Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links

Larusso · 16.02.2014, 11:40

Ich bin zwar nicht beim Sperrmüll ( heißt das in Deutschland so ?

) aber gut.

Deinstalliere bitte

FileViewPro
CCleaner
Software Informer 1.2
MassTube 12.0.0.271 Alpha 6
TweakMe!
JDownloader 0.9
AnVir Task Manager
ipswDownloader 2.0
Veetle TV
Zero Install

Starte danach den Rechner mal neu.

wallhalla23 · 16.02.2014, 12:11

Habe den Sperrmüll rausgeschleppt

Puuuh...alles deinstalliert

Rchner neu gestartet und im Browser leider immer noch Ads aber wenigstens schonmal einiges entrümpelt hehehe

Larusso · 16.02.2014, 12:13

Kommen die ADS nur in Chrome oder auch im IE vor ?

wallhalla23 · 16.02.2014, 12:22

Hmmm auf den ersten Blick habe ich im IE keine Ads entdecken können...sollte ich vllt doch den Standard Browser wechseln? Naja wenn würde ich jetzt auf den Firefox wieder zurückgreifen..

Zufrüh gefreut...jetzt doch auch auf dem IE ADS...

Larusso · 16.02.2014, 13:01

Poste mir bitte einmal ein frisches FRST Logfile

wallhalla23 · 16.02.2014, 13:15

Bitte schön

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-02-2014 01
Ran by Andy (administrator) on ANDY-PC on 16-02-2014 13:09:45
Running from C:\Users\Andy\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Adobe Systems Incorporated) c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-10] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2588968 2010-11-12] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [Power Management] - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [1831528 2011-05-10] (Acer Incorporated)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-24] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-17] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-01-19] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-01-20] (Apple Inc.)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Packard Bell MyBackup\BackupManagerTray.exe [295744 2011-03-09] (NTI Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2296709744-1596721445-3321598109-1001\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2296709744-1596721445-3321598109-1001\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2296709744-1596721445-3321598109-1001\...\Run: [HP Deskjet 3050 J610 series (NET)] - C:\Program Files\HP\HP Deskjet 3050 J610 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Toolbar: HKLM-x32 - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.192.1

Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-10]
CHR Extension: (Google Drive) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-10]
CHR Extension: (WOT) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2014-02-16]
CHR Extension: (YouTube) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-10]
CHR Extension: (Adblock Plus) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-02-16]
CHR Extension: (Google-Suche) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-10]
CHR Extension: (Vollbild-Flash) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gejijbmhbanhbllpkhfojmimfolkjgdl [2014-02-15]
CHR Extension: (Google Wallet) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-10]
CHR Extension: (Google Mail) - C:\Users\Andy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-10]
CHR HKCU\...\Chrome\Extension: [kpckgflgdapkpabemgkielbefdildaio] - C:\Users\Andy\AppData\Roaming\ACEStream\extensions\chrome_new\magicplayer.crx [2013-11-07]

