| |
| |||||||
Log-Analyse und Auswertung: Windows7/64 von div. Schädlingen infiziertWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
21.02.2014, 19:10
| #16 |
 |  Windows7/64 von div. Schädlingen infiziert Hallo Schrauber! Lieben Dank für die Beantwortung. Als bekennender Schisser prangt auf auf meinem Schild ein geducktes Huhn. 8-) Da ich den Zeitaufwand für den Scan unterschäzt hatte, ist Avast 2 x kurz wieder aufgewacht, wurde von mir aber unverzüglich wieder deaktiviert. Was, bitte, bunkert der verfluchte Trojaner? Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=857a1cdec9fbc24d9ff97782e1fd4814
# engine=17171
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-21 05:26:18
# local_time=2014-02-21 06:26:18 (+0100, Mitteleuropäische Zeit)
# country="Spain"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 77 1517136 1552381 0 0
# compatibility_mode=5893 16776573 100 94 11321 144633428 0 0
# scanned=354074
# found=1
# cleaned=0
# scan_time=5829
sh=9C860E0B0EAFF9D2912642BC3940BA098C00BBCE ft=1 fh=41f2b86635803f1b vn="NSIS/StartPage.CC trojan" ac=I fn="E:\Arcfiles\TV-Video\VLC-Player\vlc-2.1.0-win64.exe"
Code:
ATTFilter Results of screen317's Security Check version 0.99.79 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` avast! Antivirus Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Java 7 Update 51 Adobe Flash Player 12.0.0.70 Flash Player out of Date! Adobe Reader 10.1.9 Adobe Reader out of Date! Mozilla Firefox (27.0.1) ````````Process Check: objlist.exe by Laurent```````` AVAST Software Avast AvastSvc.exe AVAST Software Avast AvastUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-02-2014
Ran by Uncle Tom (administrator) on WIN7 on 21-02-2014 19:04:31
Running from C:\Users\Uncle Tom\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\system32\atieclxx.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(TomTom) C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
() C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
() c:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Heuer Software) D:\TELEFON.DAT\ISDN-Moni\isdnmo32.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenPCI.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe
(Nokia) C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
(Advanced Micro Devices Inc.) c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenPCI.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11780712 2011-02-24] (Realtek Semiconductor)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-14] (CANON INC.)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-05] (Intel Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] - C:\Windows\RaidTool\xInsIDE.exe [43608 2010-09-07] ()
HKLM-x32\...\Run: [RemoteControl9] - c:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)
HKLM-x32\...\Run: [StartCCC] - c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-01-26] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SSBkgdUpdate] - C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [OpwareSE4] - C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe [79400 2007-02-04] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [TrayServer] - C:\Program Files (x86)\MAGIX\Video_deluxe_17\Trayserver.exe [90112 2008-08-07] (MAGIX AG)
HKLM-x32\...\Run: [NokiaMServer] - C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-02-03] (AVAST Software)
HKLM-x32\...\RunOnce: [20131224] - C:\Program Files\AVAST Software\Avast\setup\emupdate\c797db7a-205b-4ae5-a9a9-2c98adc12043.exe /check [181136 2014-02-21] (AVAST Software)
HKU\S-1-5-21-2141699705-2544702080-716539424-1001\...\Run: [Reminder] - C:\Program Files (x86)\Microsoft Money\System\reminder.exe [37376 1999-03-14] (Microsoft Corporation)
HKU\S-1-5-21-2141699705-2544702080-716539424-1001\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [247728 2011-04-22] (TomTom)
HKU\S-1-5-21-2141699705-2544702080-716539424-1001\...\Run: [MyTomTomSA.exe] - C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe [451656 2013-01-07] (TomTom)
Startup: C:\Users\Uncle Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Hardcopy.LNK
ShortcutTarget: Hardcopy.LNK -> C:\Program Files (x86)\Hardcopy\hardcopy.exe (sw4you, Siegfried Weckmann)
Startup: C:\Users\Uncle Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ISDN-Moni.lnk
ShortcutTarget: ISDN-Moni.lnk -> D:\TELEFON.DAT\ISDN-Moni\isdnmo32.exe (Heuer Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://nmd.msn.com
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {A19A00DB-9BC7-4210-95E0-E46E01625249} URL =
SearchScopes: HKCU - {D3DFE717-08DC-4890-84EB-F6527EFFC96F} URL = hxxp://www.google.de/search?q={searchTerms}
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\..\Interfaces\{16C2F975-64D5-41C6-B9B8-190FC573F55B}: [NameServer]8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
FireFox:
========
FF ProfilePath: C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_70.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\searchplugins\ixquick-https---deutsch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Click&Clean - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\clickclean@hotcleaner.com [2013-03-29]
FF Extension: Print pages to PDF - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\printPages2Pdf@reinhold.ripper [2013-12-18]
FF Extension: YouTube Unblocker - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\youtubeunblocker@unblocker.yt [2014-01-16]
FF Extension: Textarea Cache - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{578e7caa-210f-4967-a0d3-88fe5b59a39f} [2013-09-08]
FF Extension: WOT - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-11-26]
FF Extension: DownloadHelper - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-08-28]
FF Extension: CSHelper - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{d91a2be6-3b56-4dfb-97f5-5e48fe3ed473} [2013-11-08]
FF Extension: Snip-Me - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\addon@snip-me.de.xpi [2011-08-27]
FF Extension: Advertising Cookie Opt-out - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\optout@google.com.xpi [2011-12-05]
FF Extension: Private Tab - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\privateTab@infocatcher.xpi [2013-04-21]
FF Extension: TinEye Reverse Image Search - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\tineye@ideeinc.com.xpi [2011-09-22]
FF Extension: YouTube to MP3 - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\youtube2mp3@mondayx.de.xpi [2011-08-31]
FF Extension: Video HTML5 Wizard Light - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{005baaff-6783-4939-84d3-9056ec161612}.xpi [2013-11-05]
FF Extension: {04ad514b-2d83-4786-a1bf-e004c09da910} - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{04ad514b-2d83-4786-a1bf-e004c09da910}.xpi [2013-10-30]
FF Extension: Session Manager - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2013-12-18]
FF Extension: Text Link - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{54BB9F3F-07E5-486c-9B39-C7398B99391C}.xpi [2012-04-05]
FF Extension: Google Analytics Opt-out Browser Add-on - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2012-12-25]
