Online Media Technologies Ltd.                              ) C:\Users\Janet\Downloads\AVSDVDCopy.exe
2014-01-15 00:11 - 2014-01-15 00:11 - 00000000 ____D C:\Users\Janet\AppData\Roaming\7168
2014-01-15 00:10 - 2014-01-15 00:10 - 00000000 ____D C:\Users\Janet\Documents\AnyDVDHD
2014-01-15 00:04 - 2014-01-17 07:24 - 00000040 ___SH C:\ProgramData\.zreglib
2014-01-15 00:04 - 2014-01-15 00:04 - 00001105 _____ C:\Users\Public\Desktop\AnyDVD.lnk
2014-01-15 00:04 - 2014-01-15 00:04 - 00000000 ____D C:\ProgramData\SlySoft
2014-01-15 00:04 - 2014-01-15 00:04 - 00000000 ____D C:\Program Files (x86)\SlySoft
2014-01-14 22:40 - 2014-01-16 21:20 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2014-01-14 22:40 - 2014-01-14 23:36 - 00000000 ____D C:\Users\Janet\Documents\DVDFab9
2014-01-14 22:03 - 2014-01-14 22:05 - 00000000 ____D C:\ProgramData\DVD Shrink
2014-01-14 22:02 - 2014-01-14 22:03 - 00598086 _____ (DVD Shrink) C:\Users\Janet\Downloads\DVDShrink.exe
2014-01-12 09:29 - 2014-01-19 12:07 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2014-01-12 09:29 - 2014-01-12 09:29 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2014-01-08 16:18 - 2014-01-08 16:18 - 00000724 _____ C:\Users\Janet\Desktop\index.html
2014-01-03 21:15 - 2014-01-03 21:29 - 990570856 _____ C:\Users\Janet\Downloads\Die_Weihnachtsgans_Auguste_2013-12-22_1545_307454.mp4
2013-12-30 21:47 - 2013-12-30 21:47 - 00000132 _____ C:\Users\Janet\Desktop\DVD Fatburner.ashprj
2013-12-26 21:05 - 2013-12-26 21:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-25 22:31 - 2013-12-25 22:31 - 00000000 ___RD C:\Users\Janet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices

==================== One Month Modified Files and Folders =======

2014-01-19 12:46 - 2014-01-17 21:52 - 00017777 _____ C:\Users\Janet\Downloads\FRST.txt
2014-01-19 12:45 - 2014-01-19 12:45 - 00000000 ____D C:\Users\Janet\Downloads\FRST-OlderVersion
2014-01-19 12:45 - 2014-01-17 21:51 - 00000000 ____D C:\FRST
2014-01-19 12:45 - 2014-01-17 21:42 - 02076672 _____ (Farbar) C:\Users\Janet\Downloads\FRST64.exe
2014-01-19 12:32 - 2014-01-19 12:32 - 00092280 _____ C:\Users\Janet\Desktop\JRT.txt
2014-01-19 12:24 - 2014-01-19 12:24 - 00000000 ____D C:\Windows\ERUNT
2014-01-19 12:19 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-19 12:19 - 2009-07-14 05:45 - 00016752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-19 12:12 - 2012-05-16 18:29 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-19 12:10 - 2011-09-14 18:47 - 00000000 ____D C:\ProgramData\clear.fi
2014-01-19 12:07 - 2014-01-12 09:29 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2014-01-19 12:07 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-19 12:07 - 2009-07-14 05:51 - 00145455 _____ C:\Windows\setupact.log
2014-01-19 12:06 - 2011-07-26 06:44 - 02026351 _____ C:\Windows\WindowsUpdate.log
2014-01-19 12:05 - 2014-01-19 11:58 - 00000000 ____D C:\AdwCleaner
2014-01-19 11:56 - 2011-09-15 10:33 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Skype
2014-01-19 11:54 - 2010-11-21 04:47 - 00101710 _____ C:\Windows\PFRO.log
2014-01-19 11:33 - 2014-01-19 11:33 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Malwarebytes
2014-01-19 11:32 - 2014-01-19 11:32 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-19 11:32 - 2014-01-19 11:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-19 11:32 - 2014-01-19 11:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-19 11:28 - 2014-01-19 11:28 - 01236282 _____ C:\Users\Janet\Downloads\adwcleaner.exe
2014-01-19 11:28 - 2014-01-19 11:28 - 01037068 _____ (Thisisu) C:\Users\Janet\Downloads\JRT.exe
2014-01-19 11:27 - 2014-01-19 11:27 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Janet\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-19 11:23 - 2011-09-16 10:52 - 00000000 ____D C:\Users\Janet\AppData\Local\CrashDumps
2014-01-18 18:42 - 2014-01-18 18:42 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2014-01-18 16:05 - 2014-01-18 16:05 - 00000000 ____D C:\Users\Janet\Documents\My PSP Files
2014-01-18 16:05 - 2011-09-16 08:31 - 00000000 ____D C:\Users\Janet\AppData\Local\Corel
2014-01-18 16:05 - 2011-09-16 08:30 - 00003088 ___SH C:\Windows\SysWOW64\KGyGaAvL.sys
2014-01-18 15:26 - 2014-01-18 15:26 - 00032980 _____ C:\ComboFix.txt
2014-01-18 15:26 - 2014-01-18 15:11 - 00000000 ____D C:\Qoobox
2014-01-18 15:24 - 2014-01-18 15:11 - 00000000 ____D C:\Windows\erdnt
2014-01-18 15:24 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2014-01-18 15:10 - 2011-10-04 20:27 - 00000000 ____D C:\Users\Janet\Downloads\Programme
2014-01-18 14:55 - 2012-06-21 16:29 - 00000000 ____D C:\Users\Janet\Tracing
2014-01-17 23:48 - 2011-09-15 10:26 - 00000000 ____D C:\Users\Janet\AppData\Roaming\SoftGrid Client
2014-01-17 21:54 - 2014-01-17 21:53 - 00047528 _____ C:\Users\Janet\Downloads\Addition.txt
2014-01-17 21:50 - 2014-01-17 21:50 - 00000472 _____ C:\Users\Janet\Downloads\defogger_disable.log
2014-01-17 21:50 - 2014-01-17 21:50 - 00000000 _____ C:\Users\Janet\defogger_reenable
2014-01-17 21:50 - 2011-09-13 21:37 - 00000000 ____D C:\Users\Janet
2014-01-17 21:43 - 2014-01-17 21:43 - 00370610 _____ C:\Users\Janet\Downloads\gmer_2.1.19323.zip
2014-01-17 21:34 - 2014-01-17 21:33 - 00050477 _____ C:\Users\Janet\Downloads\Defogger.exe
2014-01-17 15:04 - 2013-09-07 19:49 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Free Download Manager
2014-01-17 07:49 - 2014-01-17 07:49 - 00002029 _____ C:\Users\Janet\Desktop\Entfernen des Avira EU-Cleaners.lnk
2014-01-17 07:49 - 2014-01-17 07:49 - 00001973 _____ C:\Users\Janet\Desktop\Avira EU-Cleaner.lnk
2014-01-17 07:24 - 2014-01-15 00:04 - 00000040 ___SH C:\ProgramData\.zreglib
2014-01-16 23:50 - 2013-01-18 23:21 - 00000000 ____D C:\ProgramData\PhotoME
2014-01-16 23:49 - 2012-09-25 18:41 - 00000000 ____D C:\Users\Janet\AppData\Local\Google
2014-01-16 23:49 - 2012-09-25 18:41 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-16 23:48 - 2012-07-19 19:25 - 00000000 ____D C:\Program Files (x86)\OnlineFotoservice
2014-01-16 23:47 - 2012-07-19 21:47 - 00000000 ____D C:\Program Files (x86)\Pixum
2014-01-16 21:20 - 2014-01-14 22:40 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2014-01-16 20:46 - 2014-01-16 16:55 - 00000000 ____D C:\Users\Janet\Eigene DVD