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-19] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-17] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-12-20] (APN LLC.)
S4 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63600 2013-12-17] (CyberGhost S.R.L)
R2 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [872552 2011-05-10] (Acer Incorporated)
S4 GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [29696 2011-05-26] (Acer Incorporated)
R2 Live Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [244624 2011-04-22] (Acer Incorporated)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S4 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Packard Bell MyBackup\IScheduleSvc.exe [257344 2011-03-09] (NTI Corporation)
S4 TwonkyProxy; C:\Program Files (x86)\Twonky\TwonkyServer\twonkyproxy.exe [885576 2013-05-23] ()
S3 TwonkyServer; C:\Program Files (x86)\Twonky\TwonkyServer\twonkystarter.exe [586568 2013-05-23] (PacketVideo)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-17] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-09-30] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [84720 2013-12-17] (Avira Operations GmbH & Co. KG)
R3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [52832 2013-11-21] (hxxp://libusb-win32.sourceforge.net)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-19] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-19] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-19] (LG Electronics Inc.)
R2 webinstr; C:\Windows\system32\Drivers\webinstr.sys [55480 2014-01-28] (Corsica)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-16 13:09 - 2014-02-16 13:09 - 00012673 _____ () C:\Users\Andy\Desktop\FRST.txt
2014-02-16 13:09 - 2014-02-16 13:09 - 00000000 ____D () C:\Users\Andy\Desktop\FRST-OlderVersion
2014-02-16 11:49 - 2014-02-16 11:49 - 00000000 ____D () C:\ProgramData\0install.net
2014-02-16 08:12 - 2014-02-16 08:12 - 00001978 _____ () C:\Users\Public\Desktop\Deeper Dungeons.lnk
2014-02-16 08:12 - 2014-02-16 08:12 - 00001968 _____ () C:\Users\Public\Desktop\Dungeon Keeper Gold.lnk
2014-02-16 08:11 - 2014-02-16 08:11 - 00000000 ____D () C:\GOG Games
2014-02-15 17:52 - 2014-02-15 17:52 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-02-15 17:52 - 2014-02-15 17:52 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\chc
2014-02-15 10:47 - 2014-02-15 10:47 - 00002263 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-15 10:46 - 2014-02-16 12:57 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-15 10:46 - 2014-02-16 12:03 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-15 10:46 - 2014-02-15 10:52 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 10:46 - 2014-02-15 10:52 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 00:17 - 2014-02-15 00:18 - 258148408 _____ (GOG.com ) C:\Users\Andy\Downloads\setup_dungeon_keeper_gold_2.0.0.4.exe
2014-02-15 00:17 - 2014-02-15 00:17 - 03063402 _____ () C:\Users\Andy\Downloads\dk1_wallpaper.zip
2014-02-15 00:17 - 2014-02-15 00:17 - 01350643 _____ () C:\Users\Andy\Downloads\dungeon_keeper_manual.zip
2014-02-15 00:17 - 2014-02-15 00:17 - 00026618 _____ () C:\Users\Andy\Downloads\dk1_avatar.zip
2014-02-14 21:09 - 2014-02-14 21:09 - 02800104 _____ (AVAST Software) C:\Users\Andy\Downloads\avast-browser-cleanup.exe
2014-02-14 15:44 - 2014-02-14 15:44 - 00602112 _____ (OldTimer Tools) C:\Users\Andy\Desktop\OTL.exe
2014-02-14 10:08 - 2014-02-14 10:58 - 00001881 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-02-14 10:08 - 2014-02-14 10:08 - 00000000 ____D () C:\Program Files\HitmanPro
2014-02-14 10:06 - 2014-02-14 11:21 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-02-14 10:05 - 2014-02-14 10:05 - 10820032 _____ (SurfRight B.V.) C:\Users\Andy\Downloads\HitmanPro_x64.exe
2014-02-13 17:58 - 2014-02-13 17:58 - 02347384 _____ (ESET) C:\Users\Andy\Downloads\esetsmartinstaller_enu.exe
2014-02-13 12:34 - 2014-02-16 12:00 - 00000000 ____D () C:\Program Files\Software Informer
2014-02-13 12:31 - 2014-02-13 12:31 - 00001079 _____ () C:\Users\Andy\Desktop\SoftOrbits Photo Retoucher.lnk
2014-02-13 12:31 - 2014-02-13 12:31 - 00000000 ____D () C:\Program Files (x86)\SoftOrbits Photo Retoucher
2014-02-13 12:30 - 2014-02-13 12:30 - 00000000 ____D () C:\Users\Andy\Downloads\Photoretoucher
2014-02-13 12:28 - 2014-02-13 12:29 - 21535125 _____ () C:\Users\Andy\Downloads\PhotoRetoucher14.zip
2014-02-13 09:43 - 2014-02-13 09:43 - 00935514 _____ () C:\Users\Andy\Downloads\com.hackyouriphone.linkstore_1.0.1_iphoneos-arm.deb
2014-02-13 09:08 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-13 09:08 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-13 09:08 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-13 09:08 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-13 09:08 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-13 09:08 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-13 09:08 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-13 09:08 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-13 09:08 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-13 09:08 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-13 09:08 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-13 09:08 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-13 09:08 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-13 09:08 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-13 09:08 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-13 09:08 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-13 09:08 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-13 09:08 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-13 09:08 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-13 09:08 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-13 09:08 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-13 09:08 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-13 09:08 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-13 09:08 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-13 09:08 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-13 09:08 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-13 09:08 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-13 09:08 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-13 09:08 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-13 09:08 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-13 09:08 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-13 09:08 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-13 09:08 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-13 09:08 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-13 09:08 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-13 09:08 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-13 09:08 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-13 09:08 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-13 09:07 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-13 09:07 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-13 09:07 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-12 22:24 - 2014-02-12 22:24 - 00037955 _____ () C:\ComboFix.txt
2014-02-12 22:08 - 2014-02-12 22:24 - 00000000 ____D () C:\Qoobox
2014-02-12 22:08 - 2014-02-12 22:23 - 00000000 ____D () C:\Windows\erdnt