FF Extension: NoScript - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-02-15]
FF Extension: Adblock Plus - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-15]
FF Extension: BetterPrivacy - C:\Users\Uncle Tom\AppData\Roaming\Mozilla\Firefox\Profiles\inaikfzc.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2011-11-08]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-15]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-15]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-15]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-04-24]
FF HKLM-x32\...\Thunderbird\Extensions: [te_9.0@nokia.com] - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0 [2012-05-11]
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-02-03] (AVAST Software)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [559104 2011-02-08] (Hauppauge Computer Works)
R2 RichVideo; c:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [271760 2009-04-27] ()
==================== Drivers (Whitelisted) ====================
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-02-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-02-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-02-03] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-02-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-26] ()
R3 AVMCOWAN; C:\Windows\System32\DRIVERS\AVMCOWAN.sys [79872 2009-06-10] (AVM GmbH)
S3 cmusbser; C:\Windows\System32\DRIVERS\cmusbser.sys [112768 2007-06-08] (C-motech Co.,Ltd)
R3 FPCIBASE; C:\Windows\System32\DRIVERS\fpcibase.sys [899328 2009-06-10] (AVM Berlin)
R3 hcw89; C:\Windows\System32\DRIVERS\hcw89.sys [1634176 2010-06-11] (Hauppauge Computer Works, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz135; \??\C:\Users\ADMINI~1\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-02-21 19:04 - 2014-02-21 19:04 - 00017898 _____ () C:\Users\Uncle Tom\Desktop\FRST.txt
2014-02-21 16:46 - 2014-02-21 16:46 - 02347384 _____ (ESET) C:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
2014-02-20 17:44 - 2014-02-20 17:44 - 00987425 _____ () C:\Users\Uncle Tom\Desktop\SecurityCheck.exe
2014-02-19 20:31 - 2014-02-19 20:31 - 00000000 ____D () C:\Windows\pss
2014-02-19 18:21 - 2014-02-21 19:02 - 00000000 ____D () C:\Users\Uncle Tom\Desktop\FRST-OlderVersion
2014-02-19 18:18 - 2014-02-19 18:18 - 00000962 _____ () C:\Users\Uncle Tom\Desktop\JRT.txt
2014-02-19 18:13 - 2014-02-19 18:13 - 00000000 ____D () C:\Windows\ERUNT
2014-02-19 18:08 - 2014-02-19 18:08 - 01037530 _____ (Thisisu) C:\Users\Uncle Tom\Desktop\JRT.exe
2014-02-19 17:49 - 2014-02-19 17:49 - 01241834 _____ () C:\Users\Uncle Tom\Desktop\adwcleaner.exe
2014-02-17 16:34 - 2014-02-17 16:34 - 00139910 _____ () C:\ComboFix.txt
2014-02-17 16:27 - 2014-02-17 16:34 - 00000000 ____D () C:\Qoobox
2014-02-17 16:27 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-02-17 16:27 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-02-17 16:27 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-02-17 16:27 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-02-17 16:27 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-02-17 16:27 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-02-17 16:27 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-02-17 16:27 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-02-17 16:26 - 2014-02-17 16:33 - 00000000 ____D () C:\Windows\erdnt
2014-02-17 16:09 - 2014-02-17 16:09 - 05183112 ____R (Swearware) C:\Users\Uncle Tom\Desktop\ComboFix.exe
2014-02-16 09:47 - 2014-02-16 09:47 - 00000000 _____ () C:\Users\Uncle Tom\defogger_reenable
2014-02-16 09:05 - 2014-02-16 09:05 - 00050477 _____ () C:\Users\Uncle Tom\Desktop\Defogger.exe
2014-02-16 07:40 - 2014-02-21 19:04 - 00000000 ____D () C:\FRST
2014-02-15 16:44 - 2014-02-17 16:42 - 00001142 _____ () C:\Windows\PFRO.log
2014-02-15 16:35 - 2014-02-21 16:12 - 00000840 _____ () C:\Windows\setupact.log
2014-02-15 16:35 - 2014-02-15 16:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-15 16:11 - 2014-02-15 16:11 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-15 16:11 - 2014-02-15 16:11 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-15 16:11 - 2014-02-15 16:11 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-15 16:11 - 2014-02-15 16:11 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-02-15 16:10 - 2014-02-15 16:10 - 00000000 ____D () C:\Program Files\Java
2014-02-15 15:38 - 2014-02-15 15:38 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-15 15:38 - 2014-02-15 15:38 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-15 13:54 - 2014-02-15 13:54 - 00003225 _____ () C:\Users\Uncle Tom\Desktop\Sophos Virus Removal Tool.lnk
2014-02-15 13:54 - 2014-02-15 13:54 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-02-15 13:54 - 2014-02-15 13:54 - 00000000 ____D () C:\ProgramData\Sophos
2014-02-15 13:54 - 2014-02-15 13:54 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-02-15 12:30 - 2014-02-15 12:49 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-15 12:29 - 2014-02-15 12:49 - 00000000 ____D () C:\Users\Uncle Tom\Desktop\mbar
2014-02-15 12:29 - 2014-02-15 12:29 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-15 12:28 - 2014-02-15 12:28 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Uncle Tom\Desktop\mbar-1.07.0.1009.exe
2014-02-15 11:38 - 2014-02-15 11:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 11:35 - 2014-02-15 11:35 - 00000000 ____D () C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs
2014-02-15 00:42 - 2014-02-15 00:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2014-02-14 22:44 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-14 22:44 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-14 22:44 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-14 22:44 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-14 22:44 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-14 22:44 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-14 22:44 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-14 22:44 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-14 22:44 - 2014-02-06 11:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-14 22:44 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-14 22:44 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-14 22:44 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-14 22:44 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-14 22:44 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-14 22:44 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-14 22:44 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-14 22:44 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-14 22:44 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-14 22:44 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-14 22:44 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-14 22:44 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-14 22:44 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-14 22:44 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-14 22:44 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-14 