Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Sicherheitshinweis von Avira

Sicherheitshinweis von Avira


Plagegeister aller Art und deren Bekämpfung: Sicherheitshinweis von Avira

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 2 von 3 1 2 3
Alt 15.02.2014, 15:23   #16
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


In welchem Browser hast Du das Problem?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 15.02.2014, 15:42   #17
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Ie 11
__________________
Alt 16.02.2014, 07:32   #18
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Setze folgendermassen den Internet Explorer zurück:
  • Öffne den Internet Explorer und gehe zu Extras -> Internetoptionen.
  • Klicke in der Registerkarte Erweitert unter "Internet Explorer-Einstellungen zurücksetzen" auf Zurücksetzen...
  • Klicke im Dialogfeld "Internet Explorer-Einstellungen zurücksetzen" zum Bestätigen auf Zurücksetzen.
(Hier findest du die bebilderte Anleitung.)


Frisches FRST log bitte. Sonst noch Probleme?
__________________
__________________
Alt 17.02.2014, 01:21   #19
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-02-2014 01
Ran by Homr (administrator) on HOME-PC on 14-02-2014 12:51:34
Running from C:\Users\Homr\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() c:\Creative Suite CS2\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(Octoshape ApS) C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
() C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Samsung) C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Adobe Sytems Incorporated) C:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Lavasoft) C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
() C:\Program Files (x86)\Vidalia Bundle\Tor\tor.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(BEETmobile) C:\Program Files (x86)\BEETmobile\BEETmobile.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Cherry\CDI\cdi.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Common Files\Cherry\Common\kbdhook64.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(RealNetworks, Inc.) C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-09-04] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2184520 2009-03-24] (CANON INC.)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe [4114264 2014-01-23] ()
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CherryKeyMan] - C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe [258100 2009-07-29] (ZF Electronics GmbH)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe Version Cue CS2] - c:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [TkBellExe] - c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2013-09-01] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKLM-x32\...\Run: [Ad-Aware Browsing Protection] - C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe [559696 2013-09-27] (Lavasoft)
HKU\.DEFAULT\...\RunOnce: [Ad-Watch Live!] - C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Octoshape Streaming Services] - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Vidalia] - C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe [6239727 2012-12-02] ()
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-02-03] (Samsung)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564992 2014-02-03] (Samsung)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [KiesPDLR.exe] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845120 2014-02-03] (Samsung)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {21170f26-e1b9-11de-a9e4-806e6f6e6963} - F:\Autorun.exe
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {e6c2a329-4653-11e3-97fc-001fcf4024e6} - G:\AutoRun.exe
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {e6c2a330-4653-11e3-97fc-001fcf4024e6} - G:\AutoRun.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDB07525E0C76CA01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
URLSearchHook: HKCU - (No Name) - {5786d022-540e-4699-b350-b4be0ae94b79} - No File
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
SearchScopes: HKCU - {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SparweltGutscheinAlarm.Sparwelt_Gutschein_Tool - {10945114-b19f-4614-8450-b25e444a1020} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {5786D022-540E-4699-B350-B4BE0AE94B79} -  No File
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} https://stream.web.de/mail/activex/mail_upload_11213.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {888078C6-70B2-4F88-8EE7-1F50DDEA6120} https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444552440000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Homr\AppData\Roaming\Mozilla\Firefox\Profiles\ips5ydjp.default
FF Homepage: hxxp://www.google.de/
FF NetworkProxy: "type", 0
FF Homepage: hxxp://start.iminent.com/?appId=51CBD309-3DC1-42BA-81E8-C3EB7070281A
FF SelectedSearchEngine: StartWeb
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player - C:\Users\Homr\AppData\Roaming\Move Networks\plugins\071802000001\npqmp071802000001.dll (Move Networks)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Homr\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Homr\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-01]
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-10-26]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-12] (Adobe Systems)
R2 Adobe Version Cue CS2; c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-25] (Avira Operations GmbH & Co. KG)
R2 BlueSoleil Hid Service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe [166520 2007-12-27] ()
R3 Cherry Device Interface; C:\Program Files (x86)\Cherry\CDI\cdi.exe [585774 2009-05-28] (ZF Electronics GmbH)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-02-10] ()
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe [702744 2014-01-23] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1326176 2012-06-27] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [681056 2012-06-27] (Secunia)
R2 Start BT in service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816 2007-12-27] ()
S2 SystemStore; C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe [14848 2012-04-24] ()
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580648 2012-07-17] (WiseCleaner.com)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletAudio; C:\Windows\SysWOW64\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\SysWOW64\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
R3 BT; C:\Windows\SysWOW64\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\SysWOW64\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\SysWOW64\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\SysWOW64\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-08-12] (Lavasoft AB)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [61592 2013-12-17] (NetFilterSDK.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-05] (Duplex Secure Ltd.)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [329800 2013-07-17] (BitDefender S.R.L.)
R3 VComm; C:\Windows\System32\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VComm; C:\Windows\SysWOW64\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\SysWOW64\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-14 12:51 - 2014-02-14 12:51 - 00024085 _____ () C:\Users\Homr\Desktop\FRST.txt
2014-02-14 12:51 - 2014-02-14 12:51 - 00000000 ____D () C:\Users\Homr\Desktop\FRST-OlderVersion
2014-02-14 12:50 - 2014-02-14 12:50 - 00001263 _____ () C:\Users\Homr\Desktop\checkup.txt
2014-02-14 12:49 - 2014-02-14 12:49 - 00987425 _____ () C:\Users\Homr\Desktop\SecurityCheck.exe
2014-02-14 00:29 - 2014-02-14 12:31 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0D607781-9ECF-4262-BB24-B3C3973243AC}
2014-02-12 21:10 - 2014-02-12 21:12 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0FB2E7E7-E4F1-4A86-AA4F-14AE5363AA70}
2014-02-12 21:09 - 2014-02-12 21:10 - 00000000 ____D () C:\Users\Homr\AppData\Local\adawarebp
2014-02-11 22:09 - 2014-02-11 22:14 - 00000000 ____D () C:\AdwCleaner
2014-02-11 21:19 - 2014-02-11 21:19 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-11 21:19 - 2014-02-11 21:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-11 21:19 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-10 22:11 - 2014-02-14 12:51 - 02152960 _____ (Farbar) C:\Users\Homr\Desktop\FRST64.exe
2014-02-10 22:11 - 2014-02-14 12:51 - 00000000 ____D () C:\FRST
2014-02-09 20:00 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-09 20:00 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-09 20:00 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-09 20:00 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-09 20:00 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-09 20:00 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-09 20:00 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-09 20:00 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-09 20:00 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-09 20:00 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-09 20:00 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-09 20:00 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-09 20:00 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-09 20:00 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-09 20:00 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-09 20:00 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-09 20:00 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-09 20:00 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-09 20:00 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-09 20:00 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-09 20:00 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-09 20:00 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-09 20:00 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-09 20:00 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-09 20:00 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-09 20:00 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-09 20:00 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-09 20:00 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-09 20:00 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-09 20:00 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-09 20:00 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-09 18:09 - 2014-02-09 18:09 - 00001409 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-09 16:45 - 2014-02-09 16:45 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-09 16:45 - 2014-02-09 16:45 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-09 16:45 - 2014-02-09 16:45 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-09 16:45 - 2014-02-09 16:45 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-09 16:45 - 2014-02-09 16:45 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-09 16:45 - 2014-02-09 16:45 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-09 16:45 - 2014-02-09 16:45 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-09 02:08 - 2014-02-09 02:08 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\LavasoftStatistics
2014-02-09 01:47 - 2014-02-14 00:29 - 00002305 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Lavasoft
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\ProgramData\Ad-Aware Browsing Protection
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files\Lavasoft
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-09 01:46 - 2014-02-09 01:46 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-02-09 01:33 - 2014-02-09 01:33 - 00000085 _____ () C:\Windows\wininit.ini
2014-02-09 01:26 - 2014-02-09 01:26 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-09 01:25 - 2014-02-09 01:34 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-09 00:35 - 2014-02-09 00:35 - 00000000 _____ () C:\autoexec.bat
2014-02-09 00:34 - 2014-02-09 00:34 - 00003320 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-02-09 00:34 - 2014-02-09 00:34 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-09 00:34 - 2012-06-22 11:01 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2014-02-08 21:35 - 2014-02-08 21:35 - 00000000 ____D () C:\Users\Homr\.android
2014-02-08 20:54 - 2014-02-10 21:58 - 00000000 ____D () C:\Users\Homr\Desktop\Auf SD
2014-02-06 02:25 - 2014-02-06 02:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-01-30 15:14 - 2014-01-30 15:14 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-01-30 13:55 - 2014-02-14 11:34 - 00801470 ____N () C:\Windows\WindowsUpdate.log
2014-01-30 03:01 - 2014-02-11 21:32 - 00000000 ____D () C:\Program Files\Level Quality Watcher
2014-01-28 00:27 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-28 00:26 - 2014-01-28 00:26 - 00006008 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-28 00:26 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-28 00:26 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-28 00:26 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 01:01 - 2014-01-23 01:02 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (2).exe
2014-01-22 23:43 - 2014-01-22 23:43 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (1).exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-22 23:26 - 2014-01-22 23:28 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64.exe
2014-01-22 08:52 - 2014-01-22 08:52 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-01-22 08:52 - 2014-01-22 08:52 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-01-18 01:11 - 2014-01-18 01:11 - 00001229 _____ () C:\Users\Public\Desktop\ElsterFormular.lnk
2014-01-18 01:11 - 2014-01-18 01:11 - 00000000 ____D () C:\ProgramData\elsterformular
2014-01-18 01:11 - 2014-01-18 01:11 - 00000000 ____D () C:\Program Files (x86)\ElsterFormular
2014-01-16 00:15 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-16 00:15 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-16 00:15 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-16 00:15 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-16 00:15 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-16 00:15 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-16 00:15 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-16 00:15 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-16 00:15 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