2014-02-12 22:08 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-12 22:08 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-12 22:08 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-12 22:08 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-12 22:08 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-12 22:08 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-12 22:08 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-12 22:08 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-12 15:21 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-12 15:21 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-12 15:21 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-12 15:21 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-12 15:21 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-12 15:21 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-12 15:20 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-12 15:20 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-12 15:20 - 2013-11-27 00:29 - 05693440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-02-12 15:20 - 2013-11-26 23:49 - 06573056 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-12 15:20 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-12 15:20 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-12 02:30 - 2014-02-12 02:30 - 00007651 _____ () C:\Users\Andy\AppData\Local\Resmon.ResmonCfg
2014-02-11 15:52 - 2014-02-11 15:52 - 00049454 _____ () C:\Users\Andy\Downloads\AnVir_Prozesse [88].htm
2014-02-11 15:14 - 2014-02-16 10:29 - 00000000 ____D () C:\Program Files (x86)\Reg Organizer
2014-02-11 15:14 - 2014-02-11 15:14 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\ChemTable Software
2014-02-11 15:14 - 2014-02-11 15:14 - 00000000 ____D () C:\Users\Andy\AppData\Local\ChemTable Software
2014-02-11 14:29 - 2014-02-11 14:29 - 669878021 _____ () C:\Windows\MEMORY.DMP
2014-02-11 14:29 - 2014-02-11 14:29 - 00262144 _____ () C:\Windows\Minidump\021114-35287-01.dmp
2014-02-11 00:45 - 2014-02-11 00:45 - 02800104 _____ (AVAST Software) C:\Users\Andy\Downloads\avast-browser-cleanup_9.0.0.184.exe
2014-02-10 20:33 - 2014-02-10 20:33 - 00060664 _____ () C:\Users\Andy\Downloads\FRST (1).txt
2014-02-10 20:01 - 2014-02-10 20:02 - 00060664 _____ () C:\Users\Andy\Downloads\FRST.txt
2014-02-10 20:00 - 2014-02-10 20:00 - 00000000 ____D () C:\Users\Andy\Downloads\FRST-OlderVersion
2014-02-10 15:57 - 2014-02-10 15:57 - 00380416 _____ () C:\Users\Andy\Downloads\Gmer-19357.exe
2014-02-10 15:32 - 2014-02-16 13:09 - 00000000 ____D () C:\FRST
2014-02-10 15:28 - 2014-02-16 13:09 - 02152960 _____ (Farbar) C:\Users\Andy\Desktop\FRST64.exe
2014-02-10 15:26 - 2014-02-10 15:26 - 00000000 _____ () C:\Users\Andy\defogger_reenable
2014-02-10 15:24 - 2014-02-10 15:24 - 00050477 _____ () C:\Users\Andy\Downloads\Defogger.exe
2014-02-10 14:41 - 2014-02-16 12:03 - 00000784 _____ () C:\Windows\setupact.log
2014-02-10 14:41 - 2014-02-10 14:41 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-10 14:40 - 2014-02-16 12:03 - 00013536 _____ () C:\Windows\PFRO.log
2014-02-10 13:40 - 2014-02-10 13:40 - 00847336 _____ (Google Inc.) C:\Users\Andy\Downloads\ChromeSetup (2).exe
2014-02-10 11:18 - 2014-02-10 11:18 - 00022964 _____ () C:\Users\Andy\Documents\cc_20140210_111805.reg
2014-02-10 11:17 - 2014-02-10 11:17 - 00038058 _____ () C:\Users\Andy\Documents\cc_20140210_111744.reg
2014-02-10 11:15 - 2014-02-10 11:15 - 04721920 _____ (Piriform Ltd) C:\Users\Andy\Downloads\ccsetup410.exe
2014-02-10 11:15 - 2014-02-10 11:15 - 04721920 _____ (Piriform Ltd) C:\Users\Andy\Downloads\ccsetup410 (1).exe
2014-02-09 11:30 - 2014-02-09 11:31 - 00000000 ____D () C:\Users\Andy\Iso
2014-02-09 10:29 - 2014-02-10 14:39 - 00000000 ____D () C:\AdwCleaner
2014-02-09 10:28 - 2014-02-09 10:28 - 00614792 _____ (Chip Digital GmbH) C:\Users\Andy\Downloads\AdwCleaner - CHIP-Downloader.exe
2014-02-09 10:26 - 2010-11-21 04:25 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2014-02-09 09:22 - 2014-02-09 09:22 - 00000000 ____D () C:\Windows\ERUNT
2014-02-09 09:21 - 2014-02-09 09:21 - 01037530 _____ (Thisisu) C:\Users\Andy\Downloads\JRT_6.1.1.exe
2014-02-08 22:29 - 2014-02-12 02:32 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-02-08 22:29 - 2014-02-11 20:26 - 00000000 ____D () C:\Windows\0028CB34D5D3460FB308A39A095A5E01.TMP
2014-02-08 22:14 - 2014-02-08 22:15 - 01977432 _____ () C:\Users\Andy\Downloads\winrar-x64-501.exe
2014-02-08 21:51 - 2014-02-08 21:52 - 00000752 _____ () C:\Users\Andy\Downloads\78cb0e0ec726e73656d63cca5baa53a2.dlc
2014-02-08 20:31 - 2014-02-08 20:31 - 00000000 _____ () C:\autoexec.bat
2014-02-08 20:30 - 2014-02-12 02:32 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-08 20:30 - 2014-02-08 22:29 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-08 12:04 - 2014-02-08 12:04 - 00001125 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-08 12:04 - 2014-02-08 12:04 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Malwarebytes
2014-02-08 12:04 - 2014-02-08 12:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-08 12:04 - 2014-02-08 12:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-08 12:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-08 12:02 - 2014-02-08 12:02 - 00614792 _____ (Chip Digital GmbH) C:\Users\Andy\Downloads\Malwarebytes Anti Malware - CHIP-Downloader.exe
2014-02-08 10:00 - 2012-06-06 07:06 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-02-08 10:00 - 2012-06-06 06:05 - 01390080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-02-08 09:41 - 2014-02-08 09:41 - 00449749 _____ () C:\Users\Andy\Downloads\Windows6.0-KB2864202-x86.msu
2014-02-08 09:40 - 2014-02-08 09:40 - 00633925 _____ () C:\Users\Andy\Downloads\Windows6.0-KB2849470-x86.msu
2014-02-08 09:39 - 2014-02-08 09:39 - 00937139 _____ () C:\Users\Andy\Downloads\Windows8-RT-KB2757638-x86.msu
2014-02-08 09:05 - 2014-02-08 09:05 - 00347816 _____ (Microsoft Corporation) C:\Users\Andy\Downloads\MicrosoftFixit.wu.RNP.37315273832125890.2.1.Run.exe
2014-02-08 09:01 - 2014-02-08 09:01 - 00985600 _____ () C:\Users\Andy\Downloads\MicrosoftFixit50123 (3).msi
2014-02-08 09:01 - 2014-02-08 09:01 - 00985600 _____ () C:\Users\Andy\Downloads\MicrosoftFixit50123 (2).msi
2014-02-08 09:01 - 2014-02-08 09:01 - 00985600 _____ () C:\Users\Andy\Downloads\MicrosoftFixit50123 (1).msi
2014-02-07 15:07 - 2014-02-07 15:07 - 00001280 _____ () C:\Users\Andy\Desktop\Revo Uninstaller.lnk
2014-02-07 15:07 - 2014-02-07 15:07 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-02-07 15:06 - 2014-02-07 15:06 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Andy\Downloads\revosetup.exe
2014-02-07 15:06 - 2014-02-07 15:06 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Andy\Downloads\revosetup (1).exe
2014-02-07 15:00 - 2014-02-07 15:00 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Andy\Downloads\rkill.exe
2014-02-07 12:25 - 2014-02-08 10:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-05 17:42 - 2014-02-05 17:42 - 00010372 _____ () C:\Users\Andy\Documents\cc_20140205_174220.reg
2014-02-05 17:31 - 2014-02-05 17:31 - 00000000 ____D () C:\Program Files (x86)\Shark007
2014-02-05 17:27 - 2014-02-09 10:27 - 00000000 ____D () C:\ProgramData\Advanced
2014-02-05 17:26 - 2014-02-05 17:26 - 29978800 _____ () C:\Users\Andy\Downloads\32bit_Advanced_v447.exe
2014-02-03 21:30 - 2014-02-04 01:03 - 00000000 ____D () C:\Program Files\Ekahau