22:44 - 2014-02-06 10:49 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-14 22:44 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-14 22:44 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-14 22:44 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-14 22:44 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-14 22:44 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-14 22:44 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-14 22:44 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-14 22:44 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-14 22:44 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-14 22:44 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-14 22:44 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-14 22:44 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-14 22:44 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-14 22:44 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-14 22:44 - 2013-12-21 10:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-14 22:44 - 2013-12-21 09:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-02-14 22:03 - 2014-02-14 22:03 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-14 22:03 - 2014-02-14 22:03 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\Malwarebytes
2014-02-14 22:03 - 2014-02-14 22:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-14 22:03 - 2014-02-14 22:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-14 22:03 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-14 22:00 - 2014-02-19 20:22 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-02-14 15:56 - 2014-01-01 00:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-14 15:56 - 2014-01-01 00:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-14 15:56 - 2013-12-25 00:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-14 15:56 - 2013-12-24 23:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-14 15:56 - 2013-12-06 03:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-14 15:56 - 2013-12-06 03:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-14 15:56 - 2013-12-06 03:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-14 15:56 - 2013-12-06 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-14 15:56 - 2013-12-04 03:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-14 15:56 - 2013-12-04 03:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-14 15:56 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-14 15:56 - 2013-12-04 03:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-14 15:56 - 2013-12-04 03:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-14 15:56 - 2013-12-04 03:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-14 15:56 - 2013-12-04 03:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-14 15:56 - 2013-12-04 03:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-14 15:56 - 2013-12-04 03:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-14 15:56 - 2013-12-04 03:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-14 15:56 - 2013-12-04 03:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-14 15:56 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-14 15:56 - 2013-12-04 03:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-14 15:56 - 2013-12-04 03:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-14 15:56 - 2013-12-04 02:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-14 15:56 - 2013-12-04 02:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-14 15:56 - 2013-12-04 02:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-14 15:56 - 2013-12-04 02:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-14 15:56 - 2013-11-26 09:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-14 15:56 - 2013-11-22 23:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-14 15:44 - 2014-02-14 15:44 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Uncle Tom\Desktop\rkill.com
2014-02-14 15:42 - 2014-02-21 19:02 - 02153984 _____ (Farbar) C:\Users\Uncle Tom\Desktop\FRST64.exe
2014-02-12 21:22 - 2014-02-12 21:22 - 00004546 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-updater
2014-02-12 21:22 - 2014-02-12 21:22 - 00004502 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-codedownloader
2014-02-12 21:22 - 2014-02-12 21:22 - 00004400 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-enabler
2014-02-12 21:22 - 2014-02-12 21:22 - 00003132 _____ () C:\Windows\System32\Tasks\System Speedup
2014-02-12 21:22 - 2014-02-12 21:22 - 00003042 _____ () C:\Windows\System32\Tasks\System Speedup_UPDATES
2014-02-12 21:22 - 2014-02-12 21:22 - 00002886 _____ () C:\Windows\System32\Tasks\System Speedup_DEFAULT
2014-02-12 21:21 - 2014-02-12 21:21 - 00005430 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-validator
2014-02-12 21:20 - 2014-02-12 22:17 - 00000000 ____D () C:\Program Files\SavingsbullFilter
2014-02-11 19:27 - 2014-02-12 19:24 - 00009129 _____ () C:\Users\Uncle Tom\AppData\Local\QC_140210.log
2014-02-09 21:56 - 2014-02-19 04:52 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\RssPopper
2014-02-09 21:56 - 2014-02-09 21:56 - 00000000 ____D () C:\Program Files (x86)\RSS Popper
2014-02-08 13:40 - 2014-02-08 13:40 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Local\Woozle
2014-02-08 13:10 - 2014-02-08 13:10 - 00000958 _____ () C:\Users\Uncle Tom\Desktop\XanaNews.lnk
2014-02-08 13:10 - 2014-02-08 13:10 - 00000000 ____D () C:\Program Files (x86)\XanaNews
2014-01-27 20:33 - 2014-02-07 16:33 - 00024464 _____ () C:\Users\Uncle Tom\AppData\Local\QC_140124.log
==================== One Month Modified Files and Folders =======
2014-02-21 19:04 - 2014-02-21 19:04 - 00017898 _____ () C:\Users\Uncle Tom\Desktop\FRST.txt
2014-02-21 19:04 - 2014-02-16 07:40 - 00000000 ____D () C:\FRST
2014-02-21 19:02 - 2014-02-19 18:21 - 00000000 ____D () C:\Users\Uncle Tom\Desktop\FRST-OlderVersion
2014-02-21 19:02 - 2014-02-14 15:42 - 02153984 _____ (Farbar) C:\Users\Uncle Tom\Desktop\FRST64.exe
2014-02-21 18:24 - 2012-04-02 15:17 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-21 18:04 - 2011-04-23 14:09 - 01593258 _____ () C:\Windows\WindowsUpdate.log
2014-02-21 16:50 - 2009-07-14 05:45 - 00016768 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-21 16:50 - 2009-07-14 05:45 - 00016768 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-21 16:46 - 2014-02-21 16:46 - 02347384 _____ (ESET) C:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
2014-02-21 16:17 - 2011-02-23 13:59 - 00708640 _____ () C:\Windows\system32\perfh007.dat
2014-02-21 16:17 - 2011-02-23 13:59 - 00157972 _____ () C:\Windows\system32\perfc007.dat
2014-02-21 16:17 - 2009-07-14 06:13 - 01674134 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-21 16:12 - 2014-02-15 16:35 - 00000840 _____ () C:\Windows\setupact.log
2014-02-21 16:12 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-20 23:24 - 2012-04-02 15:17 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-02-20 23:24 - 2012-04-02 15:17 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-02-20 23:24 - 2011-05-17 16:39 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-20 17:44 - 2014-02-20 17:44 - 00987425 _____ () C:\Users\Uncle Tom\Desktop\SecurityCheck.exe