==================== One Month Modified Files and Folders =======

2014-02-14 12:52 - 2014-02-14 12:51 - 00024085 _____ () C:\Users\Homr\Desktop\FRST.txt
2014-02-14 12:51 - 2014-02-14 12:51 - 00000000 ____D () C:\Users\Homr\Desktop\FRST-OlderVersion
2014-02-14 12:51 - 2014-02-10 22:11 - 02152960 _____ (Farbar) C:\Users\Homr\Desktop\FRST64.exe
2014-02-14 12:51 - 2014-02-10 22:11 - 00000000 ____D () C:\FRST
2014-02-14 12:50 - 2014-02-14 12:50 - 00001263 _____ () C:\Users\Homr\Desktop\checkup.txt
2014-02-14 12:49 - 2014-02-14 12:49 - 00987425 _____ () C:\Users\Homr\Desktop\SecurityCheck.exe
2014-02-14 12:48 - 2012-12-30 03:08 - 00000000 ____D () C:\Users\Homr\AppData\Local\LogMeIn Hamachi
2014-02-14 12:48 - 2009-12-11 02:41 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Winamp
2014-02-14 12:31 - 2014-02-14 00:29 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0D607781-9ECF-4262-BB24-B3C3973243AC}
2014-02-14 12:31 - 2010-10-05 15:59 - 00000000 ____D () C:\Users\Homr\AppData\Local\Windows Live
2014-02-14 11:34 - 2014-01-30 13:55 - 00801470 ____N () C:\Windows\WindowsUpdate.log
2014-02-14 11:29 - 2011-12-24 02:06 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Tor
2014-02-14 00:38 - 2009-07-14 05:45 - 00015376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-14 00:38 - 2009-07-14 05:45 - 00015376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-14 00:30 - 2012-07-30 23:42 - 00000000 ____D () C:\Users\Homr\AppData\Local\BEETmobile
2014-02-14 00:29 - 2014-02-09 01:47 - 00002305 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-02-14 00:29 - 2013-11-03 13:21 - 00000432 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-02-14 00:29 - 2012-10-12 00:36 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Wise Care 365
2014-02-14 00:26 - 2013-03-05 04:26 - 00000000 ____D () C:\Users\Homr\AppData\Local\Vidalia
2014-02-14 00:26 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-12 21:12 - 2014-02-12 21:10 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0FB2E7E7-E4F1-4A86-AA4F-14AE5363AA70}
2014-02-12 21:10 - 2014-02-12 21:09 - 00000000 ____D () C:\Users\Homr\AppData\Local\adawarebp
2014-02-11 22:22 - 2013-07-15 20:40 - 00000000 ____D () C:\Windows\ERUNT
2014-02-11 22:14 - 2014-02-11 22:09 - 00000000 ____D () C:\AdwCleaner
2014-02-11 22:14 - 2012-10-14 16:29 - 00000000 ____D () C:\ProgramData\Uniblue
2014-02-11 21:32 - 2014-01-30 03:01 - 00000000 ____D () C:\Program Files\Level Quality Watcher
2014-02-11 21:19 - 2014-02-11 21:19 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-11 21:19 - 2014-02-11 21:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-10 21:58 - 2014-02-08 20:54 - 00000000 ____D () C:\Users\Homr\Desktop\Auf SD
2014-02-10 21:33 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-10 02:05 - 2009-12-05 17:12 - 00000000 ____D () C:\Windows\PANTHER
2014-02-09 22:36 - 2009-07-14 18:58 - 00703802 _____ () C:\Windows\system32\perfh007.dat
2014-02-09 22:36 - 2009-07-14 18:58 - 00151442 _____ () C:\Windows\system32\perfc007.dat
2014-02-09 22:36 - 2009-07-14 06:13 - 01632144 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-09 19:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-09 18:09 - 2014-02-09 18:09 - 00001409 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-09 18:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-09 16:45 - 2014-02-09 16:45 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-09 16:45 - 2014-02-09 16:45 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-09 16:45 - 2014-02-09 16:45 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-09 16:45 - 2014-02-09 16:45 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-09 16:45 - 2014-02-09 16:45 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-09 16:45 - 2014-02-09 16:45 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-09 16:45 - 2014-02-09 16:45 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-09 16:45 - 2014-02-09 16:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-09 16:45 - 2014-02-09 16:45 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-09 02:08 - 2014-02-09 02:08 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\LavasoftStatistics
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Lavasoft
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\ProgramData\Ad-Aware Browsing Protection
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files\Lavasoft
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-09 01:46 - 2014-02-09 01:46 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-02-09 01:45 - 2009-12-13 16:13 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-09 01:34 - 2014-02-09 01:25 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-09 01:33 - 2014-02-09 01:33 - 00000085 _____ () C:\Windows\wininit.ini
2014-02-09 01:31 - 2010-12-16 02:59 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-09 01:26 - 2014-02-09 01:26 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-09 00:35 - 2014-02-09 00:35 - 00000000 _____ () C:\autoexec.bat
2014-02-09 00:34 - 2014-02-09 00:34 - 00003320 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-02-09 00:34 - 2014-02-09 00:34 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-09 00:34 - 2013-04-27 00:23 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Skype
2014-02-08 22:15 - 2009-12-27 05:17 - 01591146 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-08 21:35 - 2014-02-08 21:35 - 00000000 ____D () C:\Users\Homr\.android
2014-02-08 21:35 - 2009-12-05 17:20 - 00000000 ____D () C:\Users\Homr
2014-02-08 19:41 - 2012-06-21 23:56 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-08 00:56 - 2012-06-21 23:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-08 00:56 - 2012-06-21 23:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-08 00:56 - 2012-06-21 23:56 - 00003824 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-06 02:25 - 2014-02-06 02:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-04 02:16 - 2013-07-28 14:29 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-02-04 02:16 - 2010-09-05 01:52 - 00000000 ____D () C:\ProgramData\DivX
2014-02-01 02:40 - 2014-01-12 00:34 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-01-30 15:14 - 2014-01-30 15:14 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-01-30 15:14 - 2009-12-06 01:53 - 00000000 ____D () C:\Users\Homr\AppData\Local\Google
2014-01-30 15:13 - 2009-12-06 01:53 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-30 14:20 - 2011-11-22 20:10 - 00000000 ____D () C:\Users\Homr\AppData\Local\Facebook
2014-01-30 03:05 - 2011-08-07 19:44 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-01-30 03:05 - 2009-12-05 17:57 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-30 03:01 - 2013-07-08 15:19 - 00000000 ____D () C:\Users\Homr\AppData\Local\CrashDumps
2014-01-28 00:27 - 2013-10-29 01:22 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-28 00:26 - 2014-01-28 00:26 - 00006008 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-28 00:26 - 2012-11-09 19:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-28 00:20 - 2009-12-11 03:29 - 00000000 ____D () C:\Users\Homr\AppData\Local\Adobe
2014-01-23 01:02 - 2014-01-23 01:01 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (2).exe
2014-01-22 23:43 - 2014-01-22 23:43 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (1).exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-22 23:29 - 2012-07-22 12:45 - 00000000 ____D () C:\Program Files\Java
2014-01-22 23:28 - 2014-01-22 23:26 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64.exe
2014-01-22 08:52 - 2014-01-22 08:52 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-01-22 08:52 - 2014-01-22 08:52 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2014-01-18 01:11 - 2014-01-18 01:11 - 00001229 _____ () C:\Users\Public\Desktop\ElsterFormular.lnk
2014-01-18 01:11 - 2014-01-18 01:11 - 00000000 ____D () C:\ProgramData\elsterformular
2014-01-18 01:11 - 2014-01-18 01:11 - 00000000 ____D () C:\Program Files (x86)\ElsterFormular
2014-01-16 12:41 - 2009-07-14 05:45 - 00544464 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-01-16 03:24 - 2009-12-17 00:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-16 03:23 - 2013-08-15 23:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-01-16 03:22 - 2009-12-07 21:08 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-16 02:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF

Some content of TEMP:
====================
C:\Users\Homr\AppData\Local\Temp\99e0ad50-08e2-421f-8902-6ac34165b647.exe
C:\Users\Homr\AppData\Local\Temp\avgnt.exe
C:\Users\Homr\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-08 05:59

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---


Ich habe den Logfile von mein Netbook gepostet. Die Einstellung von IE11 werde ich mir gleich vornehmen Danke für den Tipp!

Danke für den Tipp mit IE11

Alt 17.02.2014, 14:37   #20
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Also Probleme weg?

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.02.2014, 23:04   #21
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Wie kann ich erkennen, ob es noch Probleme gibt? Ich habe ja alle Logfiles gepostet und du müsstest mir ja sagen, ob mein Rechner irgendwas noch hat.

Seitdem ich auf deine Anweisung mit IE 11 befolgt habe, ist es leider so, dass auf alle Websites viele Wörter hellgrün und unterstrichen sind. Sobald ich mit der Maus über die Wörter hingehe, kommt so ein komisches Fenster. Auf dem Bild kann man das gut erkennen.

Außerdem bekomme ich komische Popups. Wo ich den Verdacht habe, dass mein Rechner was haben könnte. Meistens immer dasselbe, egal, auch welche Website ich bin.
Miniaturansicht angehängter Grafiken
Sicherheitshinweis von Avira-gruener-text.jpg   Sicherheitshinweis von Avira-popup.jpg  

Alt 17.02.2014, 23:13   #22
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Jetzt war ich auf einer Seite, habe auf eine Nachricht angeklickt und auf war ich auf der gleichen Register auf einer Seite gelandet mit so einer komischen Warnung.

Dann tauchte erneut ein Popup und um ehrlich zu sein, habe ich den Eindruck, dass da auf keinen Fall was nicht stimmt.

Dazu muss ich sagen, dass mein Rechner gar nicht langsam ist, sondern ganz normal, wie immer verläuft.

Das ist so, seitdem ich IE11 zurückgesetzt habe.
Miniaturansicht angehängter Grafiken
Sicherheitshinweis von Avira-warnung.jpg   Sicherheitshinweis von Avira-popup2.jpg  

Alt 18.02.2014, 16:36   #23
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Du setzt den IE 11 zurück und hast dann erst die Adware im Browser?

is ja auch irgendwie geil

IE11 bitte komplett deinstallieren, dann bitte ein frisches FRST log
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 19.02.2014, 01:17   #24
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Du hattest mir ja gesagt, dass ich IE11 zurücksetzen soll. Und anhand der Logfiles konnte man doch sehen, dass Ad-Aware installiert ist.


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-02-2014
Ran by Homr (administrator) on HOME-PC on 19-02-2014 01:15:15
Running from C:\Users\Homr\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
() C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe
() c:\Creative Suite CS2\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
() C:\Program Files (x86)\View-Password\ViewPassword153.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
() C:\Program Files (x86)\View-Password\ViewPassword_wd.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Octoshape ApS) C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
() C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Adobe Sytems Incorporated) C:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
() C:\Program Files (x86)\Vidalia Bundle\Tor\tor.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Cherry\CDI\cdi.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Common Files\Cherry\Common\kbdhook64.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(BEETmobile) C:\Program Files (x86)\BEETmobile\BEETmobile.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-09-04] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2184520 2009-03-24] (CANON INC.)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CherryKeyMan] - C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe [258100 2009-07-29] (ZF Electronics GmbH)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2014-02-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe Version Cue CS2] - c:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [TkBellExe] - c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2013-09-01] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKU\.DEFAULT\...\RunOnce: [Ad-Watch Live!] - C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Octoshape Streaming Services] - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Vidalia] - C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe [6239727 2012-12-02] ()
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {21170f26-e1b9-11de-a9e4-806e6f6e6963} - F:\Autorun.exe
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {e6c2a329-4653-11e3-97fc-001fcf4024e6} - G:\AutoRun.exe
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {e6c2a330-4653-11e3-97fc-001fcf4024e6} - G:\AutoRun.exe