2014-02-03 21:27 - 2014-02-03 21:27 - 00924988 _____ () C:\Users\Andy\Downloads\kismet_8441.gz
2014-02-03 16:58 - 2014-02-03 16:58 - 01286686 _____ () C:\Users\Andy\Downloads\UISounds.rar
2014-02-03 11:06 - 2014-02-03 11:06 - 00000000 ____D () C:\Windows\CheckSur
2014-02-03 11:03 - 2014-02-03 11:05 - 457019995 _____ () C:\Users\Andy\Downloads\Windows6.1-KB947821-v31-x64.msu
2014-02-02 11:36 - 2014-02-02 11:36 - 00000000 ____D () C:\Users\Andy\AppData\Local\Microsoft_Research
2014-02-02 10:59 - 2014-02-02 10:59 - 00001278 _____ () C:\Users\Public\Desktop\ASCOM Diagnostics.lnk
2014-02-02 10:59 - 2014-02-02 10:59 - 00001116 _____ () C:\Users\Public\Desktop\ProfileExplorer.lnk
2014-02-02 10:59 - 2014-02-02 10:59 - 00000000 ____D () C:\Windows\Symbols
2014-02-02 10:59 - 2014-02-02 10:59 - 00000000 ____D () C:\Program Files\Common Files\ASCOM
2014-02-02 10:59 - 2014-02-02 10:59 - 00000000 ____D () C:\Program Files (x86)\ASCOM
2014-02-02 10:58 - 2014-02-04 01:02 - 00000000 __HDC () C:\ProgramData\{BBDFE733-F48B-4E86-B7C1-E6F173F01FCF}
2014-02-02 10:58 - 2014-02-02 10:58 - 24829830 _____ (ASCOM Initiative ) C:\Users\Andy\Downloads\ASCOMPlatform6SP3.exe
2014-02-02 10:58 - 2014-02-02 10:58 - 00000000 ____D () C:\Users\Andy\Documents\ASCOM
2014-02-02 09:49 - 2014-02-02 09:49 - 00000000 ____D () C:\Users\Andy\Documents\WWT MIDI Controller Maps
2014-02-02 09:49 - 2014-02-02 09:49 - 00000000 ____D () C:\Users\Andy\Documents\WWT Collections
2014-02-02 09:45 - 2014-02-02 09:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Research
2014-02-02 09:45 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-02-02 09:45 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-02-02 09:45 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-02-02 09:45 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-02-02 09:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-02-02 09:45 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-02-02 09:45 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-02-02 09:45 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-02-02 09:45 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-02-02 09:42 - 2014-02-02 09:43 - 80880128 _____ () C:\Users\Andy\Downloads\wwtsetup.5.0.3.msi
2014-02-01 13:48 - 2014-02-01 13:48 - 00005398 _____ () C:\Users\Andy\Downloads\Main.zip
2014-02-01 13:48 - 2014-02-01 13:48 - 00005398 _____ () C:\Users\Andy\Downloads\Main (1).zip
2014-02-01 13:05 - 2014-02-01 13:08 - 168481318 _____ () C:\Users\Andy\Downloads\uniaw_ios7_cydget.rar
2014-01-31 12:55 - 2014-02-09 10:54 - 00000000 ____D () C:\Program Files (x86)\Wondershare
2014-01-31 12:55 - 2014-01-31 12:55 - 00000000 ____D () C:\Users\Andy\AppData\Local\Wondershare
2014-01-31 12:55 - 2014-01-31 12:55 - 00000000 ____D () C:\ProgramData\Wondershare
2014-01-31 11:21 - 2014-01-31 11:21 - 27375656 _____ (Wondershare Software Co.,Ltd. ) C:\Users\Andy\Downloads\ios-recovery (2).exe
2014-01-31 11:19 - 2014-01-31 11:20 - 27375520 _____ (Wondershare Software Co.,Ltd. ) C:\Users\Andy\Downloads\ios-recovery (1).exe
2014-01-31 11:18 - 2014-01-31 11:19 - 29010304 _____ (Wondershare ) C:\Users\Andy\Downloads\mobile-transfer.exe
2014-01-31 11:18 - 2014-01-31 11:18 - 27375520 _____ (Wondershare Software Co.,Ltd. ) C:\Users\Andy\Downloads\ios-recovery.exe
2014-01-31 11:18 - 2014-01-31 11:18 - 22655552 _____ (Wondershare ) C:\Users\Andy\Downloads\ios-manager.exe
2014-01-30 12:00 - 2014-01-30 12:04 - 10911944 _____ () C:\Users\Andy\Downloads\BeatsMusic-v321 (1).ipa
2014-01-29 12:03 - 2014-01-29 12:03 - 00001734 _____ () C:\Windows\patsearch.bin
2014-01-29 12:03 - 2014-01-29 12:03 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-01-29 12:03 - 2014-01-28 15:20 - 00055480 _____ (Corsica) C:\Windows\system32\Drivers\webinstr.sys
2014-01-28 10:57 - 2014-01-28 10:57 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\UltraVNC
2014-01-28 10:54 - 2014-01-28 10:54 - 00001166 _____ () C:\Users\Andy\Desktop\UltraVNC Viewer.lnk
2014-01-28 10:54 - 2014-01-28 10:54 - 00001149 _____ () C:\Users\Andy\Desktop\UltraVNC Server.lnk
2014-01-28 10:54 - 2014-01-28 10:54 - 00000000 ____D () C:\Program Files (x86)\uvnc bvba
2014-01-26 12:20 - 2014-01-26 12:20 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\Program Files\iTunes
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\Program Files\iPod
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-26 10:51 - 2014-01-26 10:51 - 00145859 _____ () C:\Users\Andy\Downloads\hosts.rar
2014-01-25 11:00 - 2014-01-28 14:14 - 00000000 ____D () C:\Program Files (x86)\SixaxisPairTool
2014-01-25 11:00 - 2014-01-25 11:01 - 00000000 ____D () C:\ProgramData\Package Cache
2014-01-25 10:55 - 2014-01-25 10:55 - 13591657 _____ (Dancing Pixel Studios ) C:\Users\Andy\Downloads\SixaxisPairToolSetup-0.2.5.exe
2014-01-22 17:46 - 2014-01-22 17:46 - 00800127 _____ () C:\Users\Andy\Downloads\bAdaccell.zip
2014-01-22 17:46 - 2014-01-22 17:46 - 00594482 _____ () C:\Users\Andy\Downloads\LSClock.zip
2014-01-22 17:46 - 2014-01-22 17:46 - 00001477 _____ () C:\Users\Andy\Downloads\BlurredLS.zip
2014-01-22 14:41 - 2014-01-22 14:41 - 02278856 _____ () C:\Users\Andy\Downloads\avira_pc_cleaner_de.exe
2014-01-21 17:49 - 2014-01-21 17:50 - 16674816 _____ () C:\Users\Andy\Downloads\python-2.7.6.amd64 (1).msi
2014-01-21 17:46 - 2014-01-21 17:48 - 17458242 _____ () C:\Users\Andy\Downloads\python-2.7.6.amd64-pdb.zip
2014-01-21 14:57 - 2014-01-21 14:57 - 00000000 ____D () C:\Users\Andy\AppData\Local\MetaGeek,_LLC
2014-01-21 14:56 - 2014-01-21 14:56 - 04767744 _____ () C:\Users\Andy\Downloads\inSSIDer31-installer.msi
2014-01-21 14:56 - 2014-01-21 14:56 - 00002489 _____ () C:\Users\Public\Desktop\inSSIDer Home.lnk
2014-01-21 14:56 - 2014-01-21 14:56 - 00000000 ____D () C:\Program Files (x86)\MetaGeek
2014-01-21 14:21 - 2014-01-21 14:21 - 00000000 ____D () C:\Python27
2014-01-21 14:18 - 2014-01-21 14:18 - 00000000 ____D () C:\Python33
2014-01-21 13:41 - 2014-02-16 13:08 - 00000336 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-01-21 13:41 - 2014-02-10 19:50 - 00003342 _____ () C:\Windows\System32\Tasks\HP Photo Creations Communicator
2014-01-21 13:40 - 2014-01-21 13:41 - 00000000 ____D () C:\ProgramData\Visan
2014-01-21 13:38 - 2014-02-16 12:34 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-21 13:38 - 2014-02-15 18:06 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-21 13:38 - 2014-02-15 18:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-21 13:38 - 2014-02-15 18:06 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-21 13:38 - 2014-01-21 13:38 - 00000000 ____D () C:\Windows\system32\Macromed
2014-01-21 13:35 - 2014-01-21 13:35 - 00000000 ____D () C:\Program Files (x86)\MPC-HC
2014-01-21 13:34 - 2014-01-21 13:34 - 00002031 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-01-21 13:33 - 2014-01-21 13:33 - 00000000 ____D () C:\Users\Default\AppData\Local\Adobe
2014-01-21 13:33 - 2014-01-21 13:33 - 00000000 ____D () C:\Users\Default User\AppData\Local\Adobe
2014-01-21 13:25 - 2014-01-21 13:25 - 00000000 ____D () C:\Users\Andy\AppData\Local\Secunia PSI
2014-01-21 13:25 - 2014-01-21 13:25 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-01-18 09:55 - 2014-01-18 10:16 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\FileZilla
2014-01-18 09:54 - 2014-01-18 14:38 - 00000600 _____ () C:\Users\Andy\AppData\Roaming\winscp.rnd