2014-02-20 17:37 - 2011-07-31 10:35 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\vlc
2014-02-19 20:31 - 2014-02-19 20:31 - 00000000 ____D () C:\Windows\pss
2014-02-19 20:22 - 2014-02-14 22:00 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-02-19 18:18 - 2014-02-19 18:18 - 00000962 _____ () C:\Users\Uncle Tom\Desktop\JRT.txt
2014-02-19 18:13 - 2014-02-19 18:13 - 00000000 ____D () C:\Windows\ERUNT
2014-02-19 18:08 - 2014-02-19 18:08 - 01037530 _____ (Thisisu) C:\Users\Uncle Tom\Desktop\JRT.exe
2014-02-19 17:52 - 2013-12-18 10:59 - 00000000 ____D () C:\AdwCleaner
2014-02-19 17:49 - 2014-02-19 17:49 - 01241834 _____ () C:\Users\Uncle Tom\Desktop\adwcleaner.exe
2014-02-19 17:16 - 2012-07-07 12:34 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-02-19 04:52 - 2014-02-09 21:56 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\RssPopper
2014-02-17 16:42 - 2014-02-15 16:44 - 00001142 _____ () C:\Windows\PFRO.log
2014-02-17 16:35 - 2013-10-19 11:06 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Local\Apps\2.0
2014-02-17 16:34 - 2014-02-17 16:34 - 00139910 _____ () C:\ComboFix.txt
2014-02-17 16:34 - 2014-02-17 16:27 - 00000000 ____D () C:\Qoobox
2014-02-17 16:33 - 2014-02-17 16:26 - 00000000 ____D () C:\Windows\erdnt
2014-02-17 16:33 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-02-17 16:23 - 2013-12-31 11:51 - 00001768 _____ () C:\Users\Uncle Tom\Desktop\Defraggler.lnk
2014-02-17 16:09 - 2014-02-17 16:09 - 05183112 ____R (Swearware) C:\Users\Uncle Tom\Desktop\ComboFix.exe
2014-02-16 09:47 - 2014-02-16 09:47 - 00000000 _____ () C:\Users\Uncle Tom\defogger_reenable
2014-02-16 09:47 - 2011-04-23 13:11 - 00000000 ____D () C:\Users\Uncle Tom
2014-02-16 09:05 - 2014-02-16 09:05 - 00050477 _____ () C:\Users\Uncle Tom\Desktop\Defogger.exe
2014-02-15 17:31 - 2013-10-19 12:16 - 00022374 _____ () C:\Users\Uncle Tom\AppData\Local\Layout.xml
2014-02-15 17:31 - 2013-10-19 12:16 - 00022012 _____ () C:\Users\Uncle Tom\AppData\Local\LayoutPanels.xml
2014-02-15 17:31 - 2013-10-19 12:16 - 00012573 _____ () C:\Users\Uncle Tom\AppData\Local\Layout_Card.xml
2014-02-15 17:31 - 2013-10-19 11:10 - 06291456 _____ () C:\Users\Uncle Tom\AppData\Local\QC.mdf
2014-02-15 17:31 - 2013-10-19 11:10 - 01572864 _____ () C:\Users\Uncle Tom\AppData\Local\QC_log.ldf
2014-02-15 17:31 - 2013-10-19 11:10 - 00004378 _____ () C:\Users\Uncle Tom\AppData\Local\QC.ini
2014-02-15 17:31 - 2013-10-19 11:09 - 00012006 _____ () C:\Users\Uncle Tom\AppData\Local\QC.log
2014-02-15 17:30 - 2013-10-19 11:10 - 00021988 _____ () C:\Users\Uncle Tom\AppData\Local\LayoutPanels_Default.xml
2014-02-15 17:30 - 2013-10-19 11:06 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Local\Deployment
2014-02-15 16:35 - 2014-02-15 16:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-15 16:34 - 2009-07-14 06:08 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-15 16:11 - 2014-02-15 16:11 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-15 16:11 - 2014-02-15 16:11 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-15 16:11 - 2014-02-15 16:11 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-15 16:11 - 2014-02-15 16:11 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-02-15 16:10 - 2014-02-15 16:10 - 00000000 ____D () C:\Program Files\Java
2014-02-15 15:38 - 2014-02-15 15:38 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-15 15:38 - 2014-02-15 15:38 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-15 13:54 - 2014-02-15 13:54 - 00003225 _____ () C:\Users\Uncle Tom\Desktop\Sophos Virus Removal Tool.lnk
2014-02-15 13:54 - 2014-02-15 13:54 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sophos
2014-02-15 13:54 - 2014-02-15 13:54 - 00000000 ____D () C:\ProgramData\Sophos
2014-02-15 13:54 - 2014-02-15 13:54 - 00000000 ____D () C:\Program Files (x86)\Sophos
2014-02-15 13:18 - 2012-05-06 14:15 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-15 12:49 - 2014-02-15 12:30 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-15 12:49 - 2014-02-15 12:29 - 00000000 ____D () C:\Users\Uncle Tom\Desktop\mbar
2014-02-15 12:43 - 2011-05-02 16:00 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-15 12:43 - 2011-05-02 16:00 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-02-15 12:29 - 2014-02-15 12:29 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-15 12:28 - 2014-02-15 12:28 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Uncle Tom\Desktop\mbar-1.07.0.1009.exe
2014-02-15 11:38 - 2014-02-15 11:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-15 11:35 - 2014-02-15 11:35 - 00000000 ____D () C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs
2014-02-15 08:36 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-02-15 06:57 - 2011-04-24 09:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-02-15 00:44 - 2009-07-14 03:34 - 00000499 _____ () C:\Windows\win.ini
2014-02-15 00:42 - 2014-02-15 00:42 - 00000000 ____D () C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
2014-02-14 22:52 - 2013-08-15 16:18 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-14 22:48 - 2011-04-30 15:51 - 88567024 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-14 22:45 - 2011-06-19 07:56 - 01639042 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-02-14 22:03 - 2014-02-14 22:03 - 00001109 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-14 22:03 - 2014-02-14 22:03 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\Malwarebytes
2014-02-14 22:03 - 2014-02-14 22:03 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-14 22:03 - 2014-02-14 22:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-02-14 15:44 - 2014-02-14 15:44 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Uncle Tom\Desktop\rkill.com
2014-02-13 20:42 - 2011-05-02 13:44 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Roaming\IrfanView
2014-02-12 22:17 - 2014-02-12 21:20 - 00000000 ____D () C:\Program Files\SavingsbullFilter
2014-02-12 21:22 - 2014-02-12 21:22 - 00004546 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-updater
2014-02-12 21:22 - 2014-02-12 21:22 - 00004502 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-codedownloader
2014-02-12 21:22 - 2014-02-12 21:22 - 00004400 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-enabler
2014-02-12 21:22 - 2014-02-12 21:22 - 00003132 _____ () C:\Windows\System32\Tasks\System Speedup
2014-02-12 21:22 - 2014-02-12 21:22 - 00003042 _____ () C:\Windows\System32\Tasks\System Speedup_UPDATES
2014-02-12 21:22 - 2014-02-12 21:22 - 00002886 _____ () C:\Windows\System32\Tasks\System Speedup_DEFAULT
2014-02-12 21:21 - 2014-02-12 21:21 - 00005430 _____ () C:\Windows\System32\Tasks\Plus-HD-7.7-validator
2014-02-12 19:24 - 2014-02-11 19:27 - 00009129 _____ () C:\Users\Uncle Tom\AppData\Local\QC_140210.log
2014-02-09 21:56 - 2014-02-09 21:56 - 00000000 ____D () C:\Program Files (x86)\RSS Popper
2014-02-08 13:40 - 2014-02-08 13:40 - 00000000 ____D () C:\Users\Uncle Tom\AppData\Local\Woozle
2014-02-08 13:10 - 2014-02-08 13:10 - 00000958 _____ () C:\Users\Uncle Tom\Desktop\XanaNews.lnk