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:13828
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
SearchScopes: HKCU - {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SparweltGutscheinAlarm.Sparwelt_Gutschein_Tool - {10945114-b19f-4614-8450-b25e444a1020} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {5786D022-540E-4699-B350-B4BE0AE94B79} -  No File
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} https://stream.web.de/mail/activex/mail_upload_11213.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {888078C6-70B2-4F88-8EE7-1F50DDEA6120} https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444552440000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Homr\AppData\Roaming\Mozilla\Firefox\Profiles\ips5ydjp.default
FF Homepage: hxxp://www.google.de/
FF Homepage: hxxp://start.iminent.com/?appId=51CBD309-3DC1-42BA-81E8-C3EB7070281A
FF SelectedSearchEngine: StartWeb
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player - C:\Users\Homr\AppData\Roaming\Move Networks\plugins\071802000001\npqmp071802000001.dll (Move Networks)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Homr\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Homr\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-01]
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-10-26]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-12] (Adobe Systems)
R2 Adobe Version Cue CS2; c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2014-02-18] (Avira Operations GmbH & Co. KG)
R2 BlueSoleil Hid Service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe [166520 2007-12-27] ()
R3 Cherry Device Interface; C:\Program Files (x86)\Cherry\CDI\cdi.exe [585774 2009-05-28] (ZF Electronics GmbH)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-02-10] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1326176 2012-06-27] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [681056 2012-06-27] (Secunia)
R2 Start BT in service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816 2007-12-27] ()
R2 SystemStore; C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe [14848 2012-04-24] ()
R2 ViewPassword; C:\Program Files (x86)\View-Password\ViewPassword153.exe [181248 2014-02-16] ()
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580648 2012-07-17] (WiseCleaner.com)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletAudio; C:\Windows\SysWOW64\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\SysWOW64\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
R3 BT; C:\Windows\SysWOW64\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\SysWOW64\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\SysWOW64\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\SysWOW64\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-08-12] (Lavasoft AB)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [61592 2013-12-17] (NetFilterSDK.com)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-05] (Duplex Secure Ltd.)
R3 VComm; C:\Windows\System32\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VComm; C:\Windows\SysWOW64\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\SysWOW64\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-19 01:15 - 2014-02-19 01:15 - 00022235 _____ () C:\Users\Homr\Desktop\FRST.txt
2014-02-19 01:15 - 2014-02-19 01:15 - 00000000 ____D () C:\Users\Homr\Desktop\FRST-OlderVersion
2014-02-19 01:08 - 2014-02-19 01:08 - 00001417 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-02-17 22:45 - 2014-02-17 22:45 - 00000000 ____D () C:\Users\Homr\Desktop\Tor Browser
2014-02-16 03:39 - 2014-02-16 03:39 - 00000000 ____D () C:\Users\Homr\Desktop\Datev Sap
2014-02-16 02:54 - 2014-02-19 01:08 - 00000402 _____ () C:\Windows\Tasks\View Password Update.job
2014-02-16 02:54 - 2014-02-19 01:08 - 00000390 _____ () C:\Windows\Tasks\View Password_wd.job
2014-02-16 02:54 - 2014-02-16 02:54 - 00003048 _____ () C:\Windows\System32\Tasks\View Password Update
2014-02-16 02:54 - 2014-02-16 02:54 - 00002976 _____ () C:\Windows\System32\Tasks\View Password_wd
2014-02-16 02:54 - 2014-02-16 02:54 - 00000000 ____D () C:\Program Files (x86)\View-Password
2014-02-15 16:45 - 2014-02-15 16:45 - 00000000 ____D () C:\Users\Homr\AppData\Local\{C77393BC-9729-4E15-8B7E-83BDD239B724}
2014-02-15 01:44 - 2014-02-15 01:44 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0067F53F-7919-468F-9324-5E9195D1A308}
2014-02-14 12:49 - 2014-02-14 12:49 - 00987425 _____ () C:\Users\Homr\Desktop\SecurityCheck.exe
2014-02-14 00:37 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-14 00:37 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-14 00:37 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 00:37 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-14 00:37 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-14 00:37 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-14 00:36 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-14 00:36 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-14 00:36 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 00:36 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-14 00:36 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-14 00:36 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-14 00:36 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-14 00:36 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-14 00:36 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-14 00:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-14 00:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-14 00:36 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-14 00:36 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-14 00:36 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-14 00:36 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-14 00:36 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-14 00:36 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-14 00:36 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-14 00:29 - 2014-02-14 12:31 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0D607781-9ECF-4262-BB24-B3C3973243AC}
2014-02-12 21:10 - 2014-02-12 21:12 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0FB2E7E7-E4F1-4A86-AA4F-14AE5363AA70}
2014-02-11 22:09 - 2014-02-11 22:14 - 00000000 ____D () C:\AdwCleaner
2014-02-11 21:19 - 2014-02-11 21:19 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-11 21:19 - 2014-02-11 21:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-11 21:19 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-10 22:11 - 2014-02-19 01:15 - 02153472 _____ (Farbar) C:\Users\Homr\Desktop\FRST64.exe
2014-02-10 22:11 - 2014-02-19 01:15 - 00000000 ____D () C:\FRST
2014-02-09 18:09 - 2014-02-19 01:08 - 00001451 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-09 02:08 - 2014-02-09 02:08 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\LavasoftStatistics
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-09 01:33 - 2014-02-09 01:33 - 00000085 _____ () C:\Windows\wininit.ini
2014-02-09 01:26 - 2014-02-09 01:26 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-09 01:25 - 2014-02-09 01:34 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-09 00:35 - 2014-02-09 00:35 - 00000000 _____ () C:\autoexec.bat
2014-02-09 00:34 - 2014-02-09 00:34 - 00003320 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-02-09 00:34 - 2014-02-09 00:34 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-09 00:34 - 2012-06-22 11:01 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2014-02-08 21:35 - 2014-02-08 21:35 - 00000000 ____D () C:\Users\Homr\.android
2014-02-08 20:54 - 2014-02-10 21:58 - 00000000 ____D () C:\Users\Homr\Desktop\Auf SD
2014-02-06 02:25 - 2014-02-06 02:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-01-30 15:14 - 2014-01-30 15:14 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-01-30 13:55 - 2014-02-19 01:05 - 01130134 _____ () C:\Windows\WindowsUpdate.log
2014-01-30 03:01 - 2014-02-11 21:32 - 00000000 ____D () C:\Program Files\Level Quality Watcher
2014-01-28 00:27 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-28 00:26 - 2014-01-28 00:26 - 00006008 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-28 00:26 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-28 00:26 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-28 00:26 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 01:01 - 2014-01-23 01:02 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (2).exe
2014-01-22 23:43 - 2014-01-22 23:43 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (1).exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-22 23:26 - 2014-01-22 23:28 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64.exe
2014-01-22 08:52 - 2014-01-22 08:52 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-01-22 08:52 - 2014-01-22 08:52 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys

==================== One Month Modified Files and Folders =======

2014-02-19 01:15 - 2014-02-19 01:15 - 00022235 _____ () C:\Users\Homr\Desktop\FRST.txt
2014-02-19 01:15 - 2014-02-19 01:15 - 00000000 ____D () C:\Users\Homr\Desktop\FRST-OlderVersion
2014-02-19 01:15 - 2014-02-10 22:11 - 02153472 _____ (Farbar) C:\Users\Homr\Desktop\FRST64.exe
2014-02-19 01:15 - 2014-02-10 22:11 - 00000000 ____D () C:\FRST
2014-02-19 01:15 - 2009-07-14 05:45 - 00015376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-19 01:15 - 2009-07-14 05:45 - 00015376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-19 01:12 - 2014-01-30 13:55 - 01130134 _____ () C:\Windows\WindowsUpdate.log
2014-02-19 01:11 - 2012-12-30 03:08 - 00000000 ____D () C:\Users\Homr\AppData\Local\LogMeIn Hamachi
2014-02-19 01:11 - 2009-12-05 17:12 - 00000000 ____D () C:\Windows\PANTHER
2014-02-19 01:09 - 2013-03-05 04:26 - 00000000 ____D () C:\Users\Homr\AppData\Local\Vidalia
2014-02-19 01:09 - 2012-10-12 00:36 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Wise Care 365
2014-02-19 01:09 - 2011-12-24 02:06 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Tor
2014-02-19 01:08 - 2014-02-19 01:08 - 00001417 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-02-19 01:08 - 2014-02-16 02:54 - 00000402 _____ () C:\Windows\Tasks\View Password Update.job
2014-02-19 01:08 - 2014-02-16 02:54 - 00000390 _____ () C:\Windows\Tasks\View Password_wd.job
2014-02-19 01:08 - 2014-02-09 18:09 - 00001451 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-19 01:07 - 2013-11-03 13:21 - 00000431 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-02-19 01:07 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-19 01:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-19 00:59 - 2009-12-13 16:13 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-19 00:35 - 2012-07-30 23:42 - 00000000 ____D () C:\Users\Homr\AppData\Local\BEETmobile
2014-02-17 23:10 - 2010-03-18 19:15 - 00000000 ____D () C:\Users\Homr\AppData\Local\Paint.NET
2014-02-17 22:45 - 2014-02-17 22:45 - 00000000 ____D () C:\Users\Homr\Desktop\Tor Browser
2014-02-17 01:23 - 2013-07-08 15:19 - 00000000 ____D () C:\Users\Homr\AppData\Local\CrashDumps
2014-02-17 01:16 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-16 15:25 - 2013-08-15 23:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 15:24 - 2009-12-07 21:08 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 15:21 - 2009-07-14 18:58 - 00703802 _____ () C:\Windows\system32\perfh007.dat
2014-02-16 15:21 - 2009-07-14 18:58 - 00151442 _____ () C:\Windows\system32\perfc007.dat
2014-02-16 15:21 - 2009-07-14 06:13 - 01632144 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-16 03:39 - 2014-02-16 03:39 - 00000000 ____D () C:\Users\Homr\Desktop\Datev Sap
2014-02-16 02:55 - 2009-12-06 01:52 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-02-16 02:54 - 2014-02-16 02:54 - 00003048 _____ () C:\Windows\System32\Tasks\View Password Update
2014-02-16 02:54 - 2014-02-16 02:54 - 00002976 _____ () C:\Windows\System32\Tasks\View Password_wd
2014-02-16 02:54 - 2014-02-16 02:54 - 00000000 ____D () C:\Program Files (x86)\View-Password
2014-02-16 02:54 - 2009-12-11 02:41 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Winamp
2014-02-15 16:45 - 2014-02-15 16:45 - 00000000 ____D () C:\Users\Homr\AppData\Local\{C77393BC-9729-4E15-8B7E-83BDD239B724}
2014-02-15 16:45 - 2010-10-05 15:59 - 00000000 ____D () C:\Users\Homr\AppData\Local\Windows Live
2014-02-15 01:44 - 2014-02-15 01:44 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0067F53F-7919-468F-9324-5E9195D1A308}
2014-02-14 14:22 - 2009-12-27 05:17 - 01605256 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-14 12:49 - 2014-02-14 12:49 - 00987425 _____ () C:\Users\Homr\Desktop\SecurityCheck.exe
2014-02-14 12:31 - 2014-02-14 00:29 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0D607781-9ECF-4262-BB24-B3C3973243AC}
2014-02-12 21:12 - 2014-02-12 21:10 - 00000000 ____D () C:\Users\Homr\AppData\Local\{0FB2E7E7-E4F1-4A86-AA4F-14AE5363AA70}
2014-02-11 22:22 - 2013-07-15 20:40 - 00000000 ____D () C:\Windows\ERUNT
2014-02-11 22:14 - 2014-02-11 22:09 - 00000000 ____D () C:\AdwCleaner
2014-02-11 22:14 - 2012-10-14 16:29 - 00000000 ____D () C:\ProgramData\Uniblue
2014-02-11 21:32 - 2014-01-30 03:01 - 00000000 ____D () C:\Program Files\Level Quality Watcher
2014-02-11 21:19 - 2014-02-11 21:19 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-11 21:19 - 2014-02-11 21:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-10 21:58 - 2014-02-08 20:54 - 00000000 ____D () C:\Users\Homr\Desktop\Auf SD
2014-02-10 21:33 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-09 02:08 - 2014-02-09 02:08 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\LavasoftStatistics
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-09 01:34 - 2014-02-09 01:25 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-09 01:33 - 2014-02-09 01:33 - 00000085 _____ () C:\Windows\wininit.ini
2014-02-09 01:31 - 2010-12-16 02:59 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-09 01:26 - 2014-02-09 01:26 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-09 00:35 - 2014-02-09 00:35 - 00000000 _____ () C:\autoexec.bat
2014-02-09 00:34 - 2014-02-09 00:34 - 00003320 _____ () C:\Windows\System32\Tasks\SpyHunter4Startup
2014-02-09 00:34 - 2014-02-09 00:34 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-09 00:34 - 2013-04-27 00:23 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Skype
2014-02-08 21:35 - 2014-02-08 21:35 - 00000000 ____D () C:\Users\Homr\.android
2014-02-08 21:35 - 2009-12-05 17:20 - 00000000 ____D () C:\Users\Homr
2014-02-08 19:41 - 2012-06-21 23:56 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-08 00:56 - 2012-06-21 23:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-08 00:56 - 2012-06-21 23:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-08 00:56 - 2012-06-21 23:56 - 00003824 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-06 02:25 - 2014-02-06 02:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-04 02:16 - 2013-07-28 14:29 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-02-04 02:16 - 2010-09-05 01:52 - 00000000 ____D () C:\ProgramData\DivX
2014-02-01 02:40 - 2014-01-12 00:34 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-01-30 15:14 - 2014-01-30 15:14 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-01-30 15:14 - 2009-12-06 01:53 - 00000000 ____D () C:\Users\Homr\AppData\Local\Google
2014-01-30 15:13 - 2009-12-06 01:53 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-30 14:20 - 2011-11-22 20:10 - 00000000 ____D () C:\Users\Homr\AppData\Local\Facebook
2014-01-30 03:05 - 2011-08-07 19:44 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-01-30 03:05 - 2009-12-05 17:57 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-28 00:27 - 2013-10-29 01:22 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-28 00:26 - 2014-01-28 00:26 - 00006008 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-28 00:26 - 2012-11-09 19:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-28 00:20 - 2009-12-11 03:29 - 00000000 ____D () C:\Users\Homr\AppData\Local\Adobe
2014-01-23 01:02 - 2014-01-23 01:01 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (2).exe
2014-01-22 23:43 - 2014-01-22 23:43 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (1).exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-22 23:29 - 2012-07-22 12:45 - 00000000 ____D () C:\Program Files\Java
2014-01-22 23:28 - 2014-01-22 23:26 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64.exe
2014-01-22 08:52 - 2014-01-22 08:52 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-01-22 08:52 - 2014-01-22 08:52 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys

Some content of TEMP:
====================
C:\Users\Homr\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-18 23:22

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 19.02.2014, 16:38   #25
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Ich meine nicht das Tool Ad Aware, sondern Adware, nervige Werbung. Aktuell noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 20.02.2014, 18:17   #26
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Ach, das meintest du! Mit viel Mühe konnte ich den Adware loswerden. Wie kann ich herausfinden, ob mein Rechner jetzt endgültig in Ordnung ist?

Kann ich jetzt den Explorer jetzt auf IE11 updaten? Ich bin da immer vorsichtig, weil ich wichtige Sachen erledigen muss, aber wegen der Sache nicht erledigen kann. Ich will halt auf Nummer sicher gehen, eher ich noch größere Probleme bekomme.