==================== One Month Modified Files and Folders =======

2014-02-16 13:10 - 2014-02-16 13:09 - 00012673 _____ () C:\Users\Andy\Desktop\FRST.txt
2014-02-16 13:09 - 2014-02-16 13:09 - 00000000 ____D () C:\Users\Andy\Desktop\FRST-OlderVersion
2014-02-16 13:09 - 2014-02-10 15:32 - 00000000 ____D () C:\FRST
2014-02-16 13:09 - 2014-02-10 15:28 - 02152960 _____ (Farbar) C:\Users\Andy\Desktop\FRST64.exe
2014-02-16 13:08 - 2014-01-21 13:41 - 00000336 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-02-16 12:57 - 2014-02-15 10:46 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-16 12:51 - 2013-10-31 08:17 - 00003922 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{7BEF03C6-9BEE-4AAD-9BEE-7F4F020EC8F1}
2014-02-16 12:34 - 2014-01-21 13:38 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-16 12:11 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-16 12:11 - 2009-07-14 05:45 - 00016752 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-16 12:03 - 2014-02-15 10:46 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-16 12:03 - 2014-02-10 14:41 - 00000784 _____ () C:\Windows\setupact.log
2014-02-16 12:03 - 2014-02-10 14:40 - 00013536 _____ () C:\Windows\PFRO.log
2014-02-16 12:03 - 2013-10-26 12:18 - 01573345 _____ () C:\Windows\WindowsUpdate.log
2014-02-16 12:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-16 12:02 - 2013-10-27 17:29 - 00000000 ____D () C:\Program Files\FileViewPro
2014-02-16 12:00 - 2014-02-13 12:34 - 00000000 ____D () C:\Program Files\Software Informer
2014-02-16 11:57 - 2011-06-03 05:26 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-02-16 11:57 - 2011-06-03 04:28 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-02-16 11:49 - 2014-02-16 11:49 - 00000000 ____D () C:\ProgramData\0install.net
2014-02-16 10:29 - 2014-02-11 15:14 - 00000000 ____D () C:\Program Files (x86)\Reg Organizer
2014-02-16 08:24 - 2013-10-27 10:52 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-16 08:22 - 2013-10-27 10:52 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-16 08:12 - 2014-02-16 08:12 - 00001978 _____ () C:\Users\Public\Desktop\Deeper Dungeons.lnk
2014-02-16 08:12 - 2014-02-16 08:12 - 00001968 _____ () C:\Users\Public\Desktop\Dungeon Keeper Gold.lnk
2014-02-16 08:11 - 2014-02-16 08:11 - 00000000 ____D () C:\GOG Games
2014-02-16 07:22 - 2013-10-26 22:10 - 00699786 _____ () C:\Windows\system32\perfh007.dat
2014-02-16 07:22 - 2013-10-26 22:10 - 00149636 _____ () C:\Windows\system32\perfc007.dat
2014-02-16 07:22 - 2009-07-14 06:13 - 01620796 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-15 19:12 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-15 18:06 - 2014-01-21 13:38 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-15 18:06 - 2014-01-21 13:38 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-15 18:06 - 2014-01-21 13:38 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-15 18:06 - 2013-10-26 13:20 - 00000000 ____D () C:\Users\Andy\AppData\Local\Adobe
2014-02-15 17:52 - 2014-02-15 17:52 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-02-15 17:52 - 2014-02-15 17:52 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\chc
2014-02-15 17:52 - 2013-10-26 14:04 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Adobe
2014-02-15 10:52 - 2014-02-15 10:46 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 10:52 - 2014-02-15 10:46 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 10:47 - 2014-02-15 10:47 - 00002263 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-15 10:47 - 2013-10-26 14:07 - 00000000 ____D () C:\Program Files (x86)\Google
2014-02-15 00:18 - 2014-02-15 00:17 - 258148408 _____ (GOG.com ) C:\Users\Andy\Downloads\setup_dungeon_keeper_gold_2.0.0.4.exe
2014-02-15 00:17 - 2014-02-15 00:17 - 03063402 _____ () C:\Users\Andy\Downloads\dk1_wallpaper.zip
2014-02-15 00:17 - 2014-02-15 00:17 - 01350643 _____ () C:\Users\Andy\Downloads\dungeon_keeper_manual.zip
2014-02-15 00:17 - 2014-02-15 00:17 - 00026618 _____ () C:\Users\Andy\Downloads\dk1_avatar.zip
2014-02-14 21:09 - 2014-02-14 21:09 - 02800104 _____ (AVAST Software) C:\Users\Andy\Downloads\avast-browser-cleanup.exe
2014-02-14 15:44 - 2014-02-14 15:44 - 00602112 _____ (OldTimer Tools) C:\Users\Andy\Desktop\OTL.exe
2014-02-14 11:21 - 2014-02-14 10:06 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-02-14 10:58 - 2014-02-14 10:08 - 00001881 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-02-14 10:08 - 2014-02-14 10:08 - 00000000 ____D () C:\Program Files\HitmanPro
2014-02-14 10:05 - 2014-02-14 10:05 - 10820032 _____ (SurfRight B.V.) C:\Users\Andy\Downloads\HitmanPro_x64.exe
2014-02-13 17:58 - 2014-02-13 17:58 - 02347384 _____ (ESET) C:\Users\Andy\Downloads\esetsmartinstaller_enu.exe
2014-02-13 12:31 - 2014-02-13 12:31 - 00001079 _____ () C:\Users\Andy\Desktop\SoftOrbits Photo Retoucher.lnk
2014-02-13 12:31 - 2014-02-13 12:31 - 00000000 ____D () C:\Program Files (x86)\SoftOrbits Photo Retoucher
2014-02-13 12:30 - 2014-02-13 12:30 - 00000000 ____D () C:\Users\Andy\Downloads\Photoretoucher
2014-02-13 12:29 - 2014-02-13 12:28 - 21535125 _____ () C:\Users\Andy\Downloads\PhotoRetoucher14.zip
2014-02-13 09:43 - 2014-02-13 09:43 - 00935514 _____ () C:\Users\Andy\Downloads\com.hackyouriphone.linkstore_1.0.1_iphoneos-arm.deb
2014-02-13 09:10 - 2013-12-25 12:08 - 01595076 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-12 22:24 - 2014-02-12 22:24 - 00037955 _____ () C:\ComboFix.txt
2014-02-12 22:24 - 2014-02-12 22:08 - 00000000 ____D () C:\Qoobox
2014-02-12 22:24 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-02-12 22:23 - 2014-02-12 22:08 - 00000000 ____D () C:\Windows\erdnt
2014-02-12 22:20 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-12 22:16 - 2009-07-14 03:34 - 66584576 _____ () C:\Windows\system32\config\software.bak
2014-02-12 22:16 - 2009-07-14 03:34 - 18087936 _____ () C:\Windows\system32\config\system.bak
2014-02-12 22:16 - 2009-07-14 03:34 - 00786432 _____ () C:\Windows\system32\config\default.bak
2014-02-12 22:16 - 2009-07-14 03:34 - 00024576 _____ () C:\Windows\system32\config\security.bak
2014-02-12 22:16 - 2009-07-14 03:34 - 00024576 _____ () C:\Windows\system32\config\sam.bak
2014-02-12 22:15 - 2013-10-26 13:20 - 00000000 ___RD () C:\Users\Andy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-12 02:32 - 2014-02-08 22:29 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-02-12 02:32 - 2014-02-08 20:30 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-02-12 02:30 - 2014-02-12 02:30 - 00007651 _____ () C:\Users\Andy\AppData\Local\Resmon.ResmonCfg
2014-02-11 20:26 - 2014-02-08 22:29 - 00000000 ____D () C:\Windows\0028CB34D5D3460FB308A39A095A5E01.TMP
2014-02-11 15:52 - 2014-02-11 15:52 - 00049454 _____ () C:\Users\Andy\Downloads\AnVir_Prozesse [88].htm
2014-02-11 15:14 - 2014-02-11 15:14 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\ChemTable Software
2014-02-11 15:14 - 2014-02-11 15:14 - 00000000 ____D () C:\Users\Andy\AppData\Local\ChemTable Software
2014-02-11 15:09 - 2013-12-15 08:59 - 00000000 ____D () C:\Users\Andy\AppData\Local\AnVir
2014-02-11 15:06 - 2013-11-22 13:48 - 00002942 _____ () C:\Windows\System32\Tasks\{8FBDFD42-C049-4C84-85CE-32F02398AE9E}
2014-02-11 14:29 - 2014-02-11 14:29 - 669878021 _____ () C:\Windows\MEMORY.DMP
2014-02-11 14:29 - 2014-02-11 14:29 - 00262144 _____ () C:\Windows\Minidump\021114-35287-01.dmp
2014-02-11 14:29 - 2013-11-26 13:56 - 00000000 ____D () C:\Windows\Minidump
2014-02-11 09:07 - 2013-11-04 11:57 - 00000000 ____D () C:\ProgramData\TwonkyServer
2014-02-11 00:45 - 2014-02-11 00:45 - 02800104 _____ (AVAST Software) C:\Users\Andy\Downloads\avast-browser-cleanup_9.0.0.184.exe
2014-02-10 20:33 - 2014-02-10 20:33 - 00060664 _____ () C:\Users\Andy\Downloads\FRST (1).txt
2014-02-10 20:02 - 2014-02-10 20:01 - 00060664 _____ () C:\Users\Andy\Downloads\FRST.txt
2014-02-10 20:00 - 2014-02-10 20:00 - 00000000 ____D () C:\Users\Andy\Downloads\FRST-OlderVersion
2014-02-10 19:51 - 2013-11-12 09:23 - 00003676 _____ () C:\Windows\System32\Tasks\HP-Online-Aktualisierungsprogramm
2014-02-10 19:50 - 2014-01-21 13:41 - 00003342 _____ () C:\Windows\System32\Tasks\HP Photo Creations Communicator
2014-02-10 16:36 - 2013-11-12 10:21 - 00000000 ____D () C:\Users\Andy\Desktop\RK_Quarantine
2014-02-10 15:57 - 2014-02-10 15:57 - 00380416 _____ () C:\Users\Andy\Downloads\Gmer-19357.exe