2014-02-08 13:10 - 2014-02-08 13:10 - 00000000 ____D () C:\Program Files (x86)\XanaNews
2014-02-07 17:59 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help
2014-02-07 16:33 - 2014-01-27 20:33 - 00024464 _____ () C:\Users\Uncle Tom\AppData\Local\QC_140124.log
2014-02-06 13:16 - 2014-02-14 22:44 - 23170048 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-06 12:30 - 2014-02-14 22:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-06 12:30 - 2014-02-14 22:44 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-06 12:12 - 2014-02-14 22:44 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-06 12:07 - 2014-02-14 22:44 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-06 12:06 - 2014-02-14 22:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-06 11:57 - 2014-02-14 22:44 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-06 11:56 - 2014-02-14 22:44 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-06 11:52 - 2014-02-14 22:44 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-06 11:49 - 2014-02-14 22:44 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-06 11:48 - 2014-02-14 22:44 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-06 11:48 - 2014-02-14 22:44 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-06 11:38 - 2014-02-14 22:44 - 17103872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-06 11:32 - 2014-02-14 22:44 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-06 11:20 - 2014-02-14 22:44 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-06 11:17 - 2014-02-14 22:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-06 11:11 - 2014-02-14 22:44 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-06 11:01 - 2014-02-14 22:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-06 11:00 - 2014-02-14 22:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-14 22:44 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-06 10:57 - 2014-02-14 22:44 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-06 10:52 - 2014-02-14 22:44 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-06 10:52 - 2014-02-14 22:44 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-06 10:50 - 2014-02-14 22:44 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-06 10:49 - 2014-02-14 22:44 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-06 10:47 - 2014-02-14 22:44 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-06 10:46 - 2014-02-14 22:44 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-06 10:25 - 2014-02-14 22:44 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-06 10:25 - 2014-02-14 22:44 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-06 10:24 - 2014-02-14 22:44 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-06 10:22 - 2014-02-14 22:44 - 13051392 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-06 10:13 - 2014-02-14 22:44 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-06 10:09 - 2014-02-14 22:44 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-06 10:03 - 2014-02-14 22:44 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-06 09:55 - 2014-02-14 22:44 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-06 09:41 - 2014-02-14 22:44 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-06 09:40 - 2014-02-14 22:44 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-06 09:36 - 2014-02-14 22:44 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-06 09:34 - 2014-02-14 22:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-03 20:13 - 2013-12-26 17:39 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-02-03 20:13 - 2011-04-24 17:50 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-02-03 20:13 - 2011-04-24 17:50 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-02-03 20:13 - 2011-04-24 17:50 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-02-03 20:13 - 2011-04-24 17:50 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-02-03 20:13 - 2011-04-24 17:50 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-23 20:57 - 2014-01-08 19:23 - 00031779 _____ () C:\Users\Uncle Tom\AppData\Local\QC_140108.log
Files to move or delete:
====================
C:\Users\Uncle Tom\AppData\Roaming\Camdata.ini
C:\Users\Uncle Tom\AppData\Roaming\CamLayout.ini
C:\Users\Uncle Tom\AppData\Roaming\CamShapes.ini
C:\ProgramData\mbsetup.exe
C:\ProgramData\micromeet.dat
Some content of TEMP:
====================
C:\Users\Uncle Tom\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\Uncle Tom\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-02-18 00:21
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- [/CODE] Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-02-2014
Ran by Uncle Tom at 2014-02-21 19:04:59
Running from C:\Users\Uncle Tom\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
AC3Filter 2.6.0b (x32 Version: 2.6.0b - Alexander Vigovsky)
Adobe Flash Player 12 ActiveX (x32 Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (x32 Version: 10.1.9 - Adobe Systems Incorporated)
AllSync (x32 Version: 3.5.0 - Michael Thummerer Software Design)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (Version: 3.0.812.0 - ATI Technologies, Inc.)
Auslogics Disk Defrag (x32 Version: version 3.4 - Auslogics Software Pty Ltd)
avast! Free Antivirus (x32 Version: 9.0.2013 - Avast Software)
AVM FRITZ!fax für FRITZ!Box (x32 Version: - AVM Berlin)
Canon MG5300 series Benutzerregistrierung (x32 Version: - )
Canon MG5300 series MP Drivers (Version: - )
Canon MG5300 series On-screen Manual (x32 Version: - )
Canon MP Navigator EX 5.0 (x32 Version: - )
Canon My Printer (x32 Version: - )
Canon Solution Menu EX (x32 Version: - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0126.1749.31909 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0126.1749.31909 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0126.1749.31909 - ATI) Hidden
CCC Help English (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help French (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help German (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0126.1748.31909 - ATI) Hidden
ccc-core-static (x32 Version: 2011.0126.1749.31909 - Ihr Firmenname) Hidden
ccc-utility64 (Version: 2011.0126.1749.31909 - ATI) Hidden
CCleaner (Version: 4.10 - Piriform)
CompanionLink (x32 Version: 5.00.5050 - Ihr Firmenname)
Component Checker (Version: 2.0.0 - Microsoft)
CyberLink PowerDVD 9 (x32 Version: 9.0.4105.01 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.4105.01 - CyberLink Corp.) Hidden
DDBAC (x32 Version: 5.3.21 - DataDesign)
Defraggler (Version: 2.16 - Piriform)
DVBViewer Pro (x32 Version: 5.2.8 - CM&V)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.27.0 - MAGIX AG)
Hardcopy (C:\Program Files (x86)\Hardcopy) (x32 Version: 2011.04.09 - www.hardcopy.de)
Hauppauge WinTV 7 (x32 Version: v7.0.29048 (CD 2.3b) - Hauppauge Computer Works)
HBCI-Modul für Money 99 Version 2000 (x32 Version: 4.1.0.81 - Dr. Ulrich Amann)
Intel(R) Rapid Storage Technology (x32 Version: 10.1.0.1008 - Intel Corporation)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JMicron JMB36X Driver (x32 Version: 1.17.62.0 - JMicron Technology Corp.)