2014-01-16 20:28 - 2014-01-16 20:28 - 00000000 ____D C:\Users\Janet\Documents\Adobe
2014-01-16 20:28 - 2011-09-13 21:46 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Adobe
2014-01-16 18:59 - 2011-07-26 16:36 - 00654852 _____ C:\Windows\system32\perfh007.dat
2014-01-16 18:59 - 2011-07-26 16:36 - 00130434 _____ C:\Windows\system32\perfc007.dat
2014-01-16 18:59 - 2009-07-14 06:13 - 01500294 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-16 16:54 - 2014-01-16 16:54 - 00000000 ____D C:\Users\Janet\Downloads\Neuer Ordner
2014-01-16 16:52 - 2014-01-15 23:22 - 00000000 ____D C:\Users\Janet\Documents\Aimersoft Video Converter Ultimate
2014-01-16 16:49 - 2014-01-15 23:21 - 00000000 ____D C:\ProgramData\Aimersoft Video Converter Ultimate
2014-01-16 16:43 - 2009-07-14 05:45 - 03315920 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-16 00:43 - 2013-08-15 21:33 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 00:40 - 2011-09-17 19:34 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 23:22 - 2014-01-15 23:22 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Aimersoft Video Converter Ultimate
2014-01-15 23:21 - 2014-01-15 23:21 - 00001446 _____ C:\Users\Public\Desktop\Aimersoft Video Converter Ultimate.lnk
2014-01-15 23:21 - 2014-01-15 23:21 - 00000000 ____D C:\Users\Janet\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
2014-01-15 23:21 - 2014-01-15 23:21 - 00000000 ____D C:\Program Files\Common Files\Aimersoft
2014-01-15 23:21 - 2014-01-15 21:46 - 00000000 ____D C:\Program Files (x86)\Aimersoft
2014-01-15 23:20 - 2014-01-15 23:19 - 36573803 _____ (Aimersoft Software                                          ) C:\Users\Janet\Downloads\aimer-video-ultimate_full523.exe
2014-01-15 21:53 - 2014-01-15 21:53 - 00000000 ____D C:\ProgramData\xml_param
2014-01-15 21:47 - 2014-01-15 21:47 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Aimersoft DVD Ripper
2014-01-15 21:47 - 2014-01-15 21:46 - 00001220 _____ C:\Users\Janet\Desktop\Aimersoft DVD Ripper.lnk
2014-01-15 21:46 - 2014-01-15 21:46 - 00000000 ____D C:\Users\Janet\Documents\Aimersoft DVD Ripper
2014-01-15 21:46 - 2014-01-15 21:46 - 00000000 ____D C:\Users\Janet\AppData\Local\Aimersoft
2014-01-15 21:46 - 2014-01-15 21:46 - 00000000 ____D C:\ProgramData\Aimersoft DVD Ripper
2014-01-15 07:23 - 2013-09-15 13:27 - 00000000 ____D C:\Users\Janet\AppData\Roaming\DivX
2014-01-15 00:23 - 2014-01-15 00:22 - 00000021 _____ C:\Windows\DVDShrink.txt
2014-01-15 00:22 - 2011-10-04 20:34 - 00000000 ____D C:\Users\Janet\AppData\Roaming\AVS4YOU
2014-01-15 00:21 - 2014-01-15 00:21 - 00001157 _____ C:\Users\Public\Desktop\AVS DVD Copy.lnk
2014-01-15 00:21 - 2012-02-04 23:32 - 00000000 ____D C:\Users\Janet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
2014-01-15 00:21 - 2011-10-04 20:32 - 00000000 ____D C:\Program Files (x86)\AVS4YOU
2014-01-15 00:20 - 2014-01-15 00:19 - 14837688 _____ (Online Media Technologies Ltd.                              ) C:\Users\Janet\Downloads\AVSDVDCopy.exe
2014-01-15 00:11 - 2014-01-15 00:11 - 00000000 ____D C:\Users\Janet\AppData\Roaming\7168
2014-01-15 00:10 - 2014-01-15 00:10 - 00000000 ____D C:\Users\Janet\Documents\AnyDVDHD
2014-01-15 00:04 - 2014-01-15 00:04 - 00001105 _____ C:\Users\Public\Desktop\AnyDVD.lnk
2014-01-15 00:04 - 2014-01-15 00:04 - 00000000 ____D C:\ProgramData\SlySoft
2014-01-15 00:04 - 2014-01-15 00:04 - 00000000 ____D C:\Program Files (x86)\SlySoft
2014-01-14 23:36 - 2014-01-14 22:40 - 00000000 ____D C:\Users\Janet\Documents\DVDFab9
2014-01-14 22:16 - 2011-09-13 21:38 - 00000000 ____D C:\Users\Janet\AppData\Local\VirtualStore
2014-01-14 22:05 - 2014-01-14 22:03 - 00000000 ____D C:\ProgramData\DVD Shrink
2014-01-14 22:03 - 2014-01-14 22:02 - 00598086 _____ (DVD Shrink) C:\Users\Janet\Downloads\DVDShrink.exe
2014-01-12 09:29 - 2014-01-12 09:29 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2014-01-11 20:02 - 2012-02-16 22:55 - 00000000 ____D C:\Users\Janet\Documents\Rezepte
2014-01-08 16:23 - 2012-03-02 12:05 - 00000000 ____D C:\ProgramData\CanonIJPLM
2014-01-08 16:18 - 2014-01-08 16:18 - 00000724 _____ C:\Users\Janet\Desktop\index.html
2014-01-03 21:29 - 2014-01-03 21:15 - 990570856 _____ C:\Users\Janet\Downloads\Die_Weihnachtsgans_Auguste_2013-12-22_1545_307454.mp4
2013-12-30 21:47 - 2013-12-30 21:47 - 00000132 _____ C:\Users\Janet\Desktop\DVD Fatburner.ashprj
2013-12-27 20:57 - 2012-12-14 15:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-26 21:05 - 2013-12-26 21:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-25 22:31 - 2013-12-25 22:31 - 00000000 ___RD C:\Users\Janet\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices

Some content of TEMP:
====================
C:\Users\Janet\AppData\Local\Temp\avgnt.exe
C:\Users\Janet\AppData\Local\Temp\Quarantine.exe
C:\Users\Janet\AppData\Local\Temp\setup.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-10 20:18

==================== End Of Log ============================
--- --- ---


So alles erledigt.

 

Themen zu BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?
antivirus, auftrag, avira, bingbar, browser, canon, computer, converter, desktop, device driver, dllhost.exe, downloader, dvdvideosoft ltd., entfernen, error, eu-cleaner, fehler, firefox, flash player, free download, hdd0(c:, home, ie 11, launch, malware, mozilla, mp3, pmmupdate.exe, programm, realtek, registry, richtlinie, scan, security, svchost.exe, symantec, system, taskhost.exe, windows


« Trojaner yelp helperbar | Windows 8: Nationzoom restlos bereinigen »


Ähnliche Themen: BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?


  1. G Data blockierte Download, lud G Data-Update und läßt jetzt kein Java-Download zu
    Plagegeister aller Art und deren Bekämpfung - 18.01.2016 (6)
  2. PowerIso runtergeladen, unbefugte Programme wurden im Hintergrund installiert
    Plagegeister aller Art und deren Bekämpfung - 06.08.2015 (14)
  3. Mein Win7/64bit läd immer etwas im Hintergrund ,schreiben ist dadurch unmöglich.
    Log-Analyse und Auswertung - 22.04.2015 (5)
  4. Werbung im Hintergrund ohne etwas geöffnet zu haben
    Plagegeister aller Art und deren Bekämpfung - 05.12.2014 (4)
  5. Ständig wird etwas im Hintergrund geladen
    Plagegeister aller Art und deren Bekämpfung - 23.03.2013 (13)
  6. PC langsam und im Hintergrund ist immer etwas am laufen
    Plagegeister aller Art und deren Bekämpfung - 11.03.2013 (16)
  7. PC stürzt ab, Anwendung blockierte alles
    Log-Analyse und Auswertung - 04.10.2012 (26)
  8. Trotz bestehender Inetverbindung blockierte Browser nach Quarantänedurchführung
    Log-Analyse und Auswertung - 14.08.2012 (5)
  9. iexplore.exe startet im hintergrund und etwas sendet an 64.120.141.163
    Log-Analyse und Auswertung - 02.10.2011 (7)
  10. Ist bei mir alles in Ordnung? PC lahmt etwas ...
    Log-Analyse und Auswertung - 16.11.2010 (1)
  11. Nach einer Neuinstalation. Ist alles OK oder ist wieder etwas beschädigt ?
    Log-Analyse und Auswertung - 08.02.2009 (2)
  12. Rechner hat sich bis vor kurzem immer von selbst neugestartet, jetzt: Browser langsam
    Plagegeister aller Art und deren Bekämpfung - 26.09.2008 (1)
  13. System neu installiert?Jetzt Safe?
    Log-Analyse und Auswertung - 14.05.2006 (1)
  14. IST ALLES IN ORDNUNG?Etwas ist komisch?
    Log-Analyse und Auswertung - 20.04.2006 (4)
  15. Wie siehts jetzt mit meiner File aus? Bin nicht sicher ob alles bereinigt wurde
    Log-Analyse und Auswertung - 03.12.2005 (2)
  16. Erst Absturz, dann Neustart und jetzt alles etwas merkwürdig...
    Alles rund um Windows - 01.03.2005 (8)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert? - FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 Ran by Janet (administrator) on JANET-PC on 19-01-2014 12:45:23 Running from C:\Users\Janet\Downloads - BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert?...
Archiv
Du betrachtest: BKA-Meldung blockierte Browser (IE 11)-jetzt alles wie immer,wurde etwas im Hintergrund installiert? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19