2014-02-10 15:26 - 2014-02-10 15:26 - 00000000 _____ () C:\Users\Andy\defogger_reenable
2014-02-10 15:26 - 2013-10-26 13:17 - 00000000 ____D () C:\Users\Andy
2014-02-10 15:24 - 2014-02-10 15:24 - 00050477 _____ () C:\Users\Andy\Downloads\Defogger.exe
2014-02-10 14:41 - 2014-02-10 14:41 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-10 14:39 - 2014-02-09 10:29 - 00000000 ____D () C:\AdwCleaner
2014-02-10 13:40 - 2014-02-10 13:40 - 00847336 _____ (Google Inc.) C:\Users\Andy\Downloads\ChromeSetup (2).exe
2014-02-10 13:16 - 2013-10-26 14:07 - 00000000 ____D () C:\Users\Andy\AppData\Local\Google
2014-02-10 13:07 - 2013-10-27 16:09 - 00000000 ____D () C:\Users\Andy\Downloads\jdown
2014-02-10 11:18 - 2014-02-10 11:18 - 00022964 _____ () C:\Users\Andy\Documents\cc_20140210_111805.reg
2014-02-10 11:17 - 2014-02-10 11:17 - 00038058 _____ () C:\Users\Andy\Documents\cc_20140210_111744.reg
2014-02-10 11:16 - 2013-10-27 10:36 - 00000000 ____D () C:\Users\Andy\AppData\Local\CrashDumps
2014-02-10 11:15 - 2014-02-10 11:15 - 04721920 _____ (Piriform Ltd) C:\Users\Andy\Downloads\ccsetup410.exe
2014-02-10 11:15 - 2014-02-10 11:15 - 04721920 _____ (Piriform Ltd) C:\Users\Andy\Downloads\ccsetup410 (1).exe
2014-02-09 11:35 - 2014-01-05 21:16 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\.ACEStream
2014-02-09 11:31 - 2014-02-09 11:30 - 00000000 ____D () C:\Users\Andy\Iso
2014-02-09 11:09 - 2013-10-30 08:56 - 00000000 ____D () C:\Program Files (x86)\AVS4YOU
2014-02-09 11:08 - 2013-10-29 09:39 - 00000000 ____D () C:\Program Files (x86)\AviSynth 2.5
2014-02-09 11:06 - 2011-06-03 05:05 - 00000000 ____D () C:\Program Files (x86)\Packard Bell
2014-02-09 10:54 - 2014-01-31 12:55 - 00000000 ____D () C:\Program Files (x86)\Wondershare
2014-02-09 10:28 - 2014-02-09 10:28 - 00614792 _____ (Chip Digital GmbH) C:\Users\Andy\Downloads\AdwCleaner - CHIP-Downloader.exe
2014-02-09 10:27 - 2014-02-05 17:27 - 00000000 ____D () C:\ProgramData\Advanced
2014-02-09 09:22 - 2014-02-09 09:22 - 00000000 ____D () C:\Windows\ERUNT
2014-02-09 09:21 - 2014-02-09 09:21 - 01037530 _____ (Thisisu) C:\Users\Andy\Downloads\JRT_6.1.1.exe
2014-02-09 00:10 - 2013-10-26 13:36 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-08 23:57 - 2013-11-22 08:09 - 00002942 _____ () C:\Windows\System32\Tasks\{8BC343F1-2606-4424-8E92-FF7B9092DAA0}
2014-02-08 23:57 - 2013-11-22 07:49 - 00002984 _____ () C:\Windows\System32\Tasks\{F0A3E213-E374-43FB-8069-4FED942CE32A}
2014-02-08 23:57 - 2013-11-21 17:11 - 00003004 _____ () C:\Windows\System32\Tasks\{4120A149-E659-4DEC-9C41-278D729D86BC}
2014-02-08 23:57 - 2013-11-21 17:07 - 00002990 _____ () C:\Windows\System32\Tasks\{27C13EC4-49AF-45BA-893D-7A79763EF64A}
2014-02-08 23:57 - 2013-11-21 16:52 - 00000000 ____D () C:\Users\Andy\Downloads\iRecovery
2014-02-08 22:29 - 2014-02-08 20:30 - 00000000 ____D () C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-02-08 22:15 - 2014-02-08 22:14 - 01977432 _____ () C:\Users\Andy\Downloads\winrar-x64-501.exe
2014-02-08 22:15 - 2013-11-02 09:23 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-08 21:52 - 2014-02-08 21:51 - 00000752 _____ () C:\Users\Andy\Downloads\78cb0e0ec726e73656d63cca5baa53a2.dlc
2014-02-08 20:31 - 2014-02-08 20:31 - 00000000 _____ () C:\autoexec.bat
2014-02-08 12:04 - 2014-02-08 12:04 - 00001125 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-08 12:04 - 2014-02-08 12:04 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\Malwarebytes
2014-02-08 12:04 - 2014-02-08 12:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-08 12:04 - 2014-02-08 12:04 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-08 12:02 - 2014-02-08 12:02 - 00614792 _____ (Chip Digital GmbH) C:\Users\Andy\Downloads\Malwarebytes Anti Malware - CHIP-Downloader.exe
2014-02-08 11:34 - 2013-10-27 13:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-08 10:06 - 2014-02-07 12:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-02-08 10:03 - 2009-07-14 06:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-02-08 09:41 - 2014-02-08 09:41 - 00449749 _____ () C:\Users\Andy\Downloads\Windows6.0-KB2864202-x86.msu
2014-02-08 09:40 - 2014-02-08 09:40 - 00633925 _____ () C:\Users\Andy\Downloads\Windows6.0-KB2849470-x86.msu
2014-02-08 09:39 - 2014-02-08 09:39 - 00937139 _____ () C:\Users\Andy\Downloads\Windows8-RT-KB2757638-x86.msu
2014-02-08 09:05 - 2014-02-08 09:05 - 00347816 _____ (Microsoft Corporation) C:\Users\Andy\Downloads\MicrosoftFixit.wu.RNP.37315273832125890.2.1.Run.exe
2014-02-08 09:01 - 2014-02-08 09:01 - 00985600 _____ () C:\Users\Andy\Downloads\MicrosoftFixit50123 (3).msi
2014-02-08 09:01 - 2014-02-08 09:01 - 00985600 _____ () C:\Users\Andy\Downloads\MicrosoftFixit50123 (2).msi
2014-02-08 09:01 - 2014-02-08 09:01 - 00985600 _____ () C:\Users\Andy\Downloads\MicrosoftFixit50123 (1).msi
2014-02-07 15:17 - 2013-10-26 13:43 - 00000000 ____D () C:\Program Files (x86)\NeoSmart Technologies
2014-02-07 15:07 - 2014-02-07 15:07 - 00001280 _____ () C:\Users\Andy\Desktop\Revo Uninstaller.lnk
2014-02-07 15:07 - 2014-02-07 15:07 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-02-07 15:06 - 2014-02-07 15:06 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Andy\Downloads\revosetup.exe
2014-02-07 15:06 - 2014-02-07 15:06 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Andy\Downloads\revosetup (1).exe
2014-02-07 15:00 - 2014-02-07 15:00 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Andy\Downloads\rkill.exe
2014-02-06 17:27 - 2013-11-25 12:15 - 00000000 ____D () C:\Users\Andy\Documents\MassFaces
2014-02-06 13:16 - 2014-02-13 09:08 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-13 09:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-13 09:08 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-13 09:08 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-13 09:08 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-13 09:08 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-13 09:08 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-13 09:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-13 09:08 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-13 09:08 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-13 09:08 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-13 09:08 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-13 09:07 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-13 09:08 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-13 09:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-13 09:08 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-13 09:07 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-13 09:08 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-13 09:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-13 09:08 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-13 09:08 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-13 09:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-13 09:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-13 09:08 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-13 09:08 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-13 09:08 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-13 09:08 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-13 09:08 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:25 - 2014-02-13 09:07 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:24 - 2014-02-13 09:08 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-13 09:08 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-13 09:08 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-13 09:08 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-13 09:08 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-13 09:08 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-13 09:08 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-13 09:08 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-13 09:08 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-13 09:08 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-06 08:48 - 2013-10-27 15:22 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\vlc
2014-02-05 17:44 - 2013-11-13 11:23 - 00000000 ____D () C:\Windows\pss
2014-02-05 17:42 - 2014-02-05 17:42 - 00010372 _____ () C:\Users\Andy\Documents\cc_20140205_174220.reg
2014-02-05 17:41 - 2007-07-12 02:49 - 00000000 ____D () C:\Windows\Panther