Kill-ID 1.2.4.0 für Chrome (x32 Version: 1.2.5.0 - Alexander Miehlke Softwareentwicklung)
LAV Filters 0.55.3 (x32 Version: 0.55.3 - Hendrik Leppkes)
MAGIX Screenshare (x32 Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 17 (x32 Version: 10.0.2.8 - MAGIX AG)
MAGIX Video deluxe 17 (x32 Version: 10.0.2.8 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
marvell 91xx driver (x32 Version: 1.0.0.1051 - Marvell)
Microsoft .NET Framework 1.1 (x32 Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 German Language Pack (x32 Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Money 99 (x32 Version: - )
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (x32 Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Money-Browser für Money 99 Version 2000 3.0.1.36 (x32 Version: 3.0.1.36 - Dr. Ulrich Amann)
Mozilla Firefox 27.0.1 (x86 de) (x32 Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (x32 Version: 27.0.1 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
MyPhoneExplorer (x32 Version: 1.8.4 - F.J. Wechselberger)
MyTomTom 3.2.0.906 (x32 Version: 3.2.0.906 - TomTom)
No23 Recorder (x32 Version: 2.1.0.3 - No23)
Nokia Connectivity Cable Driver (x32 Version: 7.1.69.0 - Nokia)
Nokia Ovi Player (x32 Version: 2.1.10304 - Nokia Ovi Player)
Nokia PC Suite (x32 Version: 7.1.62.1 - Nokia)
Nokia PC Suite (x32 Version: 7.1.62.1 - Nokia) Hidden
Nokia Suite (x32 Version: 3.3.89.0 - Nokia)
Nokia Suite (x32 Version: 3.3.89.0 - Nokia) Hidden
Nokia_Multimedia_Common_Components_2_5 (x32 Version: 2.6.86 - Nokia)
Omron Health Management Software (x32 Version: 1.60.0004 - Omron Healthcare)
PC Connectivity Solution (x32 Version: 11.5.29.0 - Nokia)
PlayReady PC Runtime amd64 (Version: 1.3.0 - Microsoft Corporation)
QuoteCompiler (HKCU Version: 2.0.0.4 - finanzkasper.de)
Realtek Ethernet Controller Driver For Windows 7 (x32 Version: 7.21.531.2010 - Realtek)
Realtek HDMI Audio Driver for ATI (x32 Version: 6.0.1.6251 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6316 - Realtek Semiconductor Corp.)
Recuva (Version: 1.42 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0 - Renesas Electronics Corporation) Hidden
RSS Popper (x32 Version: - )
ScanSoft OmniPage SE 4 (x32 Version: 15.2.0020 - Nuance Communications, Inc.)
Scribble Papers 2.6.1 (x32 Version: - Jens Hoetger)
Sophos Virus Removal Tool (x32 Version: 2.4 - Sophos Limited)
SpyHunter (Version: 4.16.5.4290 - Enigma Software Group USA, LLC)
The Lord of the Rings FREE Trial (x32 Version: 1.00.0000 - ATI Technologies Inc.) Hidden
TomTom HOME 2.8.2.2264 (x32 Version: 2.8.2.2264 - TomTom)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2 - TomTom International B.V.)
Visual Studio C++ 10.0 Runtime (x32 Version: 10.0.0 - TomTom International B.V.)
VLC media player 2.1.3 (Version: 2.1.3 - VideoLAN)
WatchTVPro Ex Version 5.14 (x32 Version: 5.14 - Michael Hepp)
Windows-Treiberpaket - Nokia Modem (02/25/2011 4.7) (Version: 02/25/2011 4.7 - Nokia)
Windows-Treiberpaket - Nokia Modem (02/25/2011 7.01.0.9) (Version: 02/25/2011 7.01.0.9 - Nokia)
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0 - Nokia)
XanaNews 1.18.1.6 (x32 Version: - Colin Wilson)
Yahoo! Detect (x32 Version: - )
Yahoo! Messenger (x32 Version: - Yahoo! Inc.)
Yahoo! Software Update (x32 Version: - )
==================== Restore Points =========================
==================== Hosts content: ==========================
2009-07-14 03:34 - 2014-02-17 16:32 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {26CD2ED1-164B-47E5-B632-DB1B6B18EFBA} - System32\Tasks\Plus-HD-7.7-codedownloader => C:\Program Files (x86)\Plus-HD-7.7\Plus-HD-7.7-codedownloader.exe <==== ATTENTION
Task: {304D8A1F-9AFC-4DA4-84D4-5DABC9D29FA9} - System32\Tasks\hcdll2_ex_x64 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe [2011-03-18] ()
Task: {38ECCBDD-832F-4F83-AC34-5C80557E4393} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {43434A71-214D-4B48-8A3E-3FA3BBFDBF90} - System32\Tasks\System Speedup_UPDATES => C:\Program Files (x86)\System Speedup\SystemSpeedup.exe
Task: {4D00F19A-E6B2-41A7-814F-3A75D5DDB0D1} - \EPUpdater No Task File
Task: {7AA7BC15-D770-4EE7-844B-57C2F21127BE} - System32\Tasks\Plus-HD-7.7-updater => C:\Program Files (x86)\Plus-HD-7.7\Plus-HD-7.7-updater.exe <==== ATTENTION
Task: {8ABAD8AA-98A4-4215-8A81-45E577C26D72} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9D8CF21B-B464-4024-BDE5-2F29A343E58E} - System32\Tasks\hcdll2_ex_Win32 => C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe [2011-03-18] ()
Task: {A9A3E020-9DC4-4DE7-8CAA-529F60179A74} - \Advanced System Protector No Task File
Task: {B25D1BC8-42B9-42A3-9E34-C30816BE9359} - System32\Tasks\Plus-HD-7.7-firefoxinstaller => C:\Program Files (x86)\Plus-HD-7.7\Plus-HD-7.7-firefoxinstaller.exe <==== ATTENTION
Task: {BEAD581B-204F-4B5C-8516-D0DB21AB2ED7} - \Advanced System Protector_startup No Task File
Task: {C1AD07F0-9AD8-4A60-912E-7B5E2F78244F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-02-03] (AVAST Software)
Task: {D932EF38-AE31-46E2-881C-099679079CE8} - System32\Tasks\System Speedup_DEFAULT => C:\Program Files (x86)\System Speedup\SystemSpeedup.exe
Task: {E916A855-5525-4486-BCC5-A5F000F9C61A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-20] (Adobe Systems Incorporated)
Task: {F76392FA-4968-4E45-86C3-1D803D88CB6E} - System32\Tasks\System Speedup => C:\Program Files (x86)\System Speedup\SystemSpeedup.exe
Task: {FD441430-E701-4AC9-A5AB-44E0CA27B485} - System32\Tasks\Plus-HD-7.7-validator => C:\Program Files (x86)\Plus-HD-7.7\Plus-HD-7.7-validator.exe <==== ATTENTION