Alt 20.02.2014, 19:25   #27
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Ich habe mit SpyBot gescannt. Die Bezeichnung mit HK.. ist immer mit Malware verbunden, óder?
Miniaturansicht angehängter Grafiken
Sicherheitshinweis von Avira-systemscanspybot.jpg  

Alt 21.02.2014, 15:02   #28
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Nein, das ist ein Teil der Registry, alles gut. Update den IE und poste ein frisches FRST log. Teste den Rechner und teile mir mit ob du noch Probleme hast.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 21.02.2014, 19:33   #29
Chandini
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Ich habe IE upgedatet und habe frisches FRST Log Probleme habe ich zum Glück nicht. Ich hoffe, dass alles sauber ist und ich endlich meine Sachen erledigen kann, ohne Befürchtungen zu haben


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-02-2014
Ran by Homr (administrator) on HOME-PC on 21-02-2014 19:30:16
Running from C:\Users\Homr\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
() c:\Creative Suite CS2\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
() C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
() C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Octoshape ApS) C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
() C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Adobe Sytems Incorporated) C:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
() C:\Program Files (x86)\Vidalia Bundle\Tor\tor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Cherry\CDI\cdi.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(ZF Electronics GmbH) C:\Program Files (x86)\Common Files\Cherry\Common\kbdhook64.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(BEETmobile) C:\Program Files (x86)\BEETmobile\BEETmobile.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Mobile Device Center] - C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [CanonSolutionMenu] - C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-09-04] (CANON INC.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2184520 2009-03-24] (CANON INC.)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-09-18] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] - C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CherryKeyMan] - C:\Program Files (x86)\Cherry\KeyMan\KeyMan.exe [258100 2009-07-29] (ZF Electronics GmbH)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe Version Cue CS2] - c:\Creative Suite CS2\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe [856064 2005-04-06] (Adobe Sytems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM-x32\...\Run: [TkBellExe] - c:\program files (x86)\real\realplayer\Update\realsched.exe [295512 2013-09-01] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3813712 2014-02-04] (LogMeIn Inc.)
HKU\.DEFAULT\...\RunOnce: [Ad-Watch Live!] - C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x00000000
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Octoshape Streaming Services] - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Run: [Vidalia] - C:\Program Files (x86)\Vidalia Relay Bundle\Vidalia\vidalia.exe [6239727 2012-12-02] ()
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {21170f26-e1b9-11de-a9e4-806e6f6e6963} - F:\Autorun.exe
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {e6c2a329-4653-11e3-97fc-001fcf4024e6} - G:\AutoRun.exe
HKU\S-1-5-21-3139214333-3526821646-799605520-1000\...\MountPoints2: {e6c2a330-4653-11e3-97fc-001fcf4024e6} - G:\AutoRun.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
SearchScopes: HKCU - {42D9F59E-60EC-45C4-B848-3362870D229A} URL = hxxp://www.google.de/search?q={searchTerms}&rlz=1I7PRFA_de
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SparweltGutscheinAlarm.Sparwelt_Gutschein_Tool - {10945114-b19f-4614-8450-b25e444a1020} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Toolbar: HKCU - No Name - {5786D022-540E-4699-B350-B4BE0AE94B79} -  No File
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: HKLM-x32 {59136DB4-6CA3-4B40-8F2F-BBF84B6F1E91} https://stream.web.de/mail/activex/mail_upload_11213.cab
DPF: HKLM-x32 {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab
DPF: HKLM-x32 {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: HKLM-x32 {888078C6-70B2-4F88-8EE7-1F50DDEA6120} https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444552440000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Homr\AppData\Roaming\Mozilla\Firefox\Profiles\ips5ydjp.default
FF Homepage: hxxp://www.google.de/
FF SelectedSearchEngine: StartWeb
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player - C:\Users\Homr\AppData\Roaming\Move Networks\plugins\071802000001\npqmp071802000001.dll (Move Networks)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\Homr\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Homr\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Homr\AppData\Roaming\mozilla\plugins\npoctoshape.dll (Octoshape ApS)
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-01]
FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-10-26]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-01-12] (Adobe Systems)
R2 Adobe Version Cue CS2; c:\Creative Suite CS2\Adobe Version Cue CS2\bin\VersionCueCS2.exe [163840 2005-04-06] (Adobe Systems Incorporated)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 BlueSoleil Hid Service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe [166520 2007-12-27] ()
R3 Cherry Device Interface; C:\Program Files (x86)\Cherry\CDI\cdi.exe [585774 2009-05-28] (ZF Electronics GmbH)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-02-10] ()
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [377616 2014-02-04] (LogMeIn, Inc.)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S3 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1326176 2012-06-27] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [681056 2012-06-27] (Secunia)
R2 Start BT in service; C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [51816 2007-12-27] ()
R2 SystemStore; C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe [14848 2012-04-24] ()
S2 WiseBootAssistant; C:\Program Files (x86)\Wise\Wise Care 365\BootTime.exe [580648 2012-07-17] (WiseCleaner.com)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R3 BlueletAudio; C:\Windows\System32\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletAudio; C:\Windows\SysWOW64\DRIVERS\blueletaudio.sys [37896 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\System32\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BlueletSCOAudio; C:\Windows\SysWOW64\DRIVERS\BlueletSCOAudio.sys [37384 2007-06-24] (IVT Corporation.)
R3 BT; C:\Windows\System32\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
R3 BT; C:\Windows\SysWOW64\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
S3 Btcsrusb; C:\Windows\SysWOW64\Drivers\btcusb.sys [47368 2007-06-24] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidEnum; C:\Windows\SysWOW64\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
R0 BTHidMgr; C:\Windows\SysWOW64\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-08-12] (Lavasoft AB)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [61592 2013-12-17] (NetFilterSDK.com)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-05] (Duplex Secure Ltd.)
R3 VComm; C:\Windows\System32\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VComm; C:\Windows\SysWOW64\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
R3 VcommMgr; C:\Windows\SysWOW64\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-21 19:30 - 2014-02-21 19:30 - 00021381 _____ () C:\Users\Homr\Desktop\FRST.txt
2014-02-21 19:24 - 2014-02-21 19:24 - 00001421 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-21 17:47 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-21 17:47 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-21 17:47 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-21 17:47 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-21 17:47 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-21 17:47 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-21 17:47 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-21 17:47 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-02-21 17:47 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-02-21 17:47 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-02-21 17:47 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-21 17:47 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-21 17:47 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-02-21 17:47 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-21 17:47 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-02-21 17:47 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-02-21 17:47 - 2013-10-01 21:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-21 17:47 - 2013-10-01 21:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-21 17:44 - 2014-02-21 17:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-21 17:44 - 2014-02-21 17:44 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-21 17:44 - 2014-02-21 17:44 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-21 17:44 - 2014-02-21 17:44 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-21 17:44 - 2014-02-21 17:44 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-21 17:44 - 2014-02-21 17:44 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-21 17:44 - 2014-02-21 17:44 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-21 17:44 - 2014-02-21 17:44 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-21 17:44 - 2014-02-21 17:44 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-21 17:44 - 2014-02-21 17:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-21 17:41 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-02-21 17:41 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-02-21 17:41 - 2012-08-23 14:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-02-21 17:41 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-02-21 17:41 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-02-21 17:41 - 2012-08-23 10:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-02-21 17:40 - 2013-09-25 03:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-02-21 17:40 - 2013-09-25 02:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-02-19 01:15 - 2014-02-21 19:30 - 00000000 ____D () C:\Users\Homr\Desktop\FRST-OlderVersion
2014-02-17 22:45 - 2014-02-17 22:45 - 00000000 ____D () C:\Tor Browser
2014-02-16 03:39 - 2014-02-16 03:39 - 00000000 ____D () C:\Users\Homr\Desktop\Datev Sap
2014-02-14 00:37 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-14 00:37 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-14 00:37 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 00:37 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-14 00:37 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-14 00:37 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-14 00:36 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-14 00:36 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-14 00:36 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-14 00:36 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 00:36 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-14 00:36 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-14 00:36 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-14 00:36 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-14 00:36 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-14 00:36 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-14 00:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-14 00:36 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-14 00:36 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-14 00:36 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-14 00:36 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-14 00:36 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-14 00:36 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-14 00:36 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-14 00:36 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-11 21:19 - 2014-02-21 19:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-10 22:11 - 2014-02-21 19:30 - 02153984 _____ (Farbar) C:\Users\Homr\Desktop\FRST64.exe
2014-02-10 22:11 - 2014-02-21 19:30 - 00000000 ____D () C:\FRST
2014-02-09 02:08 - 2014-02-09 02:08 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\LavasoftStatistics
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-09 01:33 - 2014-02-21 19:27 - 00000085 _____ () C:\Windows\wininit.ini
2014-02-09 01:26 - 2014-02-09 01:26 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-09 01:25 - 2014-02-21 19:27 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-09 00:35 - 2014-02-09 00:35 - 00000000 _____ () C:\autoexec.bat
2014-02-09 00:34 - 2014-02-09 00:34 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-09 00:34 - 2012-06-22 11:01 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys
2014-02-08 21:35 - 2014-02-08 21:35 - 00000000 ____D () C:\Users\Homr\.android
2014-02-08 20:54 - 2014-02-10 21:58 - 00000000 ____D () C:\Users\Homr\Desktop\Auf SD
2014-02-06 02:25 - 2014-02-06 02:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-01-30 15:14 - 2014-01-30 15:14 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-01-30 13:55 - 2014-02-21 19:25 - 01281031 ____N () C:\Windows\WindowsUpdate.log
2014-01-28 00:27 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-28 00:26 - 2014-01-28 00:26 - 00006008 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-28 00:26 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-28 00:26 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-28 00:26 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-23 01:01 - 2014-01-23 01:02 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (2).exe
2014-01-22 23:43 - 2014-01-22 23:43 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (1).exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-22 23:26 - 2014-01-22 23:28 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64.exe
2014-01-22 08:52 - 2014-01-22 08:52 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-01-22 08:52 - 2014-01-22 08:52 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys

==================== One Month Modified Files and Folders =======

2014-02-21 19:31 - 2014-02-21 19:30 - 00021381 _____ () C:\Users\Homr\Desktop\FRST.txt
2014-02-21 19:30 - 2014-02-19 01:15 - 00000000 ____D () C:\Users\Homr\Desktop\FRST-OlderVersion
2014-02-21 19:30 - 2014-02-10 22:11 - 02153984 _____ (Farbar) C:\Users\Homr\Desktop\FRST64.exe
2014-02-21 19:30 - 2014-02-10 22:11 - 00000000 ____D () C:\FRST
2014-02-21 19:29 - 2012-12-30 03:08 - 00000000 ____D () C:\Users\Homr\AppData\Local\LogMeIn Hamachi
2014-02-21 19:29 - 2009-12-05 17:12 - 00000000 ____D () C:\Windows\PANTHER
2014-02-21 19:28 - 2014-02-11 21:19 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-21 19:27 - 2014-02-09 01:33 - 00000085 _____ () C:\Windows\wininit.ini
2014-02-21 19:27 - 2014-02-09 01:25 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-02-21 19:25 - 2014-01-30 13:55 - 01281031 ____N () C:\Windows\WindowsUpdate.log
2014-02-21 19:25 - 2011-12-24 02:06 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Tor
2014-02-21 19:24 - 2014-02-21 19:24 - 00001421 _____ () C:\Users\Homr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-21 19:24 - 2013-03-05 04:26 - 00000000 ____D () C:\Users\Homr\AppData\Local\Vidalia
2014-02-21 19:24 - 2012-10-12 00:36 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Wise Care 365
2014-02-21 18:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-21 18:10 - 2009-07-14 05:45 - 00015376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-21 18:10 - 2009-07-14 05:45 - 00015376 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-21 18:05 - 2013-11-03 13:21 - 00000432 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-02-21 18:04 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-21 18:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-21 17:44 - 2014-02-21 17:44 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-21 17:44 - 2014-02-21 17:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-21 17:44 - 2014-02-21 17:44 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-21 17:44 - 2014-02-21 17:44 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-21 17:44 - 2014-02-21 17:44 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-21 17:44 - 2014-02-21 17:44 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-21 17:44 - 2014-02-21 17:44 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-21 17:44 - 2014-02-21 17:44 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-21 17:44 - 2014-02-21 17:44 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-21 17:44 - 2014-02-21 17:44 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-21 17:44 - 2014-02-21 17:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-21 17:44 - 2014-02-21 17:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-21 17:44 - 2014-02-21 17:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-21 01:21 - 2012-07-30 23:42 - 00000000 ____D () C:\Users\Homr\AppData\Local\BEETmobile
2014-02-20 19:22 - 2010-03-18 19:15 - 00000000 ____D () C:\Users\Homr\AppData\Local\Paint.NET
2014-02-20 03:37 - 2009-12-11 02:41 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Winamp
2014-02-20 02:58 - 2010-12-16 02:59 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-19 00:59 - 2009-12-13 16:13 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-17 22:45 - 2014-02-17 22:45 - 00000000 ____D () C:\Tor Browser
2014-02-17 01:23 - 2013-07-08 15:19 - 00000000 ____D () C:\Users\Homr\AppData\Local\CrashDumps
2014-02-16 15:25 - 2013-08-15 23:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 15:24 - 2009-12-07 21:08 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 15:21 - 2009-07-14 18:58 - 00703802 _____ () C:\Windows\system32\perfh007.dat
2014-02-16 15:21 - 2009-07-14 18:58 - 00151442 _____ () C:\Windows\system32\perfc007.dat
2014-02-16 15:21 - 2009-07-14 06:13 - 01632144 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-16 03:39 - 2014-02-16 03:39 - 00000000 ____D () C:\Users\Homr\Desktop\Datev Sap
2014-02-16 02:55 - 2009-12-06 01:52 - 00000000 ____D () C:\Program Files (x86)\CCleaner
2014-02-15 16:45 - 2010-10-05 15:59 - 00000000 ____D () C:\Users\Homr\AppData\Local\Windows Live
2014-02-14 14:22 - 2009-12-27 05:17 - 01605256 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-11 22:22 - 2013-07-15 20:40 - 00000000 ____D () C:\Windows\ERUNT
2014-02-10 21:58 - 2014-02-08 20:54 - 00000000 ____D () C:\Users\Homr\Desktop\Auf SD
2014-02-10 21:33 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-09 02:08 - 2014-02-09 02:08 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\LavasoftStatistics
2014-02-09 01:47 - 2014-02-09 01:47 - 00000000 ____D () C:\Program Files (x86)\Lavasoft
2014-02-09 01:26 - 2014-02-09 01:26 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-02-09 00:35 - 2014-02-09 00:35 - 00000000 _____ () C:\autoexec.bat
2014-02-09 00:34 - 2014-02-09 00:34 - 00003148 _____ () C:\Windows\System32\Tasks\SidebarExecute
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-09 00:34 - 2014-02-09 00:34 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-09 00:34 - 2013-04-27 00:23 - 00000000 ____D () C:\Users\Homr\AppData\Roaming\Skype
2014-02-08 21:35 - 2014-02-08 21:35 - 00000000 ____D () C:\Users\Homr\.android
2014-02-08 21:35 - 2009-12-05 17:20 - 00000000 ____D () C:\Users\Homr
2014-02-08 19:41 - 2012-06-21 23:56 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-08 00:56 - 2012-06-21 23:56 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-08 00:56 - 2012-06-21 23:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-08 00:56 - 2012-06-21 23:56 - 00003824 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-06 02:25 - 2014-02-06 02:25 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2014-02-04 02:16 - 2013-07-28 14:29 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-02-04 02:16 - 2010-09-05 01:52 - 00000000 ____D () C:\ProgramData\DivX
2014-02-01 02:40 - 2014-01-12 00:34 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-01-30 15:14 - 2014-01-30 15:14 - 00001106 _____ () C:\Users\Public\Desktop\Picasa 3.lnk
2014-01-30 15:14 - 2009-12-06 01:53 - 00000000 ____D () C:\Users\Homr\AppData\Local\Google
2014-01-30 15:13 - 2009-12-06 01:53 - 00000000 ____D () C:\Program Files (x86)\Google
2014-01-30 03:05 - 2011-08-07 19:44 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-01-30 03:05 - 2009-12-05 17:57 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-01-28 00:27 - 2013-10-29 01:22 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-28 00:26 - 2014-01-28 00:26 - 00006008 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-28 00:26 - 2012-11-09 19:00 - 00000000 ____D () C:\Program Files (x86)\Java
2014-01-28 00:20 - 2009-12-11 03:29 - 00000000 ____D () C:\Users\Homr\AppData\Local\Adobe
2014-01-23 01:02 - 2014-01-23 01:01 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (2).exe
2014-01-22 23:43 - 2014-01-22 23:43 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64 (1).exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-22 23:29 - 2014-01-22 23:29 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-22 23:29 - 2012-07-22 12:45 - 00000000 ____D () C:\Program Files\Java
2014-01-22 23:28 - 2014-01-22 23:26 - 30796712 _____ (Oracle Corporation) C:\Users\Homr\Downloads\jre-7u51-windows-x64.exe
2014-01-22 08:52 - 2014-01-22 08:52 - 00206080 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2014-01-22 08:52 - 2014-01-22 08:52 - 00108800 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys

Some content of TEMP:
====================
C:\Users\Homr\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-18 23:22

==================== End Of Log ============================
--- --- ---

--- --- ---

Alt 22.02.2014, 17:07   #30
schrauber
/// the machine
/// TB-Ausbilder
 
Sicherheitshinweis von Avira - Standard

Sicherheitshinweis von Avira


Fertig

Die Reihenfolge ist hier entscheidend.
  1. Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
  2. Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
    • Windowstaste + R > Combofix /Uninstall (eingeben) > OK
    • Alternative: Combofix.exe in uninstall.exe umbenennen und starten
    • Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
  3. Downloade Dir bitte auf jeden Fall DelFix Download DelFix auf deinen Desktop:
    • Schließe alle offenen Programme.
    • Starte die delfix.exe mit einem Doppelklick.
    • Setze vor jede Funktion ein Häkchen.
    • Klicke auf Start.
    • Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
    • Starte deinen Rechner abschließend neu.
  4. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.



Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun

Hier noch ein paar Tipps zur Absicherung deines Systems.


Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
  • Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
  • Windows Updates
    • Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
    • Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
  • Gehe sicher das die automatischen Updates aktiviert sind.
  • Software Updates
    Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
    Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.


Anti- Viren Software
  • Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.


Zusätzlicher Schutz
  • MalwareBytes Anti Malware
    Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
    Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
    Ein Tutorial zur Verwendung findest Du hier.
  • WinPatrol
    Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.


Sicheres Browsen
  • SpywareBlaster
    Eine kurze Einführung findest du Hier
  • MVPs hosts file
    Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
  • WOT (Web of trust)
    Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.


Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
  • Opera
  • Mozilla Firefox.
    • Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
    • NoScript
      Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
    • AdblockPlus
      Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
      Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )



Don'ts
  • Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
  • verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
  • Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
  • Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe
Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort
Seite 2 von 3 1 2 3

Themen zu Sicherheitshinweis von Avira
avira, blöden, entfernen, erhalte, herausfinden, install, problem, pup.optional.adpeak, pup.optional.datamngr.a, pup.optional.iminent.a, pup.optional.regcleanerpro.a, pup.optional.savingsbull, pup.optional.savingsbull.a, rechner, sofort, spyhunter, spyhunter entfernen, suche, tr/kilim.b.36, troja, trojaner, virus, zugriff


« nervige Pop ups | Windows 7 64bit: hohe CPU Auslastung direkt nach Start »


Ähnliche Themen: Sicherheitshinweis von Avira


  1. Sicherheitshinweis TR/Dropper.Gen
    Log-Analyse und Auswertung - 03.10.2015 (3)
  2. Avira Sicherheitshinweis
    Plagegeister aller Art und deren Bekämpfung - 28.04.2015 (5)
  3. Sicherheitshinweis bei Virenprogramm und Änderung ProxyEinstellungen
    Plagegeister aller Art und deren Bekämpfung - 21.02.2015 (16)
  4. Virus als Avira getarnt? - "C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe" /showMiniGui
    Plagegeister aller Art und deren Bekämpfung - 08.08.2014 (3)
  5. Windows 7: automatisches Öffnen von GNU-Bild + Avira Sicherheitshinweis auf Virus Fund
    Log-Analyse und Auswertung - 06.08.2014 (17)
  6. Avira findet TR/Swrort.A.10259 in chrome.exe | Avira: This is a known false alarm which was fixed with VDF version 7.11.163.82
    Plagegeister aller Art und deren Bekämpfung - 23.07.2014 (3)
  7. C:\program files (x86)\avira\my avira\avira.oe.systray.exe gruppenrichtlienie geblockt
    Log-Analyse und Auswertung - 26.06.2014 (5)
  8. Win 7 64bit Avira-Sicherheitshinweis WPM\Update\update.exe + sonstige Funde (siehe Log-Files)
    Log-Analyse und Auswertung - 28.03.2014 (15)
  9. Avira Antivir 13.0.0.4052 Sicherheitshinweis DEAKTIVIEREN
    Plagegeister aller Art und deren Bekämpfung - 07.10.2013 (3)
  10. "Sicherheitshinweis" Maleware im Hintergrund?
    Plagegeister aller Art und deren Bekämpfung - 17.09.2013 (14)
  11. AVIRA Sicherheitshinweis; Datei: 'C\$Recycle.Bin\...\n'; Virus: 'BDS/ZeroAccess.Gen'
    Plagegeister aller Art und deren Bekämpfung - 27.06.2013 (29)
  12. TR/ATRAPSGEN2-Meldungen erschienen auf meinem PC und nun ist AVIRA-Regenschirm auf Symbol von Avira Free Antivirus eingeklappt
    Log-Analyse und Auswertung - 27.09.2012 (5)
  13. Sicherheitshinweis
    Plagegeister aller Art und deren Bekämpfung - 05.02.2012 (2)
  14. Schwarzer Bildschirm, Sicherheitshinweis
    Log-Analyse und Auswertung - 30.12.2011 (27)
  15. System hängt, Avira & Malwarebytes crash nach Trojanerfund durch Avira
    Plagegeister aller Art und deren Bekämpfung - 24.03.2010 (56)
  16. "Sicherheitshinweis" auf korrupte Registry/ AdWare
    Log-Analyse und Auswertung - 11.10.2005 (3)
  17. Sicherheitshinweis! auf Banking Seite
    Plagegeister aller Art und deren Bekämpfung - 18.02.2005 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Sicherheitshinweis von Avira - In welchem Browser hast Du das Problem? - Sicherheitshinweis von Avira...
Archiv
Du betrachtest: Sicherheitshinweis von Avira auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130