2014-02-05 17:31 - 2014-02-05 17:31 - 00000000 ____D () C:\Program Files (x86)\Shark007
2014-02-05 17:31 - 2013-10-29 09:42 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-02-05 17:26 - 2014-02-05 17:26 - 29978800 _____ () C:\Users\Andy\Downloads\32bit_Advanced_v447.exe
2014-02-04 08:49 - 2009-07-14 03:34 - 68419584 _____ () C:\Windows\system32\config\SOFTWARE_tureg_old
2014-02-04 08:49 - 2009-07-14 03:34 - 17563648 _____ () C:\Windows\system32\config\SYSTEM_tureg_old
2014-02-04 08:49 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY_tureg_old
2014-02-04 08:47 - 2009-07-14 03:34 - 00786432 _____ () C:\Windows\system32\config\DEFAULT_tureg_old
2014-02-04 08:47 - 2009-07-14 03:34 - 00262144 _____ () C:\Windows\system32\config\SAM_tureg_old
2014-02-04 01:03 - 2014-02-03 21:30 - 00000000 ____D () C:\Program Files\Ekahau
2014-02-04 01:02 - 2014-02-02 10:58 - 00000000 __HDC () C:\ProgramData\{BBDFE733-F48B-4E86-B7C1-E6F173F01FCF}
2014-02-03 21:27 - 2014-02-03 21:27 - 00924988 _____ () C:\Users\Andy\Downloads\kismet_8441.gz
2014-02-03 16:58 - 2014-02-03 16:58 - 01286686 _____ () C:\Users\Andy\Downloads\UISounds.rar
2014-02-03 11:06 - 2014-02-03 11:06 - 00000000 ____D () C:\Windows\CheckSur
2014-02-03 11:05 - 2014-02-03 11:03 - 457019995 _____ () C:\Users\Andy\Downloads\Windows6.1-KB947821-v31-x64.msu
2014-02-02 11:53 - 2013-10-27 15:22 - 00000883 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-02 11:36 - 2014-02-02 11:36 - 00000000 ____D () C:\Users\Andy\AppData\Local\Microsoft_Research
2014-02-02 10:59 - 2014-02-02 10:59 - 00001278 _____ () C:\Users\Public\Desktop\ASCOM Diagnostics.lnk
2014-02-02 10:59 - 2014-02-02 10:59 - 00001116 _____ () C:\Users\Public\Desktop\ProfileExplorer.lnk
2014-02-02 10:59 - 2014-02-02 10:59 - 00000000 ____D () C:\Windows\Symbols
2014-02-02 10:59 - 2014-02-02 10:59 - 00000000 ____D () C:\Program Files\Common Files\ASCOM
2014-02-02 10:59 - 2014-02-02 10:59 - 00000000 ____D () C:\Program Files (x86)\ASCOM
2014-02-02 10:58 - 2014-02-02 10:58 - 24829830 _____ (ASCOM Initiative ) C:\Users\Andy\Downloads\ASCOMPlatform6SP3.exe
2014-02-02 10:58 - 2014-02-02 10:58 - 00000000 ____D () C:\Users\Andy\Documents\ASCOM
2014-02-02 09:49 - 2014-02-02 09:49 - 00000000 ____D () C:\Users\Andy\Documents\WWT MIDI Controller Maps
2014-02-02 09:49 - 2014-02-02 09:49 - 00000000 ____D () C:\Users\Andy\Documents\WWT Collections
2014-02-02 09:45 - 2014-02-02 09:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Research
2014-02-02 09:43 - 2014-02-02 09:42 - 80880128 _____ () C:\Users\Andy\Downloads\wwtsetup.5.0.3.msi
2014-02-01 13:48 - 2014-02-01 13:48 - 00005398 _____ () C:\Users\Andy\Downloads\Main.zip
2014-02-01 13:48 - 2014-02-01 13:48 - 00005398 _____ () C:\Users\Andy\Downloads\Main (1).zip
2014-02-01 13:08 - 2014-02-01 13:05 - 168481318 _____ () C:\Users\Andy\Downloads\uniaw_ios7_cydget.rar
2014-01-31 12:55 - 2014-01-31 12:55 - 00000000 ____D () C:\Users\Andy\AppData\Local\Wondershare
2014-01-31 12:55 - 2014-01-31 12:55 - 00000000 ____D () C:\ProgramData\Wondershare
2014-01-31 11:21 - 2014-01-31 11:21 - 27375656 _____ (Wondershare Software Co.,Ltd. ) C:\Users\Andy\Downloads\ios-recovery (2).exe
2014-01-31 11:20 - 2014-01-31 11:19 - 27375520 _____ (Wondershare Software Co.,Ltd. ) C:\Users\Andy\Downloads\ios-recovery (1).exe
2014-01-31 11:19 - 2014-01-31 11:18 - 29010304 _____ (Wondershare ) C:\Users\Andy\Downloads\mobile-transfer.exe
2014-01-31 11:18 - 2014-01-31 11:18 - 27375520 _____ (Wondershare Software Co.,Ltd. ) C:\Users\Andy\Downloads\ios-recovery.exe
2014-01-31 11:18 - 2014-01-31 11:18 - 22655552 _____ (Wondershare ) C:\Users\Andy\Downloads\ios-manager.exe
2014-01-30 12:04 - 2014-01-30 12:00 - 10911944 _____ () C:\Users\Andy\Downloads\BeatsMusic-v321 (1).ipa
2014-01-29 12:03 - 2014-01-29 12:03 - 00001734 _____ () C:\Windows\patsearch.bin
2014-01-29 12:03 - 2014-01-29 12:03 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstr_01009.Wdf
2014-01-29 12:03 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-01-28 15:20 - 2014-01-29 12:03 - 00055480 _____ (Corsica) C:\Windows\system32\Drivers\webinstr.sys
2014-01-28 14:14 - 2014-01-25 11:00 - 00000000 ____D () C:\Program Files (x86)\SixaxisPairTool
2014-01-28 10:57 - 2014-01-28 10:57 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\UltraVNC
2014-01-28 10:54 - 2014-01-28 10:54 - 00001166 _____ () C:\Users\Andy\Desktop\UltraVNC Viewer.lnk
2014-01-28 10:54 - 2014-01-28 10:54 - 00001149 _____ () C:\Users\Andy\Desktop\UltraVNC Server.lnk
2014-01-28 10:54 - 2014-01-28 10:54 - 00000000 ____D () C:\Program Files (x86)\uvnc bvba
2014-01-27 10:00 - 2011-06-03 05:22 - 00000000 ____D () C:\ProgramData\Adobe
2014-01-26 12:20 - 2014-01-26 12:20 - 00001795 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\Program Files\iTunes
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\Program Files\iPod
2014-01-26 12:20 - 2014-01-26 12:20 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-01-26 12:16 - 2013-10-27 07:41 - 00000000 ____D () C:\ProgramData\Apple
2014-01-26 10:51 - 2014-01-26 10:51 - 00145859 _____ () C:\Users\Andy\Downloads\hosts.rar
2014-01-25 11:06 - 2013-11-21 16:25 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-01-25 11:01 - 2014-01-25 11:00 - 00000000 ____D () C:\ProgramData\Package Cache
2014-01-25 10:55 - 2014-01-25 10:55 - 13591657 _____ (Dancing Pixel Studios ) C:\Users\Andy\Downloads\SixaxisPairToolSetup-0.2.5.exe
2014-01-23 10:17 - 2013-11-07 10:49 - 00003694 _____ () C:\Windows\System32\Tasks\Adobe-Online-Aktualisierungsprogramm
2014-01-22 19:16 - 2013-11-26 10:35 - 00000000 ____D () C:\Users\Andy\Documents\MassTube
2014-01-22 17:46 - 2014-01-22 17:46 - 00800127 _____ () C:\Users\Andy\Downloads\bAdaccell.zip
2014-01-22 17:46 - 2014-01-22 17:46 - 00594482 _____ () C:\Users\Andy\Downloads\LSClock.zip
2014-01-22 17:46 - 2014-01-22 17:46 - 00001477 _____ () C:\Users\Andy\Downloads\BlurredLS.zip
2014-01-22 14:41 - 2014-01-22 14:41 - 02278856 _____ () C:\Users\Andy\Downloads\avira_pc_cleaner_de.exe
2014-01-21 17:50 - 2014-01-21 17:49 - 16674816 _____ () C:\Users\Andy\Downloads\python-2.7.6.amd64 (1).msi
2014-01-21 17:48 - 2014-01-21 17:46 - 17458242 _____ () C:\Users\Andy\Downloads\python-2.7.6.amd64-pdb.zip
2014-01-21 14:57 - 2014-01-21 14:57 - 00000000 ____D () C:\Users\Andy\AppData\Local\MetaGeek,_LLC
2014-01-21 14:56 - 2014-01-21 14:56 - 04767744 _____ () C:\Users\Andy\Downloads\inSSIDer31-installer.msi
2014-01-21 14:56 - 2014-01-21 14:56 - 00002489 _____ () C:\Users\Public\Desktop\inSSIDer Home.lnk
2014-01-21 14:56 - 2014-01-21 14:56 - 00000000 ____D () C:\Program Files (x86)\MetaGeek
2014-01-21 14:21 - 2014-01-21 14:21 - 00000000 ____D () C:\Python27
2014-01-21 14:18 - 2014-01-21 14:18 - 00000000 ____D () C:\Python33
2014-01-21 14:01 - 2013-12-25 12:08 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\SoftGrid Client
2014-01-21 13:41 - 2014-01-21 13:40 - 00000000 ____D () C:\ProgramData\Visan
2014-01-21 13:41 - 2013-11-11 13:36 - 00002184 _____ () C:\Users\Public\Desktop\HP Photo Creations.lnk
2014-01-21 13:41 - 2013-11-11 13:36 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-01-21 13:41 - 2013-11-11 13:36 - 00000000 ____D () C:\Program Files (x86)\HP Photo Creations
2014-01-21 13:38 - 2014-01-21 13:38 - 00000000 ____D () C:\Windows\system32\Macromed
2014-01-21 13:35 - 2014-01-21 13:35 - 00000000 ____D () C:\Program Files (x86)\MPC-HC
2014-01-21 13:34 - 2014-01-21 13:34 - 00002031 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-01-21 13:34 - 2011-06-03 05:22 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-01-21 13:33 - 2014-01-21 13:33 - 00000000 ____D () C:\Users\Default\AppData\Local\Adobe
2014-01-21 13:33 - 2014-01-21 13:33 - 00000000 ____D () C:\Users\Default User\AppData\Local\Adobe
2014-01-21 13:25 - 2014-01-21 13:25 - 00000000 ____D () C:\Users\Andy\AppData\Local\Secunia PSI
2014-01-21 13:25 - 2014-01-21 13:25 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-01-18 14:38 - 2014-01-18 09:54 - 00000600 _____ () C:\Users\Andy\AppData\Roaming\winscp.rnd
2014-01-18 10:17 - 2014-01-10 12:13 - 00000000 ____D () C:\Users\Andy\AppData\Local\0install.net
2014-01-18 10:16 - 2014-01-18 09:55 - 00000000 ____D () C:\Users\Andy\AppData\Roaming\FileZilla
2014-01-18 09:51 - 2013-10-26 13:18 - 00061720 _____ () C:\Users\Andy\AppData\Local\GDIPFONTCACHEV1.DAT