Task: {FE372813-5059-45C7-97BF-823C0A7CA5B3} - System32\Tasks\Plus-HD-7.7-enabler => C:\Program Files (x86)\Plus-HD-7.7\Plus-HD-7.7-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - arte, Aufn_Convoy-1978, 17_Oktober_2011_20_09_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - Das Erste, Aufn_Der_Macintosh-Mann-1973, 22_Oktober_2011_01_09_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - neo KiKa, Aufn_Wissen, 17_Oktober_2011_19_19_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - SAT.1, Aufn_Was_guckst_Du-2x, 22_Oktober_2011_02_51_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - TELE 5, Aufn_Chatos_Land-1972, 19_Mai_2013_20_09_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - TELE 5, Aufn_Der_Dialog-1973, 17_Oktober_2011_01_09_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
Task: C:\Windows\Tasks\WatchTVEx Professional - ZDF, Aufn_Neues_a_d-Anstalt, 18_Oktober_2011_22_09_00.job => C:\Program Files (x86)\WatchTVPro Ex\WatchTVProEx.exe
==================== Loaded Modules (whitelisted) =============
2011-04-24 17:05 - 2006-02-23 11:35 - 00020480 _____ () C:\Windows\System32\FritzColorPort64.dll
2011-04-24 17:05 - 2006-02-22 10:39 - 00020480 _____ () C:\Windows\System32\FritzPort64.dll
2011-05-02 15:17 - 2011-03-18 08:11 - 00039424 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_x64.exe
2011-05-02 15:17 - 2010-04-21 09:59 - 00058880 _____ () C:\Program Files (x86)\Hardcopy\HcDLL2_30_x64.dll
2011-05-02 15:17 - 2011-03-18 08:11 - 00031744 _____ () C:\Program Files (x86)\Hardcopy\hcdll2_ex_Win32.exe
2011-03-24 07:08 - 2009-04-27 11:22 - 00271760 ____N () c:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2011-01-26 17:48 - 2011-01-26 17:48 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-02-21 16:14 - 2014-02-21 09:33 - 02181120 _____ () C:\Program Files\AVAST Software\Avast\defs\14022100\algo.dll
2013-01-07 13:42 - 2013-01-07 13:42 - 00026184 _____ () C:\Program Files (x86)\MyTomTom 3\DeviceDetection.dll
2013-01-07 13:42 - 2013-01-07 13:42 - 00074312 _____ () C:\Program Files (x86)\MyTomTom 3\TomTomSupporterBase.dll
2013-01-07 13:42 - 2013-01-07 13:42 - 00268360 _____ () C:\Program Files (x86)\MyTomTom 3\TomTomSupporterProxy.dll
2011-05-02 15:17 - 2010-04-21 10:00 - 00058368 _____ () C:\Program Files (x86)\Hardcopy\HcDLL2_30_Win32.dll
2011-04-24 10:48 - 1998-09-25 07:47 - 00099840 _____ () D:\TELEFON.DAT\ISDN-Moni\MONINOTE.dll
2011-04-24 10:48 - 1998-09-25 14:17 - 00147456 _____ () D:\TELEFON.DAT\ISDN-Moni\isdnm32d.dll
2013-10-22 19:26 - 2013-10-22 19:26 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-02-15 00:23 - 2014-02-15 00:23 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\0a0467413a424068d1471448ff6ca6cc\IsdiInterop.ni.dll
2011-03-24 07:04 - 2010-11-05 23:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-02-15 11:38 - 2014-02-15 11:38 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinTV Recording Status..lnk => C:\Windows\pss\WinTV Recording Status..lnk.CommonStartup
MSCONFIG\startupreg: NokiaMusic FastStart => "C:\Program Files (x86)\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/21/2014 06:31:59 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:47:08 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:47:08 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:47:05 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:47:05 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:46:52 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:46:45 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:46:45 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:46:45 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (02/21/2014 04:46:28 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
System errors:
=============
Microsoft Office Sessions:
=========================
Error: (02/21/2014 06:31:59 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
Error: (02/21/2014 04:47:08 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:47:08 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:47:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:47:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:46:52 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:46:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:46:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:46:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
Error: (02/21/2014 04:46:28 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Uncle Tom\Desktop\esetsmartinstaller_enu.exe
CodeIntegrity Errors:
===================================
Date: 2014-02-17 16:32:33.160
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2014-02-17 16:32:33.098
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 61%
Total physical RAM: 3063.11 MB
Available physical RAM: 1172.25 MB
Total Pagefile: 6124.41 MB
Available Pagefile: 3042.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:50.01 GB) (Free:7.89 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Daten) (Fixed) (Total:50 GB) (Free:27.38 GB) NTFS
Drive e: (Pool) (Fixed) (Total:30 GB) (Free:14.32 GB) NTFS
Drive f: (Dickmann) (Fixed) (Total:1400 GB) (Free:1040.89 GB) NTFS
Drive g: (Ghost) (Fixed) (Total:333.01 GB) (Free:67.85 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 7EE79106)
Partition 1: (Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=50 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=-338220285952) - (Type=05)
==================== End Of Log ============================
|
|
22.02.2014, 17:03
| #17 |
| /// the machine /// TB-Ausbilder    | Windows7/64 von div. Schädlingen infiziert Adobe updaten. Deine Frage verstehe ich nicht
__________________ Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
C:\Program Files\Enigma Software Group
C:\Users\Uncle Tom\AppData\Roaming\Camdata.ini
C:\Users\Uncle Tom\AppData\Roaming\CamLayout.ini
C:\Users\Uncle Tom\AppData\Roaming\CamShapes.ini
C:\ProgramData\mbsetup.exe
C:\ProgramData\micromeet.dat
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ |
|
22.02.2014, 22:24
| #18 |
| | Windows7/64 von div. Schädlingen infiziert Guten Abend Schrauber.