Some content of TEMP:
====================
C:\Users\Andy\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-08 06:54

==================== End Of Log ============================

--- --- ---

Larusso · 16.02.2014, 14:55

Okay. Dann suchen wir weiter.

Starte bitte den Rechner in den abgesicherten Modus mit Netzwerktreibern.

Starte hier mal deine Browser und berichte, ob die ADS da auch kommen.

wallhalla23 · 16.02.2014, 17:21

Ja bin gerade im abgesicherten Modus und habe momentan keine Ads aber hatte vorher etwa die letzten 15 min auch keine im normalen Modus.Hatte nochmal alle meine Cookies gelöscht und den Browser zurückgesetzt.

Bin jetzt wieder im Normal Modus und werde gleich wieder mit ADS attakiert.
Also im abgesicherten keine ADS..so nun bist du wieder dran

Larusso · 16.02.2014, 18:24

Kannst du mir mal erklären, wofür folgende Software gut ist ?
TwonkyProxy

wallhalla23 · 16.02.2014, 18:46

Ja den hatte ich mal in gebrauch für irgendwas zu streamen aber hab ich auch schon runter geschmissen

Larusso · 18.02.2014, 19:41

Sorry, aber ich steh hier gerade echt an.

Im abgesicherten Modus keine ADS. Dann würde ich mal versuchen herauszufinden, welche Software dafür verantwortlich sein kann.

Drücke bitte die WIndows + R Taste und gib msconfig ein.
Wechsle bitte in dein Reiter Dienste und setze einen Haken bei "alle Microsoft-Dienste ausblenden".

Entfernen nun alle Haken und starte den Rechner neu. Berichte mal, ob die ADS wieder kommen.

wallhalla23 · 21.02.2014, 11:03

Hallo,Ich kam nachher gar nicht mehr in Windows rein und habe dann mein System neu aufgespielt.Vielleicht hast du noch ein paar Tips für mich wie ich mein System sauber und flink halten kann.
Desweiteren möchte ich gerne vom jetzigen neuen System mit allem was drauf ist ein bootbaren usbstick erstellen damit ich bei einem Problem es komplett wieder aufspielen kann. Vllt hast du da auch was für mich.
Auf jeden fall möchte ich mich für deinen Einsatz bedanken...hab auch einiges bei gelernt.

Gruß Andreas

Larusso · 21.02.2014, 15:41

Hm, ich frage mich immernoch, was dafür verantwortlich war -.-

Zur ImageErstellung hab ich das hier mal gefunden --> Festplatten-Image*-*Wie erstellt man ein Festplatten-Image? Das wird hier erklärt*-*PC-Erfahrung.de

Bitte update dein System jetzt. Adobe Reader und Java ( falls installiert ) sowie alle Browser und Plugins

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

wallhalla23 · 21.02.2014, 23:08

Also von mir aus ist alles erledigt und kannst das Thema gerne beenden.
Nochmal Danke und bis bald mal.

Larusso · 22.02.2014, 18:10

Froh, dass wir helfen konnten

16.02.2014, 12:13	#33
Larusso /// Selecta Jahrusso	Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links Kommen die ADS nur in Chrome oder auch im IE vor ? __________________ __________________

16.02.2014, 13:01	#35
Larusso /// Selecta Jahrusso	Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links Poste mir bitte einmal ein frisches FRST Logfile __________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie

16.02.2014, 18:24	#39
Larusso /// Selecta Jahrusso	Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links Kannst du mir mal erklären, wofür folgende Software gut ist ? TwonkyProxy __________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie

22.02.2014, 18:10	#45
Larusso /// Selecta Jahrusso	Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links Froh, dass wir helfen konnten __________________ mfg, Daniel ASAP & UNITE Member Alliance of Security Analysis Professionals Unified Network of Instructors and Trusted Eliminators Lerne, zurück zu schlagen und unterstütze uns! TB Akademie

Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links

Log-Analyse und Auswertung: Windows 7: Webseiten werden auf Werbung umgeleitet usw und grüne Links