__________________Vielen lieben Dank an Dich als Dich als meinen persönlichen Guide! Adobe sagt, er hat keine Updates für mich?!? Meine Frage bezieht sich auf einen Logeintrag, der einen Trojaner ermittelt hatte. Der *wie* bereinigt wird/wurde und *was* angerichtet/ausgespäht hat? Die - RTL-Thematik sowie - Plus-HD-7.7 Sind vom Tisch? Welche Schädlinge hast Du im einzelnen detektiert? Was hatten diese für Aufgaben ? Im Anschluss werde ich Deine Anweisungen hinsichtlich Bereinigung der Tools noch durch führen. Es grüßt und dankt heftig Tom Code:
ATTFilter
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-02-2014 01
Ran by Uncle Tom at 2014-02-22 21:54:02 Run:1
Running from C:\Users\Uncle Tom\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
C:\Program Files\Enigma Software Group
C:\Users\Uncle Tom\AppData\Roaming\Camdata.ini
C:\Users\Uncle Tom\AppData\Roaming\CamLayout.ini
C:\Users\Uncle Tom\AppData\Roaming\CamShapes.ini
C:\ProgramData\mbsetup.exe
C:\ProgramData\micromeet.dat
*****************
esgiguard => Service deleted successfully.
"C:\Program Files\Enigma Software Group" => File/Directory not found.
C:\Users\Uncle Tom\AppData\Roaming\Camdata.ini => Moved successfully.
C:\Users\Uncle Tom\AppData\Roaming\CamLayout.ini => Moved successfully.
C:\Users\Uncle Tom\AppData\Roaming\CamShapes.ini => Moved successfully.
C:\ProgramData\mbsetup.exe => Moved successfully.
C:\ProgramData\micromeet.dat => Moved successfully.
==== End of Fixlog ====
|
|
23.02.2014, 07:24
| #19 |
| | Windows7/64 von div. Schädlingen infiziert Guten Tag Schrauber. Ich habe just DelFix auf den Desktop gepackt und gestartet. - Anhaken konnte ich *nichts*. ComboFix ist nicht mehr auf dem Desktop, alles andere schon. Ob ich 'was bei DelFix falsch gemacht habe? - Soll ich nun die Tools (wie von Dir (im Falle des noch vorhanden seins) zu Fuß deinstallieren? Ungeachtet dessen Habe ich in der REG noch mal nach "Spyhunter" suchen lassen mit dem Ergebnis, dass der Begriff an vier Stellen auftauchte. - Soll ich die Einträge (nach Möglichkeit) entfernen oder gehst Du davon aus, dass sie harmlos und somit zu ignorieren sind? Anbei Screenshots aus der REG. Kann ja auch sein, dass ich die Endphase nun verkompliziere.  Viele Grüße Tom |
|
23.02.2014, 21:32
| #20 |
| | Windows7/64 von div. Schädlingen infiziert Guten Abend Schrauber. Update: Das Problem war (mal wieder) vor dem Rechner. Will meinen: Bei DelFix konnte ich Haken setzen und es wurden alle Tools vom Desktop entfernt. Also dahingehend alles im grünen Bereich! Offen im Prinzip, wenn Du Dich abschließend der Mühe unterziehst, wäre die Beantwortung von - Habe in der REG noch mal nach "Spyhunter" suchen lassen mit dem Ergebnis, dass der Begriff an vier Stellen auftauchte. Soll ich die Einträge (nach Möglichkeit) entfernen oder gehst Du davon aus, dass sie harmlos und somit zu ignorieren sind? - RTL-Thematik sowie - Plus-HD-7.7 sind vom Tisch? Bei welcher Gelegenheit sind sie Dir untergekommen und "verarztet" worden? - Adobe sagt, er hat keine Updates für mich?!? Das Prob habe ich "gelöst" in dem ich Adobe Acrobat Reader deinstalliert habe und dafür Foxit, welches vom TB empfohlen wird (glaube ich, hier gelesen zu haben) installiert habe. Eigenartig dabei: Avast maulte kurze Zeit später, ich soll den Reader aktualisieren, was ich - nach der letzten Katasrophe - *nicht* getan habe. Auf der Foxit-Seite wurde auch nichts angeboten. Übel, das! Es wünscht Dir einen friedlichen Abend Tom |
|
24.02.2014, 18:38
| #21 |
| /// the machine /// TB-Ausbilder | Windows7/64 von div. Schädlingen infiziert MBAM und ADwCleaner löschen HD Plus und Co. Typische Adware. Die Regeinträge kannste in Ruhe lassen, passt schon
__________________ --> Windows7/64 von div. Schädlingen infiziert |
|
24.02.2014, 21:15
| #22 | |
| | Windows7/64 von div. Schädlingen infiziertZitat:
Tausend Dank für Deine Bemühungen! Ich fühle mich "gereinigt". *-)) Die erste Maßnahme dieses Abends war, Acronis die C Partition sichern zu lassen und Allsync meine Daten. In den nächsten beiden Tagen folgt dann noch das Auslagern auf die externen Platten. Ich höre Dich schon stöhnen: "Vergiss' nicht, Avast 'drüber laufen zu lassen!" *LOL* *Ein* Problem habe ich allerdings jetzt noch: Eine so große Spende, wie mir Deine Arbeit (und Geduld mit mir) - im wahrsten Sinne des Wortes - wert ist, kann ich nicht aufbringen i.S.v. unbezahlbar. *-)) *Sollte* ich nochmal ein ähnliches Ärgerniss am Hals haben, hoffe ich, mich erneut an Dich und das Trojanerboard-Team wenden zu dürfen. Seit 1985 hatte ich nur diesen, einen Befall und kann auch gerne die nächsten 29 Jahre gut darauf verzichten....  Tom |
|
25.02.2014, 19:47
| #23 |
| /// the machine /// TB-Ausbilder | Windows7/64 von div. Schädlingen infiziert Klar, einfach hier melden und Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Windows7/64 von div. Schädlingen infiziert |
| adw-cleaner, avast, fehler, firefox, free, gelöscht, google, hängen, infiziert, infizierte, installation, logfiles, malwarebytes, microsoft, namen, programme, registry, schädlinge, security, seite, seiten, software, sophos, system, werbefenster, windows |
Linear-Darstellung
